UNPKG

@proguardian/cli

Version:

Guardian supervision layer for AI coding assistants

github.com/WillyNilsson/ProGuardian

WillyNilsson/ProGuardian

237 lines (193 loc) 6.89 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
/** * Input validation utilities for ProGuardian CLI * Provides comprehensive validation for all user inputs */ import path from 'path' import { ValidationError, PathTraversalError, CommandInjectionError } from './errors.js' // Valid CLI types that we support const VALID_CLI_TYPES = ['claude', 'gemini'] // Command option schemas const OPTION_SCHEMAS = { init: { force: { type: 'boolean', required: false }, cli: { type: 'string', required: false, enum: VALID_CLI_TYPES }, verbose: { type: 'boolean', required: false }, baseDir: { type: 'string', required: false }, // For testing path: { type: 'string', required: false }, // Custom path for the file }, check: { fix: { type: 'boolean', required: false }, verbose: { type: 'boolean', required: false }, }, 'install-wrapper': { global: { type: 'boolean', required: false }, force: { type: 'boolean', required: false }, verbose: { type: 'boolean', required: false }, }, } /** * Validate command options against schema */ export function validateOptions(command, options) { const schema = OPTION_SCHEMAS[command] if (!schema) { throw new ValidationError('command', command, 'Unknown command') } // Check for unknown options const validKeys = Object.keys(schema) const providedKeys = Object.keys(options) const unknownKeys = providedKeys.filter((key) => !validKeys.includes(key)) if (unknownKeys.length > 0) { throw new ValidationError('options', unknownKeys.join(', '), 'Unknown options provided') } // Validate each option for (const [key, rules] of Object.entries(schema)) { const value = options[key] // Check required if (rules.required && value === undefined) { throw new ValidationError(key, 'undefined', 'This option is required') } // Skip validation if not provided and not required if (value === undefined) continue // Type validation if (rules.type === 'boolean' && typeof value !== 'boolean') { throw new ValidationError(key, value, 'Must be a boolean') } if (rules.type === 'string' && typeof value !== 'string') { throw new ValidationError(key, value, 'Must be a string') } // Enum validation if (rules.enum && !rules.enum.includes(value)) { throw new ValidationError(key, value, `Must be one of: ${rules.enum.join(', ')}`) } } return true } /** * Validate and sanitize file paths to prevent path traversal */ export function validateSafePath(targetPath, basePath = process.cwd()) { if (!targetPath) { throw new ValidationError('path', targetPath, 'Path cannot be empty') } // Resolve to absolute paths const resolvedTarget = path.resolve(basePath, targetPath) const resolvedBase = path.resolve(basePath) // Ensure the target is within the base directory // On Windows, perform case-insensitive comparison const isWindows = process.platform === 'win32' const targetToCheck = isWindows ? resolvedTarget.toLowerCase() : resolvedTarget const baseToCheck = isWindows ? resolvedBase.toLowerCase() : resolvedBase // Ensure base path ends with separator for accurate prefix check const baseWithSep = baseToCheck.endsWith(path.sep) ? baseToCheck : baseToCheck + path.sep if ( !targetToCheck.startsWith(baseToCheck) || (targetToCheck !== baseToCheck && !targetToCheck.startsWith(baseWithSep)) ) { throw new PathTraversalError(targetPath) } // Additional checks for suspicious patterns // Note: We allow backslashes as they're valid path separators on Windows const suspicious = ['..', '~', '$', '`', '|', ';', '&', '>', '<'] const normalizedPath = path.normalize(targetPath) // Check for path traversal patterns if (normalizedPath.includes('..')) { throw new PathTraversalError(targetPath) } // Check for other suspicious patterns for (const pattern of suspicious) { if (normalizedPath.includes(pattern)) { throw new PathTraversalError(targetPath) } } return resolvedTarget } /** * Sanitize paths for safe usage */ export function sanitizePath(inputPath) { if (!inputPath || typeof inputPath !== 'string') { throw new ValidationError('path', inputPath, 'Path must be a non-empty string') } // Check for null bytes before sanitizing if (inputPath.includes('\0')) { throw new PathTraversalError(inputPath) } // Normalize the path let sanitized = path.normalize(inputPath) // Remove leading/trailing whitespace sanitized = sanitized.trim() // Validate the sanitized path return validateSafePath(sanitized) } /** * Validate CLI type selection */ export function validateCLIType(cliType) { if (!cliType) { throw new ValidationError('cliType', cliType, 'CLI type cannot be empty') } if (!VALID_CLI_TYPES.includes(cliType)) { throw new ValidationError('cliType', cliType, `Must be one of: ${VALID_CLI_TYPES.join(', ')}`) } return cliType } /** * Validate command strings to prevent injection */ export function validateCommand(command) { if (!command || typeof command !== 'string') { throw new ValidationError('command', command, 'Command must be a non-empty string') } // Dangerous characters that could lead to command injection const dangerousChars = ['|', ';', '&', '$', '`', '>', '<', '(', ')', '{', '}', '[', ']'] // Check for actual newline characters (not escaped ones) if (command.includes('\n') || command.includes('\r')) { throw new CommandInjectionError(command) } for (const char of dangerousChars) { if (command.includes(char)) { throw new CommandInjectionError(command) } } return command } /** * Validate JSON content */ export function validateJSON(content, schema = null) { try { const parsed = typeof content === 'string' ? JSON.parse(content) : content if (schema) { // Basic schema validation for (const [key, rules] of Object.entries(schema)) { if (rules.required && !(key in parsed)) { throw new ValidationError(key, 'undefined', 'Required field missing') } if (key in parsed && rules.type) { const actualType = Array.isArray(parsed[key]) ? 'array' : typeof parsed[key] if (actualType !== rules.type) { throw new ValidationError(key, parsed[key], `Expected type ${rules.type}`) } } } } return parsed } catch (error) { if (error instanceof ValidationError) throw error throw new ValidationError('json', 'invalid', 'Invalid JSON format') } } /** * Escape shell arguments safely */ export function escapeShellArg(arg) { if (!arg) return '""' // Convert to string and escape single quotes const str = String(arg) // If contains special characters, wrap in single quotes if (/[^A-Za-z0-9_.,@:/-]/.test(str)) { return `'${str.replace(/'/g, "'\"'\"'")}'` } return str }