@xynehq/jaf/dist/utils/attachments.js

Juspay Agent Framework - A purely functional agent framework with immutable state and composable tools

const MAX_ATTACHMENT_SIZE = 10 * 1024 * 1024;
const MAX_FILENAME_LENGTH = 255;
const BASE64_SIZE_RATIO = 3 / 4;
const MAX_FORMAT_LENGTH = 10;
class AttachmentValidationError extends Error {
    field;
    constructor(message, field) {
        super(message);
        this.field = field;
        this.name = 'AttachmentValidationError';
    }
}
const ALLOWED_IMAGE_MIME_TYPES = [
    'image/jpeg', 'image/jpg', 'image/png', 'image/gif', 'image/webp', 'image/bmp', 'image/svg+xml'
];
const ALLOWED_DOCUMENT_MIME_TYPES = [
    'text/plain', 'text/csv', 'application/json',
    'application/vnd.openxmlformats-officedocument.wordprocessingml.document',
    'application/vnd.openxmlformats-officedocument.spreadsheetml.sheet'
];
// Validation helpers
function validateBase64(data) {
    try {
        // Basic base64 pattern check
        const base64Pattern = /^[A-Za-z0-9+/]*={0,2}$/;
        if (!base64Pattern.test(data)) {
            return false;
        }
        // Try to decode to verify it's valid base64
        const decoded = Buffer.from(data, 'base64');
        const reencoded = decoded.toString('base64');
        // Account for padding differences
        const normalizedInput = data.replace(/=+$/, '');
        const normalizedReencoded = reencoded.replace(/=+$/, '');
        return normalizedInput === normalizedReencoded;
    }
    catch {
        return false;
    }
}
function validateAttachmentSize(data) {
    if (data) {
        const estimatedSize = data.length * BASE64_SIZE_RATIO;
        if (estimatedSize > MAX_ATTACHMENT_SIZE) {
            throw new AttachmentValidationError(`Attachment size (${Math.round(estimatedSize / 1024 / 1024)}MB) exceeds maximum allowed size (${MAX_ATTACHMENT_SIZE / 1024 / 1024}MB)`);
        }
    }
}
function validateFilename(name) {
    if (name) {
        if (name.length > MAX_FILENAME_LENGTH) {
            throw new AttachmentValidationError(`Filename length (${name.length}) exceeds maximum allowed length (${MAX_FILENAME_LENGTH})`);
        }
        // Check for dangerous characters and control characters
        const dangerousChars = /[<>:"|?*]/;
        const controlChars = /[\x00-\x1f]/; // eslint-disable-line no-control-regex
        if (dangerousChars.test(name) || controlChars.test(name)) {
            throw new AttachmentValidationError('Filename contains invalid characters');
        }
        // Check for path traversal attempts
        if (name.includes('..') || name.includes('/') || name.includes('\\')) {
            throw new AttachmentValidationError('Filename cannot contain path separators or traversal sequences');
        }
    }
}
function validateMimeType(mimeType, allowedTypes, kind) {
    if (mimeType && !allowedTypes.includes(mimeType.toLowerCase())) {
        throw new AttachmentValidationError(`MIME type '${mimeType}' is not allowed for ${kind} attachments. Allowed types: ${allowedTypes.join(', ')}`);
    }
}
function validateUrl(url) {
    if (url) {
        try {
            const urlObj = new URL(url);
            const allowedProtocols = ['http:', 'https:', 'data:'];
            if (!allowedProtocols.includes(urlObj.protocol)) {
                throw new AttachmentValidationError(`URL protocol '${urlObj.protocol}' is not allowed. Allowed protocols: ${allowedProtocols.join(', ')}`);
            }
            // Additional validation for data URLs
            if (urlObj.protocol === 'data:') {
                const dataUrlPattern = /^data:([^;]+)(;base64)?,(.+)$/;
                if (!dataUrlPattern.test(url)) {
                    throw new AttachmentValidationError('Invalid data URL format');
                }
            }
        }
        catch (error) {
            if (error instanceof Error) {
                throw new AttachmentValidationError(`Invalid URL: ${error.message}`);
            }
            throw new AttachmentValidationError('Invalid URL format');
        }
    }
}
function processBase64Data(data) {
    if (!data)
        return undefined;
    const base64 = typeof data === 'string' ? data : data.toString('base64');
    // Validate base64 format if it was provided as string
    if (typeof data === 'string' && !validateBase64(base64)) {
        throw new AttachmentValidationError('Invalid base64 data format');
    }
    return base64;
}
export function makeImageAttachment(params) {
    // Validate inputs
    validateFilename(params.name);
    validateUrl(params.url);
    validateMimeType(params.mimeType, ALLOWED_IMAGE_MIME_TYPES, 'image');
    validateAttachmentSize(typeof params.data === 'string' ? params.data : undefined);
    const base64 = processBase64Data(params.data);
    // Ensure at least one content source
    if (!params.url && !base64) {
        throw new AttachmentValidationError('Image attachment must have either url or data');
    }
    return {
        kind: 'image',
        mimeType: params.mimeType,
        name: params.name,
        url: params.url,
        data: base64
    };
}
export function makeFileAttachment(params) {
    // Validate inputs
    validateFilename(params.name);
    validateUrl(params.url);
    validateAttachmentSize(typeof params.data === 'string' ? params.data : undefined);
    const base64 = processBase64Data(params.data);
    // Ensure at least one content source
    if (!params.url && !base64) {
        throw new AttachmentValidationError('File attachment must have either url or data');
    }
    // Validate format if provided
    if (params.format && params.format.length > 10) {
        throw new AttachmentValidationError('File format must be 10 characters or less');
    }
    return {
        kind: 'file',
        mimeType: params.mimeType,
        name: params.name,
        url: params.url,
        data: base64,
        format: params.format
    };
}
export function makeDocumentAttachment(params) {
    // Additional validation for documents
    validateMimeType(params.mimeType, ALLOWED_DOCUMENT_MIME_TYPES, 'document');
    const attachment = makeFileAttachment({ ...params, format: params.format, mimeType: params.mimeType });
    return {
        ...attachment,
        kind: 'document'
    };
}
// Enhanced validation for existing attachments
export function validateAttachment(att) {
    if (!att.url && !att.data) {
        throw new AttachmentValidationError('Attachment must have either url or data');
    }
    validateFilename(att.name);
    validateUrl(att.url);
    if (att.data) {
        validateAttachmentSize(att.data);
        if (!validateBase64(att.data)) {
            throw new AttachmentValidationError('Invalid base64 data in attachment');
        }
    }
    // Validate MIME type based on attachment kind
    switch (att.kind) {
        case 'image':
            validateMimeType(att.mimeType, ALLOWED_IMAGE_MIME_TYPES, 'image');
            break;
        case 'document':
            validateMimeType(att.mimeType, ALLOWED_DOCUMENT_MIME_TYPES, 'document');
            break;
        case 'file':
            // Files can have any MIME type, but still validate format
            if (att.format && att.format.length > 10) {
                throw new AttachmentValidationError('File format must be 10 characters or less');
            }
            break;
    }
}
// Legacy function for backwards compatibility
export function assertNonEmptyAttachment(att) {
    validateAttachment(att);
}
// Export validation constants for external use
export const ATTACHMENT_LIMITS = {
    MAX_SIZE: MAX_ATTACHMENT_SIZE,
    MAX_FILENAME_LENGTH,
    ALLOWED_IMAGE_MIME_TYPES,
    ALLOWED_DOCUMENT_MIME_TYPES,
};
//# sourceMappingURL=attachments.js.map