UNPKG

@xynehq/jaf

Version:

Juspay Agent Framework - A purely functional agent framework with immutable state and composable tools

xynehq.github.io/jaf/

xynehq/jaf

86 lines 2.54 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
/** * Safe mathematical expression evaluator using mathjs * Replaces dangerous eval() usage throughout the codebase */ import { evaluate } from 'mathjs'; /** * Safely evaluates mathematical expressions * @param expression - Mathematical expression to evaluate * @returns The result of the calculation * @throws Error if expression is invalid or unsafe */ export const evaluateMathExpression = (expression) => { // Validate input if (!expression || typeof expression !== 'string') { throw new Error('Invalid expression: must be a non-empty string'); } // Remove whitespace const cleanExpression = expression.trim(); // Check for potentially dangerous patterns const dangerousPatterns = [ /import\s*\(/i, /require\s*\(/i, /eval\s*\(/i, /function\s*\(/i, /=>/, /new\s+/i, /\.\s*constructor/i, /__proto__/i, /prototype/i ]; for (const pattern of dangerousPatterns) { if (pattern.test(cleanExpression)) { throw new Error(`Unsafe expression detected: ${pattern}`); } } try { // Use mathjs to safely evaluate the expression const result = evaluate(cleanExpression); // Ensure result is a number if (typeof result !== 'number' || !isFinite(result)) { throw new Error(`Invalid result: ${result}`); } return result; } catch (error) { if (error instanceof Error) { throw new Error(`Math evaluation error: ${error.message}`); } throw new Error('Math evaluation failed'); } }; /** * Validates if a string is a safe mathematical expression * @param expression - Expression to validate * @returns True if expression appears safe */ export const isSafeMathExpression = (expression) => { try { evaluateMathExpression(expression); return true; } catch { return false; } }; /** * Common mathematical operations as safe functions */ export const safeMath = { add: (a, b) => a + b, subtract: (a, b) => a - b, multiply: (a, b) => a * b, divide: (a, b) => { if (b === 0) throw new Error('Division by zero'); return a / b; }, power: (a, b) => Math.pow(a, b), sqrt: (a) => Math.sqrt(a), abs: (a) => Math.abs(a), round: (a, decimals = 0) => { const factor = Math.pow(10, decimals); return Math.round(a * factor) / factor; } }; //# sourceMappingURL=safe-math.js.map