UNPKG

browser-extension-manager

Version:

Browser Extension Manager dependency manager

template.itwcreativeworks.com

itw-creative-works/browser-extension-manager

223 lines (183 loc) 7.89 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
// Libraries const Manager = new (require('../../build.js')); const logger = Manager.logger('audit'); const path = require('path'); const jetpack = require('fs-jetpack'); const { series } = require('gulp'); const chalk = require('chalk').default; // Load package const package = Manager.getPackage('main'); const project = Manager.getPackage('project'); const rootPathPackage = Manager.getRootPath('main'); const rootPathProject = Manager.getRootPath('project'); // Audit results tracker const auditResults = { externalScripts: [], localeWarnings: [], }; // Patterns to detect external script references const EXTERNAL_SCRIPT_PATTERNS = [ // Script tags /<script[^>]*src=["'](https?:\/\/[^"']+)["']/gi, // Dynamic script creation /createElement\s*\(\s*["']script["']\s*\)[^}]*src\s*=\s*["'](https?:\/\/[^"']+)["']/gi, // Direct URL assignments to src (for scripts) /\.src\s*=\s*["'](https?:\/\/[^"']+\.js[^"']*)["']/gi, // fetch/XMLHttpRequest calls to external URLs (common pattern for loading scripts) /fetch\s*\(\s*["'](https?:\/\/[^"']+\.js[^"']*)["']/gi, /XMLHttpRequest[^}]*open\s*\([^,]*,\s*["'](https?:\/\/[^"']+\.js[^"']*)["']/gi, // import() dynamic imports of external URLs /import\s*\(\s*["'](https?:\/\/[^"']+\.js[^"']*)["']/gi, // require() of external URLs /require\s*\(\s*["'](https?:\/\/[^"']+\.js[^"']*)["']/gi, // Script-specific CDN URLs (must end in .js or be script-related CDN patterns) /["'](https?:\/\/[^"']*(?:sentry-cdn|unpkg|jsdelivr|cdnjs)[^"']*\.js[^"']*)["']/gi, // Script loading from CDN base URLs (e.g., recaptcha, Google APIs) /["'](https?:\/\/(?:www\.)?(?:google\.com\/recaptcha|apis\.google\.com)[^"']*)["']/gi, ]; // Locale config (shared with translate.js) const { limits: LOCALE_LIMITS } = require('../config/locales.js'); // Check locale files for warnings function checkLocaleFiles(packagedDir) { const localesDir = path.join(packagedDir, '_locales'); if (!jetpack.exists(localesDir)) { return; } const localeFiles = jetpack.find(localesDir, { matching: '*/messages.json' }); localeFiles.forEach(filePath => { try { const content = jetpack.read(filePath); const messages = JSON.parse(content); // Check each field against its limit Object.entries(LOCALE_LIMITS).forEach(([field, limit]) => { const message = messages[field]?.message; if (message && message.length > limit) { auditResults.localeWarnings.push({ file: path.relative(rootPathProject, filePath), field: field, length: message.length, limit: limit, value: message, }); } }); } catch (e) { logger.warn(`Error parsing locale file ${filePath}: ${e.message}`); } }); } // Check a single file for external script references function checkFileForExternalScripts(filePath) { try { const content = jetpack.read(filePath); if (!content) { return []; } const found = []; const lines = content.split('\n'); EXTERNAL_SCRIPT_PATTERNS.forEach(pattern => { let match; const globalPattern = new RegExp(pattern.source, pattern.flags); while ((match = globalPattern.exec(content)) !== null) { const url = match[1]; const lineNumber = content.substring(0, match.index).split('\n').length; found.push({ file: path.relative(rootPathProject, filePath), url: url, line: lineNumber, pattern: pattern.source.substring(0, 50) + '...', }); } }); return found; } catch (e) { logger.error(`Error reading file ${filePath}:`, e.message); return []; } } // Main audit task async function auditFn(complete) { // Log logger.log('Starting audit...'); // Skip if not in build mode if (!Manager.isBuildMode()) { logger.log('Skipping audit (not in build mode)'); return complete(); } // Reset results auditResults.externalScripts = []; auditResults.localeWarnings = []; try { // Audit chromium build (code is same for both targets, only manifest differs) const packagedDir = path.join(rootPathProject, 'packaged', 'chromium', 'raw'); if (!jetpack.exists(packagedDir)) { logger.log(chalk.yellow('⚠️ Packaged directory not found. Run package task first.')); return complete(); } const files = jetpack.find(packagedDir, { matching: ['**/*.js', '**/*.html'] }); logger.log(`Auditing ${files.length} files (JS, HTML)...`); // Check each file for external scripts files.forEach(filePath => { const externalScripts = checkFileForExternalScripts(filePath); if (externalScripts.length > 0) { auditResults.externalScripts.push(...externalScripts); } }); // Check locale files checkLocaleFiles(packagedDir); // Display results displayAuditResults(); // Log logger.log('Audit completed!'); // Complete return complete(); } catch (e) { logger.error('Error during audit:', e); return complete(); } } // Display audit results function displayAuditResults() { console.log('\n' + chalk.bold('═══════════════════════════════════════════════════')); console.log(chalk.bold(' AUDIT RESULTS')); console.log(chalk.bold('═══════════════════════════════════════════════════') + '\n'); // External Scripts if (auditResults.externalScripts.length > 0) { console.log(chalk.red.bold('❌ EXTERNAL SCRIPTS DETECTED')); console.log(chalk.gray('Chrome extensions do not allow external scripts to be loaded.\n')); auditResults.externalScripts.forEach((item, index) => { console.log(chalk.red(` ${index + 1}. ${item.file}:${item.line}`)); console.log(chalk.gray(` URL: ${item.url}`)); console.log(''); }); } else { console.log(chalk.green('✅ No external scripts detected')); } console.log(''); // Locale Warnings if (auditResults.localeWarnings.length > 0) { console.log(chalk.yellow.bold('⚠️ LOCALE FIELD LENGTH WARNINGS')); console.log(chalk.gray('Some locale fields exceed recommended character limits.\n')); auditResults.localeWarnings.forEach((item, index) => { console.log(chalk.yellow(` ${index + 1}. ${item.file}`)); console.log(chalk.gray(` Field: ${item.field} (${item.length}/${item.limit} chars)`)); console.log(chalk.gray(` Value: "${item.value}"`)); console.log(''); }); } else { console.log(chalk.green('✅ All locale fields within limits')); } // Summary console.log(chalk.bold('\n───────────────────────────────────────────────────')); console.log(chalk.bold('SUMMARY')); console.log(chalk.bold('───────────────────────────────────────────────────')); const externalScriptCount = auditResults.externalScripts.length; const externalScriptColor = externalScriptCount > 0 ? chalk.red : chalk.green; console.log(externalScriptColor(`External Scripts: ${externalScriptCount}`)); const localeWarningCount = auditResults.localeWarnings.length; const localeWarningColor = localeWarningCount > 0 ? chalk.yellow : chalk.green; console.log(localeWarningColor(`Locale Warnings: ${localeWarningCount}`)); console.log(chalk.bold('═══════════════════════════════════════════════════\n')); } // Export task module.exports = series(auditFn);