UNPKG

claude-flow

Version:

Ruflo - Enterprise AI agent orchestration for Claude Code. Deploy 60+ specialized agents in coordinated swarms with self-learning, fault-tolerant consensus, vector memory, and MCP integration

github.com/ruvnet/claude-flow

ruvnet/claude-flow

208 lines 7.33 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
/** * Secure Logger Utility * * Provides sanitized error logging that strips sensitive information * before logging to prevent information disclosure. * * Security features: * - Removes stack traces in production * - Sanitizes file paths to prevent internal structure disclosure * - Filters sensitive keys from error objects * - Truncates long messages to prevent log injection * * @module @claude-flow/shared/utils/secure-logger */ const DEFAULT_CONFIG = { environment: process.env.NODE_ENV || 'development', maxMessageLength: 1000, includeStackTrace: process.env.NODE_ENV === 'development', sensitiveKeys: [ 'password', 'passwd', 'secret', 'token', 'apikey', 'api_key', 'authorization', 'auth', 'credential', 'private', 'key', 'session', 'cookie', 'jwt', 'bearer', 'access_token', 'refresh_token', ], pathPatterns: [ /\/home\/[^/]+/g, // Unix home directories /\/Users\/[^/]+/g, // macOS home directories /C:\\Users\\[^\\]+/gi, // Windows user directories /\/var\/[^/]+/g, // Var directories /\/tmp\/[^/]+/g, // Temp directories ], }; // ============================================================================ // Sanitization Functions // ============================================================================ /** * Sanitize a string message */ function sanitizeMessage(message, config) { let sanitized = message; // Truncate long messages if (sanitized.length > config.maxMessageLength) { sanitized = sanitized.substring(0, config.maxMessageLength) + '... [truncated]'; } // Sanitize paths for (const pattern of config.pathPatterns) { sanitized = sanitized.replace(pattern, '[PATH]'); } // Remove potential sensitive data patterns sanitized = sanitized.replace(/[a-zA-Z0-9+/]{40,}={0,2}/g, '[REDACTED_KEY]'); sanitized = sanitized.replace(/Bearer\s+[^\s]+/gi, 'Bearer [REDACTED]'); sanitized = sanitized.replace(/token[=:]\s*[^\s&]+/gi, 'token=[REDACTED]'); return sanitized; } /** * Sanitize an error object */ function sanitizeError(error, config) { if (error === null || error === undefined) { return { message: 'Unknown error' }; } if (typeof error === 'string') { return { message: sanitizeMessage(error, config) }; } if (error instanceof Error) { const sanitized = { name: error.name, message: sanitizeMessage(error.message, config), }; // Only include stack in development if (config.includeStackTrace && error.stack) { sanitized.stack = sanitizeMessage(error.stack, config); } // Include code if present (common in Node.js errors) if ('code' in error) { sanitized.code = error.code; } return sanitized; } if (typeof error === 'object') { return sanitizeObject(error, config); } return { message: String(error) }; } /** * Sanitize a plain object */ function sanitizeObject(obj, config) { const sanitized = {}; for (const [key, value] of Object.entries(obj)) { const lowerKey = key.toLowerCase(); // Skip sensitive keys if (config.sensitiveKeys.some(sk => lowerKey.includes(sk))) { sanitized[key] = '[REDACTED]'; continue; } // Recursively sanitize nested objects if (value !== null && typeof value === 'object' && !Array.isArray(value)) { sanitized[key] = sanitizeObject(value, config); } else if (typeof value === 'string') { sanitized[key] = sanitizeMessage(value, config); } else { sanitized[key] = value; } } return sanitized; } // ============================================================================ // Logger Class // ============================================================================ export class SecureLogger { config; prefix; constructor(prefix = '', config = {}) { this.prefix = prefix; this.config = { ...DEFAULT_CONFIG, ...config }; } /** * Log an info message */ info(message, data) { const sanitizedMessage = sanitizeMessage(message, this.config); const sanitizedData = data ? sanitizeObject(data, this.config) : undefined; if (sanitizedData) { console.info(`[INFO]${this.prefix ? ` [${this.prefix}]` : ''} ${sanitizedMessage}`, sanitizedData); } else { console.info(`[INFO]${this.prefix ? ` [${this.prefix}]` : ''} ${sanitizedMessage}`); } } /** * Log a warning message */ warn(message, data) { const sanitizedMessage = sanitizeMessage(message, this.config); const sanitizedData = data ? sanitizeObject(data, this.config) : undefined; if (sanitizedData) { console.warn(`[WARN]${this.prefix ? ` [${this.prefix}]` : ''} ${sanitizedMessage}`, sanitizedData); } else { console.warn(`[WARN]${this.prefix ? ` [${this.prefix}]` : ''} ${sanitizedMessage}`); } } /** * Log an error (sanitized for security) */ error(message, error) { const sanitizedMessage = sanitizeMessage(message, this.config); const sanitizedError = error ? sanitizeError(error, this.config) : undefined; if (sanitizedError) { console.error(`[ERROR]${this.prefix ? ` [${this.prefix}]` : ''} ${sanitizedMessage}`, sanitizedError); } else { console.error(`[ERROR]${this.prefix ? ` [${this.prefix}]` : ''} ${sanitizedMessage}`); } } /** * Log debug message (only in development) */ debug(message, data) { if (this.config.environment !== 'development') { return; } const sanitizedMessage = sanitizeMessage(message, this.config); const sanitizedData = data ? sanitizeObject(data, this.config) : undefined; if (sanitizedData) { console.debug(`[DEBUG]${this.prefix ? ` [${this.prefix}]` : ''} ${sanitizedMessage}`, sanitizedData); } else { console.debug(`[DEBUG]${this.prefix ? ` [${this.prefix}]` : ''} ${sanitizedMessage}`); } } /** * Create a child logger with a sub-prefix */ child(subPrefix) { const newPrefix = this.prefix ? `${this.prefix}:${subPrefix}` : subPrefix; return new SecureLogger(newPrefix, this.config); } } // ============================================================================ // Factory Functions // ============================================================================ /** * Create a secure logger instance */ export function createSecureLogger(prefix, config) { return new SecureLogger(prefix, config); } /** * Default logger instance */ export const logger = createSecureLogger('claude-flow'); /** * Sanitize an error for safe logging/display */ export function sanitizeErrorForLogging(error) { return sanitizeError(error, DEFAULT_CONFIG); } /** * Sanitize a message for safe logging/display */ export function sanitizeMessageForLogging(message) { return sanitizeMessage(message, DEFAULT_CONFIG); } export default SecureLogger; //# sourceMappingURL=secure-logger.js.map