UNPKG

contains-path-traversal

Version:

🚶 Does this string contain path traversal?

github.com/omrilotan/isz/tree/main/packages/contains-path-traversal

omrilotan/isz

21 lines • 610 B
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
// src/index.ts var MAX_DECODE_ROUNDS = 4; function containsPathTraversal(pathname, { maxIterations } = { maxIterations: MAX_DECODE_ROUNDS }) { return recursiveDecode(pathname, 0, maxIterations).split("/").includes(".."); } function recursiveDecode(string, iteration, maxIterations) { if (iteration >= maxIterations) return string; try { const decoded = decodeURIComponent(string); if (decoded === string) return string; return recursiveDecode(decoded, iteration + 1, maxIterations); } catch { return string; } } export { containsPathTraversal }; //# sourceMappingURL=index.js.map