UNPKG

fortify2-js

Version:

MOST POWERFUL JavaScript Security Library! Military-grade cryptography + 19 enhanced object methods + quantum-resistant algorithms + perfect TypeScript support. More powerful than Lodash with built-in security.

lab.nehonix.space/nehonix_viewer/_doc/Nehonix%20FortifyJs/readme.md

nehonix/FortifyJS

333 lines (331 loc) 11.2 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
/** * String Validator Module * Handles validation and analysis of string content */ /** * Handles string validation and analysis */ class StringValidator { /** * Validates if a string meets password requirements */ static validatePassword(password, requirements = {}) { const { minLength = 8, maxLength = 128, requireUppercase = true, requireLowercase = true, requireNumbers = true, requireSpecialChars = true, forbiddenPatterns = [], customRules = [], } = requirements; const errors = []; const warnings = []; // Length validation if (password.length < minLength) { errors.push(`Password must be at least ${minLength} characters long`); } if (password.length > maxLength) { errors.push(`Password must not exceed ${maxLength} characters`); } // Character type validation if (requireUppercase && !/[A-Z]/.test(password)) { errors.push("Password must contain at least one uppercase letter"); } if (requireLowercase && !/[a-z]/.test(password)) { errors.push("Password must contain at least one lowercase letter"); } if (requireNumbers && !/\d/.test(password)) { errors.push("Password must contain at least one number"); } if (requireSpecialChars && !/[!@#$%^&*()_+\-=\[\]{};':"\\|,.<>\/?]/.test(password)) { errors.push("Password must contain at least one special character"); } // Forbidden patterns for (const pattern of forbiddenPatterns) { if (pattern.test(password)) { errors.push(`Password contains forbidden pattern: ${pattern.source}`); } } // Common weak patterns if (/(.)\1{2,}/.test(password)) { warnings.push("Password contains repeated characters"); } if (/123|abc|qwe|asd|zxc/i.test(password)) { warnings.push("Password contains common sequences"); } // Custom rules for (const rule of customRules) { const ruleResult = rule(password); if (ruleResult) { errors.push(ruleResult); } } // Calculate strength score const score = this.calculatePasswordStrength(password); return { isValid: errors.length === 0, errors, warnings, score, }; } /** * Validates email format */ static validateEmail(email) { const errors = []; const warnings = []; // Basic email regex (RFC 5322 compliant) const emailRegex = /^[a-zA-Z0-9.!#$%&'*+/=?^_`{|}~-]+@[a-zA-Z0-9](?:[a-zA-Z0-9-]{0,61}[a-zA-Z0-9])?(?:\.[a-zA-Z0-9](?:[a-zA-Z0-9-]{0,61}[a-zA-Z0-9])?)*$/; if (!emailRegex.test(email)) { errors.push("Invalid email format"); } // Additional checks if (email.length > 254) { errors.push("Email address is too long"); } const [localPart, domain] = email.split('@'); if (localPart && localPart.length > 64) { errors.push("Local part of email is too long"); } if (domain && domain.includes('..')) { errors.push("Domain contains consecutive dots"); } return { isValid: errors.length === 0, errors, warnings, }; } /** * Validates URL format */ static validateURL(url) { const errors = []; const warnings = []; try { const urlObj = new URL(url); // Check for common issues if (!['http:', 'https:', 'ftp:', 'ftps:'].includes(urlObj.protocol)) { warnings.push(`Unusual protocol: ${urlObj.protocol}`); } if (urlObj.hostname.includes('..')) { errors.push("Hostname contains consecutive dots"); } } catch (error) { errors.push("Invalid URL format"); } return { isValid: errors.length === 0, errors, warnings, }; } /** * Validates phone number format */ static validatePhoneNumber(phone, format = 'flexible') { const errors = []; const warnings = []; // Remove common formatting characters const cleanPhone = phone.replace(/[\s\-\(\)\+\.]/g, ''); switch (format) { case 'international': if (!/^\+?[1-9]\d{1,14}$/.test(cleanPhone)) { errors.push("Invalid international phone number format"); } break; case 'us': if (!/^(\+?1)?[2-9]\d{2}[2-9]\d{2}\d{4}$/.test(cleanPhone)) { errors.push("Invalid US phone number format"); } break; case 'flexible': if (!/^\+?[\d\s\-\(\)\.]{7,15}$/.test(phone)) { errors.push("Phone number should be 7-15 digits"); } break; } return { isValid: errors.length === 0, errors, warnings, }; } /** * Validates credit card number using Luhn algorithm */ static validateCreditCard(cardNumber) { const errors = []; const warnings = []; // Remove spaces and dashes const cleanNumber = cardNumber.replace(/[\s\-]/g, ''); // Check if all characters are digits if (!/^\d+$/.test(cleanNumber)) { errors.push("Credit card number must contain only digits"); } else { // Luhn algorithm let sum = 0; let isEven = false; for (let i = cleanNumber.length - 1; i >= 0; i--) { let digit = parseInt(cleanNumber.charAt(i), 10); if (isEven) { digit *= 2; if (digit > 9) { digit -= 9; } } sum += digit; isEven = !isEven; } if (sum % 10 !== 0) { errors.push("Invalid credit card number (failed Luhn check)"); } // Check length for common card types const length = cleanNumber.length; if (![13, 14, 15, 16, 17, 18, 19].includes(length)) { warnings.push("Unusual credit card number length"); } } return { isValid: errors.length === 0, errors, warnings, }; } /** * Calculates password strength score (0-100) */ static calculatePasswordStrength(password) { let score = 0; // Length bonus score += Math.min(password.length * 2, 25); // Character variety bonus if (/[a-z]/.test(password)) score += 5; if (/[A-Z]/.test(password)) score += 5; if (/\d/.test(password)) score += 5; if (/[!@#$%^&*()_+\-=\[\]{};':"\\|,.<>\/?]/.test(password)) score += 10; // Complexity bonus const uniqueChars = new Set(password).size; score += Math.min(uniqueChars * 2, 20); // Entropy bonus const entropy = this.calculateEntropy(password); score += Math.min(entropy / 2, 20); // Penalties if (/(.)\1{2,}/.test(password)) score -= 10; // Repeated characters if (/123|abc|qwe|asd|zxc/i.test(password)) score -= 15; // Common sequences if (/password|123456|qwerty/i.test(password)) score -= 25; // Common passwords return Math.max(0, Math.min(100, score)); } /** * Calculates Shannon entropy of a string */ static calculateEntropy(str) { const frequencies = {}; // Count character frequencies for (const char of str) { frequencies[char] = (frequencies[char] || 0) + 1; } // Calculate entropy let entropy = 0; const length = str.length; for (const count of Object.values(frequencies)) { const probability = count / length; entropy -= probability * Math.log2(probability); } return entropy * length; } /** * Gets detailed string statistics */ static getStringStatistics(str) { const characterCount = {}; // Count characters for (const char of str) { characterCount[char] = (characterCount[char] || 0) + 1; } return { length: str.length, byteLength: new TextEncoder().encode(str).length, characterCount, hasUpperCase: /[A-Z]/.test(str), hasLowerCase: /[a-z]/.test(str), hasNumbers: /\d/.test(str), hasSpecialChars: /[!@#$%^&*()_+\-=\[\]{};':"\\|,.<>\/?]/.test(str), entropy: this.calculateEntropy(str), }; } /** * Checks if string contains only printable ASCII characters */ static isPrintableASCII(str) { return /^[\x20-\x7E]*$/.test(str); } /** * Checks if string is valid UTF-8 */ static isValidUTF8(str) { try { // Try to encode and decode const encoded = new TextEncoder().encode(str); const decoded = new TextDecoder('utf-8', { fatal: true }).decode(encoded); return decoded === str; } catch { return false; } } /** * Validates JSON string */ static validateJSON(str) { const errors = []; const warnings = []; try { JSON.parse(str); } catch (error) { errors.push(`Invalid JSON: ${error instanceof Error ? error.message : String(error)}`); } return { isValid: errors.length === 0, errors, warnings, }; } /** * Validates XML string (basic check) */ static validateXML(str) { const errors = []; const warnings = []; try { if (typeof DOMParser !== 'undefined') { const parser = new DOMParser(); const doc = parser.parseFromString(str, 'text/xml'); const parseError = doc.querySelector('parsererror'); if (parseError) { errors.push('Invalid XML format'); } } else { // Basic XML validation for Node.js environment if (!str.trim().startsWith('<') || !str.trim().endsWith('>')) { errors.push('XML must start with < and end with >'); } } } catch (error) { errors.push(`XML validation error: ${error instanceof Error ? error.message : String(error)}`); } return { isValid: errors.length === 0, errors, warnings, }; } } export { StringValidator }; //# sourceMappingURL=string-validator.js.map