UNPKG

js-lightning

Version:

Direct Javascript to Web interpreted server inspired by PHP

jslightning.com

tqwhite/js-lightning

34 lines (23 loc) 974 B
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
'use strict'; const chai = require('chai'); const sinon = require('sinon'); const sinonChai = require('sinon-chai'); const expect = chai.expect; chai.use(sinonChai); describe('Testing security', function () { const MultiIni = require('../src/multi-ini-class'); it('Secure keys to fix prototype pollution', function () { var ini = new MultiIni(); var data = ini.read('test/data/prototype_pollution.ini'); expect(data).not.to.be.null; expect(data['test']).to.be.defined; expect(data['test']['value']).to.equal('key'); expect(data['__proto__']['polluted']).to.be.undefined; expect({}.__proto__.polluted).to.be.undefined; expect(typeof polluted).to.equal('undefined'); expect(data['__proto__']['path_polluted']).to.be.undefined; expect({}.__proto__.path_polluted).to.be.undefined; expect(typeof path_polluted).to.equal('undefined'); console.log(data); }); });