UNPKG

nehonix-uri-processor

Version:

A powerful URI processor for encoding, decoding, and analyzing URI data securely.

lab.nehonix.space

nehonix/nehonixUriProcessor

100 lines 4.3 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
import NES from "../services/NehonixEnc.service"; export class NehonixSafetyLayer { /** * Encodes user input based on the context in which it will be used * Selects the appropriate encoding method for security and compatibility * * @param input The user input to secure * @param context The context where the input will be used * @param options Optional configuration for specific encoding behaviors * @returns The appropriately encoded string */ static __safeEncode__(input, context, options = {}) { // Default options const { doubleEncode = false, encodeSpaces = false, preserveNewlines = false, } = options; // Select encoding based on context let encodedString; switch (context) { case "url": encodedString = NES.encode(input, "percentEncoding"); if (doubleEncode) { encodedString = NES.encode(encodedString, "doublepercent"); } break; case "urlParam": encodedString = NES.encode(input, "urlSafeBase64"); break; case "html": encodedString = NES.encode(input, "htmlEntity"); break; case "htmlAttr": // Special handling for HTML attributes (double quotes must be escaped) encodedString = NES.encode(input, "htmlEntity"); // Ensure quotes are always encoded encodedString = encodedString.replace(/"/g, "&quot;"); break; case "js": encodedString = NES.encode(input, "jsEscape"); break; case "jsString": // More aggressive encoding for JavaScript strings encodedString = NES.encode(input, "unicode"); break; case "css": encodedString = NES.encode(input, "cssEscape"); break; case "cssSelector": // More careful escaping for CSS selectors encodedString = NES.encode(input, "cssEscape") // Ensure : and . are always escaped in selectors .replace(/:/g, "\\3A ") .replace(/\./g, "\\2E "); break; case "email": if (preserveNewlines) { encodedString = NES.encode(input, "quotedPrintable"); } else { // Use base64 for email body without newline preservation encodedString = NES.encode(input, "base64"); } break; case "emailSubject": // Email subjects should be encoded using quoted-printable encodedString = NES.encode(input, "quotedPrintable") // Remove line breaks (not allowed in subject) .replace(/=\r\n/g, ""); break; case "command": // Escape special shell characters encodedString = input.replace(/([&;'"`\\|*?~<>^()[\]{}$\n\r\t#])/g, "\\$1"); break; case "xml": // XML encoding (similar to HTML but with a few differences) encodedString = input .replace(/&/g, "&amp;") .replace(/</g, "&lt;") .replace(/>/g, "&gt;") .replace(/"/g, "&quot;") .replace(/'/g, "&apos;"); break; case "json": // JSON string encoding encodedString = JSON.stringify(input).slice(1, -1); break; case "obfuscate": // Simple obfuscation encodedString = NES.encode(input, "rot13"); break; case "idnDomain": // For internationalized domain names encodedString = NES.encode(input, "punycode"); break; default: // Default to HTML entity encoding as a safe fallback encodedString = NES.encode(input, "htmlEntity"); } return encodedString; } } //# sourceMappingURL=NehonixSafetyLayer.js.map