UNPKG

pompelmi

Version:

RFI-safe file uploads for Node.js — Express/Koa/Next.js middleware with deep ZIP inspection, MIME/size checks, and optional YARA scanning.

pompelmi.github.io/pompelmi/

pompelmi/pompelmi

50 lines (49 loc) 1.31 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
/** Shared types for Pompelmi */ export type Verdict = 'clean' | 'suspicious' | 'malicious'; export interface YaraMatch { rule: string; namespace?: string; tags?: string[]; meta?: Record<string, unknown>; } export * from './types/decompilation'; export * from './hipaa-compliance'; export interface Match { rule: string; severity?: 'low' | 'medium' | 'high' | 'critical' | 'suspicious'; meta?: Record<string, unknown>; } export interface FileInfo { name?: string; mimeType?: string; size?: number; sha256?: string; } export type ScanContext = { filename?: string; mimeType?: string; size?: number; }; export type ScanFn = (input: Uint8Array, ctx?: ScanContext) => Promise<Match[]> | Match[]; export type Scanner = ScanFn | { name?: string; scan: ScanFn; }; interface BaseReport { verdict: Verdict; matches: YaraMatch[]; reasons?: string[]; file?: FileInfo; durationMs?: number; error?: string; ok: boolean; truncated?: boolean; timedOut?: boolean; engine?: string; } export interface NormalScanReport extends BaseReport { } export interface StreamScanReport extends BaseReport { } export type ScanReport = NormalScanReport | StreamScanReport; export type Uint8ArrayLike = Uint8Array | ArrayBufferView;