UNPKG

qgenutils

Version:

A security-first Node.js utility library providing authentication, HTTP operations, URL processing, validation, datetime formatting, and template rendering. Designed as a lightweight alternative to heavy npm packages with comprehensive error handling and

83 lines (69 loc) 2.96 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
/** * Validate GitHub Repository URL Format with Strict Pattern Matching * * RATIONALE: GitHub automation requires exact repository URLs to function * correctly. This function ensures only valid GitHub repository URLs are * accepted, preventing errors and potential security issues from malformed URLs. * * IMPLEMENTATION STRATEGY: * - Use regex pattern for strict GitHub URL format validation * - Support standard HTTPS GitHub repository URL format * - Allow optional trailing slash for user convenience * - Provide specific error messages for different validation failures * - Log validation attempts for security monitoring * * GITHUB URL REQUIREMENTS: * - Must use HTTPS protocol for security * - Must be on github.com domain * - Must follow owner/repository format * - Owner and repository names must use valid GitHub naming conventions * - No additional paths or query parameters allowed * * VALIDATION PATTERN: * ^https:\/\/github\.com\/[\w.-]+\/[\w.-]+\/?$ * - ^https:\/\/github\.com\/ - Requires exact GitHub HTTPS URL start * - [\w.-]+ - Owner name (letters, numbers, dots, hyphens) * - \/ - Separator between owner and repository * - [\w.-]+ - Repository name (letters, numbers, dots, hyphens) * - \/? - Optional trailing slash * - $ - End of string (no additional content allowed) * * @param {string} url - The GitHub repository URL to validate * @returns {string} Empty string if valid, descriptive error message if invalid * @throws Never throws - returns error message on validation failure */ const { qerrors } = require('qerrors'); const sanitizeString = require('../utilities/string/sanitizeString'); function validateGitHubUrl(url) { // Sanitize input to remove dangerous characters const sanitizedUrl = sanitizeString(url); qerrors(new Error(`GitHub URL validation attempt`), `validateGitHubUrl`, { originalUrl: url, sanitizedUrl: sanitizedUrl, urlLength: sanitizedUrl.length }); if (!sanitizedUrl.trim()) { const errorMsg = "Repository URL is required"; qerrors(new Error(`GitHub URL validation failed - empty URL`), `validateGitHubUrl`, { errorMsg }); return errorMsg; } // Strict GitHub repository URL pattern // Matches: https://github.com/owner/repo with optional trailing slash const githubUrlPattern = /^https:\/\/github\.com\/[\w.-]+\/[\w.-]+\/?$/; if (!githubUrlPattern.test(sanitizedUrl)) { const errorMsg = "Please enter a valid GitHub repository URL (e.g., https://github.com/user/repo)"; qerrors(new Error(`GitHub URL validation failed - invalid format`), `validateGitHubUrl`, { sanitizedUrl, errorMsg, pattern: githubUrlPattern.toString() }); return errorMsg; } qerrors(new Error(`GitHub URL validation succeeded`), `validateGitHubUrl`, { sanitizedUrl }); return ""; // Empty string indicates successful validation } module.exports = validateGitHubUrl;