vibe-guard
Version:
██ Vibe-Guard Security Scanner - 28 essential security rules to catch vulnerabilities before they catch you! Zero dependencies, instant setup, works everywhere, optimized performance. Detects SQL injection, XSS, exposed secrets, CSRF, CORS issues, contain
48 lines • 1.81 kB
TypeScript
import { BaseRule, FileContent, SecurityIssue } from '../types';
export declare class InsecureFileUploadRule extends BaseRule {
readonly name = "insecure-file-upload";
readonly description = "Detects insecure file upload implementations without proper validation with context-aware analysis";
readonly severity: "high";
private readonly fileUploadPatterns;
private readonly validationPatterns;
private readonly dangerousExtensions;
check(fileContent: FileContent): SecurityIssue[];
private hasValidationPatterns;
private analyzeContext;
private isSafeContext;
private calculateConfidence;
private calculateSeverity;
private detectLanguage;
private detectFramework;
private hasFileValidation;
private hasSizeLimits;
private hasTypeChecking;
private isInComment;
private isInTestFile;
private isInDocumentation;
private isInDevelopment;
private isFalsePositive;
private validateDirectFileMove;
private validatePHPFileMove;
private validateAnyFileUpload;
private validateMulterUpload;
private validateSingleFileUpload;
private validateArrayFileUpload;
private validateFieldsUpload;
private validateFileSystemOperation;
private validatePHPFileCopy;
private validatePHPFileUpload;
private validatePythonFileUpload;
private validateJavaFileUpload;
private validateJavaFilePart;
private validatePythonFileOpen;
private validateFileMove;
private validateFileOperation;
private validateFileExtensionAssignment;
private validateFilenameAssignment;
private validateFileSizeAssignment;
private validateFileSizeCheck;
private generateSuggestion;
private generateDangerousExtensionSuggestion;
}
//# sourceMappingURL=insecure-file-upload.d.ts.map