UNPKG

voluptatesiusto

Version:

Web3-Onboard makes it simple to connect Ethereum hardware and software wallets to your dapp. Features standardised spec compliant web3 providers for all supported wallets, framework agnostic modern javascript UI with code splitting, CSS customization, mul

github.com/ColleenPollich/voluptatesiusto

ColleenPollich/voluptatesiusto

78 lines (64 loc) 2.29 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
import type { Device, ProviderRpcErrorCode } from '@web3-onboard/common' import type { InjectedProvider, InjectedWalletModule } from './types.js' export class ProviderRpcError extends Error { message: string code: ProviderRpcErrorCode | number data?: unknown constructor(error: Pick<ProviderRpcError, 'message' | 'code' | 'data'>) { super(error.message) this.message = error.message this.code = error.code this.data = error.data } } export const defaultWalletUnavailableMsg = ({ label, externalUrl }: InjectedWalletModule) => externalUrl ? `Please <a href="${externalUrl}" target="_blank">install or switch to</a> ${label} to continue` : `Please install or enable ${label} to continue` export const isWalletAvailable = ( provider: InjectedProvider, checkProviderIdentity: InjectedWalletModule['checkProviderIdentity'], device: Device ): boolean => { // No injected providers exist. if (!provider) { return false } // Many injected providers add their own object into window. if (checkProviderIdentity({ provider, device })) { return true } // For multiple injected providers, check providers array // example coinbase inj wallet pushes over-ridden wallets // into a providers array at window.ethereum return !!provider.providers?.some(provider => checkProviderIdentity({ provider, device }) ) } export function containsExecutableJavaScript(svgString: string): boolean { if (!svgString) return false // Regular expression to match <script> tags const scriptTagRegex = /<script\b[^<]*(?:(?!<\/script>)<[^<]*)*<\/script>/gi // Regular expression to match event handler attributes (e.g., onclick, onload) const eventHandlerRegex = /\bon[a-z]+\s*=\s*["']?(?:javascript:)?/gi // Regular expression to match href or xlink:href attributes containing "javascript:" const hrefJavaScriptRegex = /\b(href|xlink:href)\s*=\s*["']?javascript:/gi // Check for <script> tags if (scriptTagRegex.test(svgString)) { return true } // Check for event handlers if (eventHandlerRegex.test(svgString)) { return true } // Check for "javascript:" in href or xlink:href if (hrefJavaScriptRegex.test(svgString)) { return true } // No executable JavaScript found return false }