Home Explore Help
Sign In
masif
/
quran
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
quran
/
node_modules
/
safe-regex
/
index.js

index.js 1.7 KB
Permalink History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273 
  1. const analyzer = require('./lib/analyzer');
    2. 

  2. const analyzerFamily = require('./lib/analyzer-family');
    3. 

  3. 

  4. const DEFAULT_SAFE_REP_LIMIT = 25;
    5. 

  5. const RET_IS_SAFE = true;
    6. 

  6. const RET_IS_VULNERABLE = false;
    7. 

  7. 

  8. class Args {
    9. 

  9.   constructor(regExp, analyzerOptions) {
    10. 

  10.     this.regExp = regExp;
    11. 

  11.     this.analyzerOptions = analyzerOptions;
    12. 

  12.   }
    13. 

  13. }
    14. 

  14. 

  15. function safeRegex(re, opts) {
    16. 

  16.   try {
    17. 

  17.     const args = buildArgs(re, opts);
    18. 

  18.     const analyzerResponses = askAnalyzersIfVulnerable(args);
    19. 

  19. 

  20.     // Did any analyzer say true?
    21. 

  21.     if (analyzerResponses.find((isVulnerable) => isVulnerable)) {
    22. 

  22.       return RET_IS_VULNERABLE;
    23. 

  23.     } else {
    24. 

  24.       return RET_IS_SAFE;
    25. 

  25.     }
    26. 

  26.   } catch (err) {
    27. 

  27.     // Invalid or unparseable input
    28. 

  28.     return false;
    29. 

  29.   }
    30. 

  30. }
    31. 

  31. 

  32. function buildArgs(re, opts) {
    33. 

  33.   // Build AnalyzerOptions
    34. 

  34.   if (!opts) opts = {};
    35. 

  35.   const heuristic_replimit = opts.limit === undefined ? DEFAULT_SAFE_REP_LIMIT : opts.limit;
    36. 

  36. 

  37.   const analyzerOptions = new analyzer.AnalyzerOptions(heuristic_replimit);
    38. 

  38. 

  39.   // Build RegExp
    40. 

  40.   let regExp = null;
    41. 

  41.   // Construct a RegExp object
    42. 

  42.   if (re instanceof RegExp) {
    43. 

  43.     regExp = re;
    44. 

  44.   } else if (typeof re === 'string') {
    45. 

  45.     regExp = new RegExp(re);
    46. 

  46.   } else {
    47. 

  47.     regExp = new RegExp(String(re));
    48. 

  48.   }
    49. 

  49. 

  50.   return new Args(regExp, analyzerOptions);
    51. 

  51. }
    52. 

  52. 

  53. function askAnalyzersIfVulnerable(args) {
    54. 

  54.   let analyzerSaysVulnerable = [];
    55. 

  55. 

  56.   // Query the Analyzers
    57. 

  57.   let Analyzer;
    58. 

  58.   for (Analyzer of analyzerFamily) {
    59. 

  59.     try {
    60. 

  60.       const analyzer = new Analyzer(args.analyzerOptions);
    61. 

  61.       analyzerSaysVulnerable.push(analyzer.isVulnerable(args.regExp));
    62. 

  62.     } catch (err) {
    63. 

  63.       /* istanbul ignore next */ // No need to worry about code coverage here.
    64. 

  64.       analyzerSaysVulnerable.push(false);
    65. 

  65.     }
    66. 

  66.   }
    67. 

  67. 

  68.   return analyzerSaysVulnerable;
    69. 

  69. }
    70. 

  70. 

  71. // Export
    72. 

  72. 

  73. module.exports = safeRegex;
    74.