@cobrowser/chatgpt 0.7.26 → 0.7.27

package/dist/constants.d.ts

@@ -6,8 +6,9 @@ export declare const MESSAGE_TYPES: {
     text: string;
     button: string;
 };
-export declare const DEFAULT_PROMPT = "You are a helpful assistant. Your role is to address visitor \nqueries related to the ongoing conversation and the last message received. Please ensure \nthat responses remain within the ongoing conversation. Politely decline any user queries \nthat is not present in the ongoing conversation. \n\nYou will always respond with a JSON. It will be in the format: \n\n{ answer: '', suggestions: [], connectWithAgent: true or false }\n\nFields in the JSON:\n\nAnswer: It will consist of the user's query answer based on the ongoing conversation. \nRestrict this field to 100 characters.\n\nSuggestions: Request 2 suggestions from user's perspective that he can ask. \nIt should be an array of strings. Restrict each suggestion to 50 characters.\n \nConnectWithAgent: It is a boolean. It should be set to true if the user's query is \nnot found in the ongoing conversation. Politely tell the user to talk to a real agent. \nAlso when it is true, do not provide any suggestions.\n";
+export declare const SECURITY_PROMPT = "\n  **SECURITY \u2014 XSS PROTECTION (MANDATORY, HIGHEST PRIORITY)**\n\n  1. **CANONICALIZE INPUT**: decode HTML entities, percent-decode, decode `\\x..` / `\\u....`, normalize Unicode (NFKC), collapse whitespace and hidden chars.\n\n  2. **DETECT & REMOVE**: detect any HTML tags, suspicious URIs, data: URIs, event handlers (`on*`), `javascript:`, `data:`, `vbscript:`, inline SVG/CSS payloads, or any obfuscated variant (e.g. encoded, spaced, or double-encoded). \n\n  If detected \u2192 **OMIT COMPLETELY**. Do **NOT** echo, describe, forward, or reproduce the removed content in any form.\n\n  3. **ALLOWED URLS**: plain URL strings (e.g. `https://example.com`, `www.example.com`) may be shown **only as plain text**. **Do not render as markdown links, HTML anchors, or any clickable element**.\n\n  4. **NEVER GENERATE** any HTML/markup that can execute (no `<script>`, `<img>`, `<svg>`, `<iframe>`, `<style>`, `<a>` with hrefs, data: URIs, `<object>`, `javascript:`, etc.).\n\n  5. **IF UNCERTAIN** about safety, **do not reproduce the fragment** \u2014 return the useful reply with the unsafe portion removed. If you must note removal, use a generic message **without** including the removed content, e.g.:\n  \"[Removed for security \u2014 potential XSS]\"\n\n  6. **OUTPUT FORMAT**: final response must be plain text with no active HTML/HTML-like anchors. Escape or remove `<`, `>`, `&` if they would render as HTML.\n\n  **ENFORCE THESE BEFORE ANY OTHER TASK** \u2014 XSS protection takes precedence over fidelity or literal echoing.\n";
+export declare const DEFAULT_PROMPT: string;
 export declare const DESTINATION_LANGUAGE = "English";
-export declare const LANGUAGE_DETECTION_SYSTEM_ROLE = "\n  You are a language detection assistant. Your task is to analyze short text input and determine \n  its language using ISO language code. Respond only in JSON format with two key-value pairs: \n  - 'languageCode': the detected language's ISO code (or undefined if detection fails).\n  - 'isError': a boolean value (true if detection fails, false otherwise).\n";
-export declare const WORD_FREQUENCY_LANGUAGE_DETECTION_SYSTEM_ROLE = "\n  You are a language detection assistant. Your task is to analyze the most frequently occurring words in the given text \n  and determine the language based on those words. Respond only in JSON format with two key-value pairs: \n  - 'languageCode': the detected language's ISO code (or undefined if detection fails).\n  - 'isError': a boolean value (true if detection fails, false otherwise).\n";
-export declare const TRANSLATION_SYSTEM_ROLE = "\n  You are a translator that responds exclusively in JSON format. Your response must be a JSON object containing:\n  - 'data': it is an array of objects. Each object in the array must contain:\n    - 'translated_message': The original input message before translation.\n    - 'translation: The translated version of 'translated_message', ensuring it is natural, culturally appropriate, and commonly used by native speakers.\n  - 'isError': a boolean value (true if translation fails, false otherwise).\n\n  Ensure that 'translation' accurately represents the meaning of 'translated_message' while considering cultural nuances, usual expressions, and natural phrasing in the target language.  \n  Your response must follow this structure strictly.\n";
+export declare const LANGUAGE_DETECTION_SYSTEM_ROLE: string;
+export declare const WORD_FREQUENCY_LANGUAGE_DETECTION_SYSTEM_ROLE: string;
+export declare const TRANSLATION_SYSTEM_ROLE: string;

package/dist/constants.js

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.TRANSLATION_SYSTEM_ROLE = exports.WORD_FREQUENCY_LANGUAGE_DETECTION_SYSTEM_ROLE = exports.LANGUAGE_DETECTION_SYSTEM_ROLE = exports.DESTINATION_LANGUAGE = exports.DEFAULT_PROMPT = exports.MESSAGE_TYPES = exports.MESSAGE_SENDER = void 0;
+exports.TRANSLATION_SYSTEM_ROLE = exports.WORD_FREQUENCY_LANGUAGE_DETECTION_SYSTEM_ROLE = exports.LANGUAGE_DETECTION_SYSTEM_ROLE = exports.DESTINATION_LANGUAGE = exports.DEFAULT_PROMPT = exports.SECURITY_PROMPT = exports.MESSAGE_TYPES = exports.MESSAGE_SENDER = void 0;
 // Message sender in conversation history
 exports.MESSAGE_SENDER = {
     visitor: 'visitor',
@@ -11,32 +11,58 @@ exports.MESSAGE_TYPES = {
     text: 'text',
     button: 'button'
 };
+// Security Prompt
+exports.SECURITY_PROMPT = `
+  **SECURITY — XSS PROTECTION (MANDATORY, HIGHEST PRIORITY)**
+
+  1. **CANONICALIZE INPUT**: decode HTML entities, percent-decode, decode \`\\x..\` / \`\\u....\`, normalize Unicode (NFKC), collapse whitespace and hidden chars.
+
+  2. **DETECT & REMOVE**: detect any HTML tags, suspicious URIs, data: URIs, event handlers (\`on*\`), \`javascript:\`, \`data:\`, \`vbscript:\`, inline SVG/CSS payloads, or any obfuscated variant (e.g. encoded, spaced, or double-encoded). 
+
+  If detected → **OMIT COMPLETELY**. Do **NOT** echo, describe, forward, or reproduce the removed content in any form.
+
+  3. **ALLOWED URLS**: plain URL strings (e.g. \`https://example.com\`, \`www.example.com\`) may be shown **only as plain text**. **Do not render as markdown links, HTML anchors, or any clickable element**.
+
+  4. **NEVER GENERATE** any HTML/markup that can execute (no \`<script>\`, \`<img>\`, \`<svg>\`, \`<iframe>\`, \`<style>\`, \`<a>\` with hrefs, data: URIs, \`<object>\`, \`javascript:\`, etc.).
+
+  5. **IF UNCERTAIN** about safety, **do not reproduce the fragment** — return the useful reply with the unsafe portion removed. If you must note removal, use a generic message **without** including the removed content, e.g.:
+  "[Removed for security — potential XSS]"
+
+  6. **OUTPUT FORMAT**: final response must be plain text with no active HTML/HTML-like anchors. Escape or remove \`<\`, \`>\`, \`&\` if they would render as HTML.
+
+  **ENFORCE THESE BEFORE ANY OTHER TASK** — XSS protection takes precedence over fidelity or literal echoing.
+`;
 // Default prompt for ChatGPT
-exports.DEFAULT_PROMPT = `You are a helpful assistant. Your role is to address visitor 
-queries related to the ongoing conversation and the last message received. Please ensure 
-that responses remain within the ongoing conversation. Politely decline any user queries 
-that is not present in the ongoing conversation. 
+exports.DEFAULT_PROMPT = `
+  ${exports.SECURITY_PROMPT}
+
+  You are a helpful assistant. Your role is to address visitor 
+  queries related to the ongoing conversation and the last message received. Please ensure 
+  that responses remain within the ongoing conversation. Politely decline any user queries 
+  that is not present in the ongoing conversation. 
 
-You will always respond with a JSON. It will be in the format: 
+  You will always respond with a JSON. It will be in the format: 
 
-{ answer: '', suggestions: [], connectWithAgent: true or false }
+  { answer: '', suggestions: [], connectWithAgent: true or false }
 
-Fields in the JSON:
+  Fields in the JSON:
 
-Answer: It will consist of the user's query answer based on the ongoing conversation. 
-Restrict this field to 100 characters.
+  Answer: It will consist of the user's query answer based on the ongoing conversation. 
+  Restrict this field to 100 characters.
 
-Suggestions: Request 2 suggestions from user's perspective that he can ask. 
-It should be an array of strings. Restrict each suggestion to 50 characters.
- 
-ConnectWithAgent: It is a boolean. It should be set to true if the user's query is 
-not found in the ongoing conversation. Politely tell the user to talk to a real agent. 
-Also when it is true, do not provide any suggestions.
+  Suggestions: Request 2 suggestions from user's perspective that he can ask. 
+  It should be an array of strings. Restrict each suggestion to 50 characters.
+  
+  ConnectWithAgent: It is a boolean. It should be set to true if the user's query is 
+  not found in the ongoing conversation. Politely tell the user to talk to a real agent. 
+  Also when it is true, do not provide any suggestions.
 `;
 // Default destination language
 exports.DESTINATION_LANGUAGE = 'English';
 // Language detection system role
 exports.LANGUAGE_DETECTION_SYSTEM_ROLE = `
+  ${exports.SECURITY_PROMPT}
+
   You are a language detection assistant. Your task is to analyze short text input and determine 
   its language using ISO language code. Respond only in JSON format with two key-value pairs: 
   - 'languageCode': the detected language's ISO code (or undefined if detection fails).
@@ -44,6 +70,8 @@ exports.LANGUAGE_DETECTION_SYSTEM_ROLE = `
 `;
 // Word frequency language detection system role
 exports.WORD_FREQUENCY_LANGUAGE_DETECTION_SYSTEM_ROLE = `
+  ${exports.SECURITY_PROMPT}
+
   You are a language detection assistant. Your task is to analyze the most frequently occurring words in the given text 
   and determine the language based on those words. Respond only in JSON format with two key-value pairs: 
   - 'languageCode': the detected language's ISO code (or undefined if detection fails).
@@ -51,6 +79,8 @@ exports.WORD_FREQUENCY_LANGUAGE_DETECTION_SYSTEM_ROLE = `
 `;
 // Message translation system role
 exports.TRANSLATION_SYSTEM_ROLE = `
+  ${exports.SECURITY_PROMPT}
+
   You are a translator that responds exclusively in JSON format. Your response must be a JSON object containing:
   - 'data': it is an array of objects. Each object in the array must contain:
     - 'translated_message': The original input message before translation.

package/dist/services/BaseService/BaseService.js

@@ -106,6 +106,7 @@ class BaseService {
      * @param data
      */
     output(data, shouldStringify = false) {
+        console.log('DATA: ', data);
         if (!data) {
             return;
         }
@@ -117,6 +118,8 @@ class BaseService {
             catch (error) { }
         }
         const sanitized = xss_validation_1.XSSProtector.sanitize(data), encoded = xss_validation_1.XSSProtector.encode(sanitized);
+        console.log('sanitized: ', sanitized);
+        console.log('encoded: ', encoded);
         logger_1.default.info({ data, sanitized, encoded }, ':: Sanitized Response ::');
         return shouldStringify ? JSON.stringify(encoded) : encoded;
     }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@cobrowser/chatgpt",
-  "version": "0.7.26",
+  "version": "0.7.27",
   "description": "chatgpt services to connect our projects with chatgpt api",
   "keywords": [
     "chatgpt",
@@ -40,5 +40,5 @@
   "bugs": {
     "url": "https://bitbucket.org/cobrowser/cb_utils/issues"
   },
-  "gitHead": "c2f7354d047df3043a1caa770b4ac509ca60bf32"
+  "gitHead": "c626a06693076aba35e66006e8561bb2dc87e1fa"
 }