npm - @crowi/plugin-renderer-plantuml - Versions diffs - 0.1.0-alpha.0 - Mend

@crowi/plugin-renderer-plantuml 0.1.0-alpha.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (9) hide show

package/LICENSE ADDED Viewed

@@ -0,0 +1,21 @@
+The MIT License (MIT)
+Copyright (c) 2013 Sotaro KARASAWA <sotaro.k@gmail.com>
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.

package/README.md ADDED Viewed

@@ -0,0 +1,121 @@
+# @crowi/plugin-renderer-plantuml
+PlantUML diagram renderer for Crowi 2.x. Sends `` ```plantuml ``
+fenced code blocks to an operator-configured PlantUML server and
+inlines the returned SVG (or PNG) into the rendered page.
+## What it does
+Given a fence like:
+````markdown
+```plantuml
+@startuml
+A -> B: hello
+B --> A: reply
+@enduml
+```
+````
+The plugin:
+1. Deflate+base64-encodes the diagram source via `plantuml-encoder`.
+2. Fetches `${serverUrl}/${outputFormat}/${encoded}` from the
+   configured server.
+3. For SVG, runs a minimal regex sanitizer (strips `<script>`,
+   `on*=` attributes, `javascript:` URLs, `<foreignObject>`) and
+   wraps the result in `<div class="plantuml-embed">`.
+4. For PNG, base64-encodes the body and emits a `<img>` data URL.
+5. Caches the result in Crowi's `PluginRenderCache` with a 1h fresh
+   TTL (4h stale-while-revalidate window).
+Network or server errors are cached as `RenderError` (`network` /
+`timeout` / `not_found`) with the per-code TTL from
+`packages/api/src/renderer/cache/index.ts:RENDER_ERROR_TTL`, so a
+brief PlantUML outage doesn't hammer the server.
+## Install
+Bundled in the Crowi monorepo:
+```bash
+# in the Crowi monorepo (dev path):
+pnpm --filter @crowi/api add -D @crowi/plugin-renderer-plantuml
+# or in a standalone runner:
+npm install @crowi/plugin-renderer-plantuml
+```
+## Configure
+### Enable in `crowi.config.json`
+```jsonc
+{
+  "plugins": [
+    "@crowi/plugin-renderer-plantuml"
+  ]
+}
+```
+A server restart is required for plugin-list changes.
+### Per-plugin config (admin UI)
+Open `/admin/plugins → @crowi/plugin-renderer-plantuml` and set:
+| Field          | Default                  | Notes                                                       |
+|----------------|--------------------------|-------------------------------------------------------------|
+| `serverUrl`    | `http://plantuml:8080`   | Base URL of your PlantUML server. Matches the docker-compose service hostname Crowi ships. |
+| `outputFormat` | `svg`                    | `svg` (preferred) or `png` (fallback for installs whose server only serves PNG). |
+### Migrating from Crowi v1 (`PLANTUML_URI` env)
+v1 used the `PLANTUML_URI` environment variable to point at the
+PlantUML server. v2 reads the URL from this plugin's `serverUrl`
+config field instead:
+1. Read your existing `PLANTUML_URI` value.
+2. In `/admin/plugins → @crowi/plugin-renderer-plantuml`, paste the
+   URL into `serverUrl`.
+3. Save. The renderer picks up the new value on next boot (or on
+   `reconfigure` once Phase 7's hot-reload lands).
+The env variable is no longer consulted by the plugin.
+## Cache behaviour
+- Cache key: `sha256(diagramSource)`. Editing the diagram body
+  invalidates the slot naturally; editing `serverUrl` / `outputFormat`
+  does NOT invalidate immediately — wait for the 1h TTL to roll over
+  or bump `cacheVersion` (developer-side; restart required).
+- Error responses (network / 5xx / 404) are cached for 5 minutes per
+  the Phase 4 error-cache table.
+## SVG sanitization
+The bundled sanitizer is intentionally minimal (regex-only, no DOM):
+- Strips `<script>` blocks.
+- Strips `<foreignObject>` content.
+- Strips `on*=` event-handler attributes.
+- Strips `href="javascript:..."` URL schemes.
+This is defence-in-depth — the PlantUML server is operator-owned, so
+the trust model is "trusted upstream" rather than "user-uploaded
+content". If your threat model demands stricter sanitization,
+deploy a reverse proxy that runs DOMPurify in front of the PlantUML
+server, or wait for the Phase 6.1+ DOMPurify integration.
+## Out of scope (Phase 6)
+- Mermaid (` ```mermaid `) — Phase 6.1, separate plugin.
+- PlantUML PNG → SVG auto-fallback when SVG endpoint 404s — Phase 6.1.
+- Per-server-host trust list / CORS / proxying — operator's network
+  responsibility.
+## See also
+- RFC-0002 §"Phase 6 — bundled renderer plugins" for the design
+  rationale + cache contract.
+- [`plantuml-encoder`](https://www.npmjs.com/package/plantuml-encoder)
+  — the upstream encoder this plugin wraps.

package/dist/index.d.mts ADDED Viewed

@@ -0,0 +1,48 @@
+import { z } from 'zod/v3';
+import { CodeBlockRenderer, CrowiPlugin } from '@crowi/plugin-api';
+/**
+ * @crowi/plugin-renderer-plantuml
+ *
+ * Renders ```plantuml fenced code blocks via an operator-configured
+ * PlantUML server. The diagram source is deflate+base64-encoded
+ * (`plantuml-encoder`) and fetched from `${serverUrl}/${format}/${encoded}`,
+ * then either inlined as SVG (sanitized) or embedded as a base64 PNG.
+ *
+ * Phase 6 ships this as the first user of `addCodeBlockRenderer`
+ * and the cache contract (Phase 4 PluginRenderCache). Failures are
+ * cached as `RenderError` for 5 minutes (network / timeout); the
+ * placeholder is rendered through `crowi-embed-placeholder-error-*`.
+ *
+ * Operator install:
+ *   1. Run the official PlantUML server (e.g. `docker compose` from
+ *      Crowi's compose file ships one at `http://plantuml:8080`).
+ *   2. List this plugin in `crowi.config.json:plugins`.
+ *   3. In the admin UI, fill in `serverUrl` if your server isn't at
+ *      the default hostname.
+ */
+/**
+ * Schema-driven config. The admin UI in `/admin/plugins` builds the
+ * form by walking this object. Defaults match the docker-compose
+ * service hostname that ships with the Crowi 2.x dev runner.
+ */
+declare const plantumlConfigSchema: z.ZodObject<{
+    serverUrl: z.ZodDefault<z.ZodString>;
+    outputFormat: z.ZodDefault<z.ZodEnum<["svg", "png"]>>;
+}, "strip", z.ZodTypeAny, {
+    serverUrl: string;
+    outputFormat: "svg" | "png";
+}, {
+    serverUrl?: string | undefined;
+    outputFormat?: "svg" | "png" | undefined;
+}>;
+type PlantUmlConfig = z.infer<typeof plantumlConfigSchema>;
+/**
+ * Build the CodeBlockRenderer instance, bound to a resolved config.
+ * Exported so unit tests can construct a renderer without going through
+ * the full plugin registration flow.
+ */
+declare function createPlantUmlRenderer(config: PlantUmlConfig): CodeBlockRenderer;
+declare const plugin: CrowiPlugin;
+export { type PlantUmlConfig, createPlantUmlRenderer, plugin as default, plantumlConfigSchema };

package/dist/index.d.ts ADDED Viewed

@@ -0,0 +1,48 @@
+import { z } from 'zod/v3';
+import { CodeBlockRenderer, CrowiPlugin } from '@crowi/plugin-api';
+/**
+ * @crowi/plugin-renderer-plantuml
+ *
+ * Renders ```plantuml fenced code blocks via an operator-configured
+ * PlantUML server. The diagram source is deflate+base64-encoded
+ * (`plantuml-encoder`) and fetched from `${serverUrl}/${format}/${encoded}`,
+ * then either inlined as SVG (sanitized) or embedded as a base64 PNG.
+ *
+ * Phase 6 ships this as the first user of `addCodeBlockRenderer`
+ * and the cache contract (Phase 4 PluginRenderCache). Failures are
+ * cached as `RenderError` for 5 minutes (network / timeout); the
+ * placeholder is rendered through `crowi-embed-placeholder-error-*`.
+ *
+ * Operator install:
+ *   1. Run the official PlantUML server (e.g. `docker compose` from
+ *      Crowi's compose file ships one at `http://plantuml:8080`).
+ *   2. List this plugin in `crowi.config.json:plugins`.
+ *   3. In the admin UI, fill in `serverUrl` if your server isn't at
+ *      the default hostname.
+ */
+/**
+ * Schema-driven config. The admin UI in `/admin/plugins` builds the
+ * form by walking this object. Defaults match the docker-compose
+ * service hostname that ships with the Crowi 2.x dev runner.
+ */
+declare const plantumlConfigSchema: z.ZodObject<{
+    serverUrl: z.ZodDefault<z.ZodString>;
+    outputFormat: z.ZodDefault<z.ZodEnum<["svg", "png"]>>;
+}, "strip", z.ZodTypeAny, {
+    serverUrl: string;
+    outputFormat: "svg" | "png";
+}, {
+    serverUrl?: string | undefined;
+    outputFormat?: "svg" | "png" | undefined;
+}>;
+type PlantUmlConfig = z.infer<typeof plantumlConfigSchema>;
+/**
+ * Build the CodeBlockRenderer instance, bound to a resolved config.
+ * Exported so unit tests can construct a renderer without going through
+ * the full plugin registration flow.
+ */
+declare function createPlantUmlRenderer(config: PlantUmlConfig): CodeBlockRenderer;
+declare const plugin: CrowiPlugin;
+export { type PlantUmlConfig, createPlantUmlRenderer, plugin as default, plantumlConfigSchema };

package/dist/index.js ADDED Viewed

@@ -0,0 +1,156 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+// src/index.ts
+var index_exports = {};
+__export(index_exports, {
+  createPlantUmlRenderer: () => createPlantUmlRenderer,
+  default: () => index_default,
+  plantumlConfigSchema: () => plantumlConfigSchema
+});
+module.exports = __toCommonJS(index_exports);
+var import_node_crypto = require("crypto");
+var import_v3 = require("zod/v3");
+// src/encoder.ts
+var plantumlEncoder = require("plantuml-encoder");
+function encode(source) {
+  return plantumlEncoder.encode(source);
+}
+// src/sanitize.ts
+var SCRIPT_TAG_RE = /<script\b[^>]*>[\s\S]*?<\/script\s*>/gi;
+var FOREIGN_OBJECT_RE = /<foreignObject\b[^>]*>[\s\S]*?<\/foreignObject\s*>/gi;
+var ON_EVENT_ATTR_RE = /\son\w+\s*=\s*(?:"[^"]*"|'[^']*'|[^\s>]+)/gi;
+var JAVASCRIPT_URL_ATTR_RE = /\s(?:xlink:)?href\s*=\s*(?:"\s*javascript:[^"]*"|'\s*javascript:[^']*'|javascript:[^\s>]+)/gi;
+function sanitizeSvg(input) {
+  let out = input;
+  out = out.replace(SCRIPT_TAG_RE, "");
+  out = out.replace(FOREIGN_OBJECT_RE, "");
+  out = out.replace(ON_EVENT_ATTR_RE, "");
+  out = out.replace(JAVASCRIPT_URL_ATTR_RE, "");
+  return out;
+}
+// src/index.ts
+var plantumlConfigSchema = import_v3.z.object({
+  serverUrl: import_v3.z.string().url().default("http://plantuml:8080").describe("Base URL of the PlantUML server."),
+  outputFormat: import_v3.z.enum(["svg", "png"]).default("svg").describe("Image format the server returns. SVG is preferred (smaller, interactive); PNG is a fallback for installs whose server only serves PNG.")
+});
+var FETCH_TIMEOUT_MS = 1e4;
+var CACHE_TTL_SEC = 60 * 60;
+function createPlantUmlRenderer(config) {
+  return {
+    cacheVersion: 1,
+    reservation: { variant: "aspect", aspectRatio: 16 / 9 },
+    computeEmbedKey: (info) => {
+      return (0, import_node_crypto.createHash)("sha256").update(info.source).digest("hex");
+    },
+    async render(info, _ctx) {
+      const encoded = encode(info.source);
+      const url = `${trimTrailingSlash(config.serverUrl)}/${config.outputFormat}/${encoded}`;
+      const controller = new AbortController();
+      const timer = setTimeout(() => controller.abort(), FETCH_TIMEOUT_MS);
+      let response;
+      try {
+        response = await fetch(url, { signal: controller.signal });
+      } catch (err) {
+        clearTimeout(timer);
+        const isAbort = err instanceof Error && (err.name === "AbortError" || /abort/i.test(err.message));
+        const code = isAbort ? "timeout" : "network";
+        return {
+          html: "",
+          error: { code, message: stringifyError(err) }
+        };
+      }
+      clearTimeout(timer);
+      if (!response.ok) {
+        const code = response.status === 404 ? "not_found" : "network";
+        return {
+          html: "",
+          error: { code, message: `PlantUML server responded with HTTP ${response.status}` }
+        };
+      }
+      if (config.outputFormat === "svg") {
+        const svg = await response.text();
+        const sanitized = sanitizeSvg(svg);
+        return {
+          html: `<div class="plantuml-embed">${sanitized}</div>`,
+          ttlSec: CACHE_TTL_SEC
+        };
+      }
+      const buf = Buffer.from(await response.arrayBuffer());
+      const b64 = buf.toString("base64");
+      return {
+        html: `<img class="plantuml-embed" alt="" src="data:image/png;base64,${b64}">`,
+        ttlSec: CACHE_TTL_SEC
+      };
+    }
+  };
+}
+var plugin = {
+  name: "@crowi/plugin-renderer-plantuml",
+  version: "0.1.0-dev",
+  configSchema: plantumlConfigSchema,
+  adminPlacement: {
+    section: "renderer",
+    label: "PlantUML diagrams",
+    icon: "diagram-3"
+  },
+  configI18n: {
+    ja: {
+      serverUrl: { label: "\u30B5\u30FC\u30D0\u30FC URL", description: "PlantUML \u30B5\u30FC\u30D0\u30FC\u306E\u30D9\u30FC\u30B9 URL\u3002" },
+      format: {
+        label: "\u753B\u50CF\u5F62\u5F0F",
+        description: "\u30B5\u30FC\u30D0\u30FC\u304C\u8FD4\u3059\u753B\u50CF\u5F62\u5F0F\u3002SVG \u63A8\u5968\uFF08\u8EFD\u91CF\u3067\u5BFE\u8A71\u7684\uFF09\u3002PNG \u306F SVG \u3092\u8FD4\u305B\u306A\u3044\u30B5\u30FC\u30D0\u30FC\u5411\u3051\u306E\u30D5\u30A9\u30FC\u30EB\u30D0\u30C3\u30AF\u3067\u3059\u3002"
+      }
+    }
+  },
+  registerRenderer: (registry, ctx) => {
+    const config = ctx.config();
+    registry.addCodeBlockRenderer("plantuml", createPlantUmlRenderer(config));
+    ctx.log.debug(`registered PlantUML code-block renderer (serverUrl=${config.serverUrl}, format=${config.outputFormat})`);
+  }
+  // When admin saves new config, re-register so the renderer closure
+  // picks up the new serverUrl / outputFormat. Phase 4's registry
+  // last-wins + boot warn applies here too — re-registering for the
+  // same lang produces a warn each time. We accept that noise because
+  // operator-driven reconfig is rare and the warn is informational.
+  // NOTE: a richer reconfigure surface (replace-in-place without warn)
+  // is Phase 7+ work.
+};
+var index_default = plugin;
+function trimTrailingSlash(s) {
+  return s.endsWith("/") ? s.slice(0, -1) : s;
+}
+function stringifyError(err) {
+  if (err instanceof Error) return err.message;
+  if (typeof err === "string") return err;
+  try {
+    return JSON.stringify(err);
+  } catch {
+    return String(err);
+  }
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  createPlantUmlRenderer,
+  plantumlConfigSchema
+});
+//# sourceMappingURL=index.js.map

package/dist/index.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../src/index.ts","../src/encoder.ts","../src/sanitize.ts"],"sourcesContent":["import { createHash } from 'node:crypto';\nimport { z } from 'zod/v3';\nimport type { CodeBlockInfo, CodeBlockRenderer, CrowiPlugin, RenderError, RenderResult } from '@crowi/plugin-api';\nimport { encode as encodePlantUml } from './encoder';\nimport { sanitizeSvg } from './sanitize';\n\n/**\n * @crowi/plugin-renderer-plantuml\n *\n * Renders ```plantuml fenced code blocks via an operator-configured\n * PlantUML server. The diagram source is deflate+base64-encoded\n * (`plantuml-encoder`) and fetched from `${serverUrl}/${format}/${encoded}`,\n * then either inlined as SVG (sanitized) or embedded as a base64 PNG.\n *\n * Phase 6 ships this as the first user of `addCodeBlockRenderer`\n * and the cache contract (Phase 4 PluginRenderCache). Failures are\n * cached as `RenderError` for 5 minutes (network / timeout); the\n * placeholder is rendered through `crowi-embed-placeholder-error-*`.\n *\n * Operator install:\n * 1. Run the official PlantUML server (e.g. `docker compose` from\n * Crowi's compose file ships one at `http://plantuml:8080`).\n * 2. List this plugin in `crowi.config.json:plugins`.\n * 3. In the admin UI, fill in `serverUrl` if your server isn't at\n * the default hostname.\n */\n\n/**\n * Schema-driven config. The admin UI in `/admin/plugins` builds the\n * form by walking this object. Defaults match the docker-compose\n * service hostname that ships with the Crowi 2.x dev runner.\n */\nexport const plantumlConfigSchema = z.object({\n serverUrl: z.string().url().default('http://plantuml:8080').describe('Base URL of the PlantUML server.'),\n outputFormat: z\n .enum(['svg', 'png'])\n .default('svg')\n .describe('Image format the server returns. SVG is preferred (smaller, interactive); PNG is a fallback for installs whose server only serves PNG.'),\n});\n\nexport type PlantUmlConfig = z.infer<typeof plantumlConfigSchema>;\n\n/** Render-side timeout for the PlantUML server fetch. */\nconst FETCH_TIMEOUT_MS = 10_000;\n/** Fresh cache TTL — 1 hour. SWR window = 4h via cachedRender default. */\nconst CACHE_TTL_SEC = 60 * 60;\n\n/**\n * Build the CodeBlockRenderer instance, bound to a resolved config.\n * Exported so unit tests can construct a renderer without going through\n * the full plugin registration flow.\n */\nexport function createPlantUmlRenderer(config: PlantUmlConfig): CodeBlockRenderer {\n return {\n cacheVersion: 1,\n reservation: { variant: 'aspect', aspectRatio: 16 / 9 },\n computeEmbedKey: (info: CodeBlockInfo) => {\n // Hash the diagram source only — operator changing serverUrl /\n // outputFormat invalidates implicitly via the 1h TTL rather than\n // explicit invalidation. cacheVersion bump is the operator's\n // escape hatch when they need immediate invalidation.\n return createHash('sha256').update(info.source).digest('hex');\n },\n async render(info, _ctx): Promise<RenderResult> {\n const encoded = encodePlantUml(info.source);\n const url = `${trimTrailingSlash(config.serverUrl)}/${config.outputFormat}/${encoded}`;\n const controller = new AbortController();\n const timer = setTimeout(() => controller.abort(), FETCH_TIMEOUT_MS);\n let response: Response;\n try {\n response = await fetch(url, { signal: controller.signal });\n } catch (err) {\n clearTimeout(timer);\n // AbortController fired → timeout. Otherwise → network.\n const isAbort = err instanceof Error && (err.name === 'AbortError' || /abort/i.test(err.message));\n const code: RenderError['code'] = isAbort ? 'timeout' : 'network';\n return {\n html: '',\n error: { code, message: stringifyError(err) },\n };\n }\n clearTimeout(timer);\n\n if (!response.ok) {\n const code: RenderError['code'] = response.status === 404 ? 'not_found' : 'network';\n return {\n html: '',\n error: { code, message: `PlantUML server responded with HTTP ${response.status}` },\n };\n }\n\n if (config.outputFormat === 'svg') {\n const svg = await response.text();\n const sanitized = sanitizeSvg(svg);\n return {\n html: `<div class=\"plantuml-embed\">${sanitized}</div>`,\n ttlSec: CACHE_TTL_SEC,\n };\n }\n\n // PNG path — base64 the binary body. The plugin returns a\n // self-contained `<img>` tag with a data: URL. Cache entries\n // get larger for PNGs, but the per-entry size cap from Phase 4\n // (cache/mongodb-cache.ts) caps that automatically.\n const buf = Buffer.from(await response.arrayBuffer());\n const b64 = buf.toString('base64');\n return {\n html: `<img class=\"plantuml-embed\" alt=\"\" src=\"data:image/png;base64,${b64}\">`,\n ttlSec: CACHE_TTL_SEC,\n };\n },\n };\n}\n\nconst plugin: CrowiPlugin = {\n name: '@crowi/plugin-renderer-plantuml',\n version: '0.1.0-dev',\n configSchema: plantumlConfigSchema,\n adminPlacement: {\n section: 'renderer',\n label: 'PlantUML diagrams',\n icon: 'diagram-3',\n },\n configI18n: {\n ja: {\n serverUrl: { label: 'サーバー URL', description: 'PlantUML サーバーのベース URL。' },\n format: {\n label: '画像形式',\n description: 'サーバーが返す画像形式。SVG 推奨（軽量で対話的）。PNG は SVG を返せないサーバー向けのフォールバックです。',\n },\n },\n },\n registerRenderer: (registry, ctx) => {\n // PluginContext.config<T>() parses the configSchema-typed config\n // row and returns it. The plantuml plugin closes over the config\n // here; admin edits trigger `reconfigure(ctx)` (Phase 4 base plugin\n // hook) which we use to refresh the cached renderer.\n const config = ctx.config<PlantUmlConfig>();\n registry.addCodeBlockRenderer('plantuml', createPlantUmlRenderer(config));\n ctx.log.debug(`registered PlantUML code-block renderer (serverUrl=${config.serverUrl}, format=${config.outputFormat})`);\n },\n // When admin saves new config, re-register so the renderer closure\n // picks up the new serverUrl / outputFormat. Phase 4's registry\n // last-wins + boot warn applies here too — re-registering for the\n // same lang produces a warn each time. We accept that noise because\n // operator-driven reconfig is rare and the warn is informational.\n // NOTE: a richer reconfigure surface (replace-in-place without warn)\n // is Phase 7+ work.\n};\n\nexport default plugin;\n\nfunction trimTrailingSlash(s: string): string {\n return s.endsWith('/') ? s.slice(0, -1) : s;\n}\n\nfunction stringifyError(err: unknown): string {\n if (err instanceof Error) return err.message;\n if (typeof err === 'string') return err;\n try {\n return JSON.stringify(err);\n } catch {\n return String(err);\n }\n}\n","/**\n * Typed wrapper around the untyped `plantuml-encoder` npm package\n * (no `@types/plantuml-encoder` exists on DefinitelyTyped). The package\n * exports a single CJS function `{ encode(source: string): string }`\n * that deflate-encodes the diagram source and re-encodes with PlantUML's\n * custom base64-ish alphabet (`{ 0..9, A..Z, a..z, -, _ }`).\n *\n * We re-export `encode` so the rest of the plugin code can rely on a\n * single typed surface instead of casting at every call site.\n */\n// eslint-disable-next-line @typescript-eslint/no-require-imports\nconst plantumlEncoder = require('plantuml-encoder') as { encode(source: string): string };\n\n/**\n * Encode a PlantUML diagram source into the URL-safe token the\n * PlantUML server reads from `/${format}/${encoded}`.\n *\n * Example:\n * encode('@startuml\\nA -> B\\n@enduml')\n * // → 'SoWkIImgAStDuNBAJrBGjLDmpCbCJbMmKiX8pSd9vt98pKi1IW00'\n */\nexport function encode(source: string): string {\n return plantumlEncoder.encode(source);\n}\n","/**\n * Minimal regex-based SVG sanitizer.\n *\n * The PlantUML server is operator-trusted (they ran the docker-compose\n * container). The sanitizer is defence-in-depth for the case where the\n * operator's PlantUML server is compromised or returns user-controlled\n * content. It is NOT a substitute for DOMPurify — Phase 6.1+ may switch\n * to `isomorphic-dompurify` when the JSDOM cost is justified.\n *\n * What we strip (in order):\n * 1. `<script>...</script>` blocks (case-insensitive, multiline,\n * tolerates whitespace + attributes on the open tag).\n * 2. `<foreignObject>...</foreignObject>` (can carry HTML, easy to\n * smuggle script via). PlantUML diagrams never legitimately use\n * foreignObject.\n * 3. `on*=` event-handler attributes from any element (onclick,\n * onload, onerror, …). Strips both single and double-quoted\n * values, plus unquoted bareword values.\n * 4. `javascript:` URL values from `href` / `xlink:href`. The full\n * attribute pair is removed so the resulting element doesn't carry\n * a dangling broken attribute.\n *\n * The implementation is pure-regex; no DOM, no jsdom, suitable for any\n * Node.js process. The expected input is server SVG output (well-\n * formed-ish XML), not arbitrary HTML — so the regex passes are\n * acceptably safe within that constrained shape.\n *\n * If the operator's threat model demands stricter sanitization, they\n * can wrap the output with a reverse proxy that runs DOMPurify, or wait\n * for the Phase 6.1+ DOMPurify integration.\n */\n\n/** Strip `<script ...>...</script>` blocks. */\nconst SCRIPT_TAG_RE = /<script\\b[^>]*>[\\s\\S]*?<\\/script\\s*>/gi;\n/** Strip `<foreignObject ...>...</foreignObject>` blocks. */\nconst FOREIGN_OBJECT_RE = /<foreignObject\\b[^>]*>[\\s\\S]*?<\\/foreignObject\\s*>/gi;\n/**\n * Strip `on<word>=\"...\"` / `on<word>='...'` / `on<word>=<value>` event\n * handler attributes. The leading `\\s` requirement prevents stripping\n * a substring like `son=\"...\"` that happens to contain `on=`.\n */\nconst ON_EVENT_ATTR_RE = /\\son\\w+\\s*=\\s*(?:\"[^\"]*\"|'[^']*'|[^\\s>]+)/gi;\n/**\n * Strip `href=\"javascript:...\"` / `xlink:href=\"javascript:...\"`\n * (case-insensitive, tolerates whitespace + quoting). Drops the entire\n * key-value pair so no dangling `href=` remains.\n */\nconst JAVASCRIPT_URL_ATTR_RE = /\\s(?:xlink:)?href\\s*=\\s*(?:\"\\s*javascript:[^\"]*\"|'\\s*javascript:[^']*'|javascript:[^\\s>]+)/gi;\n\n/**\n * Sanitize an SVG string. Returns a copy with the disallowed\n * constructs removed. Idempotent: running twice produces the same\n * output as running once.\n */\nexport function sanitizeSvg(input: string): string {\n let out = input;\n out = out.replace(SCRIPT_TAG_RE, '');\n out = out.replace(FOREIGN_OBJECT_RE, '');\n out = out.replace(ON_EVENT_ATTR_RE, '');\n out = out.replace(JAVASCRIPT_URL_ATTR_RE, '');\n return out;\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,yBAA2B;AAC3B,gBAAkB;;;ACUlB,IAAM,kBAAkB,QAAQ,kBAAkB;AAU3C,SAAS,OAAO,QAAwB;AAC7C,SAAO,gBAAgB,OAAO,MAAM;AACtC;;;ACUA,IAAM,gBAAgB;AAEtB,IAAM,oBAAoB;AAM1B,IAAM,mBAAmB;AAMzB,IAAM,yBAAyB;AAOxB,SAAS,YAAY,OAAuB;AACjD,MAAI,MAAM;AACV,QAAM,IAAI,QAAQ,eAAe,EAAE;AACnC,QAAM,IAAI,QAAQ,mBAAmB,EAAE;AACvC,QAAM,IAAI,QAAQ,kBAAkB,EAAE;AACtC,QAAM,IAAI,QAAQ,wBAAwB,EAAE;AAC5C,SAAO;AACT;;;AF7BO,IAAM,uBAAuB,YAAE,OAAO;AAAA,EAC3C,WAAW,YAAE,OAAO,EAAE,IAAI,EAAE,QAAQ,sBAAsB,EAAE,SAAS,kCAAkC;AAAA,EACvG,cAAc,YACX,KAAK,CAAC,OAAO,KAAK,CAAC,EACnB,QAAQ,KAAK,EACb,SAAS,wIAAwI;AACtJ,CAAC;AAKD,IAAM,mBAAmB;AAEzB,IAAM,gBAAgB,KAAK;AAOpB,SAAS,uBAAuB,QAA2C;AAChF,SAAO;AAAA,IACL,cAAc;AAAA,IACd,aAAa,EAAE,SAAS,UAAU,aAAa,KAAK,EAAE;AAAA,IACtD,iBAAiB,CAAC,SAAwB;AAKxC,iBAAO,+BAAW,QAAQ,EAAE,OAAO,KAAK,MAAM,EAAE,OAAO,KAAK;AAAA,IAC9D;AAAA,IACA,MAAM,OAAO,MAAM,MAA6B;AAC9C,YAAM,UAAU,OAAe,KAAK,MAAM;AAC1C,YAAM,MAAM,GAAG,kBAAkB,OAAO,SAAS,CAAC,IAAI,OAAO,YAAY,IAAI,OAAO;AACpF,YAAM,aAAa,IAAI,gBAAgB;AACvC,YAAM,QAAQ,WAAW,MAAM,WAAW,MAAM,GAAG,gBAAgB;AACnE,UAAI;AACJ,UAAI;AACF,mBAAW,MAAM,MAAM,KAAK,EAAE,QAAQ,WAAW,OAAO,CAAC;AAAA,MAC3D,SAAS,KAAK;AACZ,qBAAa,KAAK;AAElB,cAAM,UAAU,eAAe,UAAU,IAAI,SAAS,gBAAgB,SAAS,KAAK,IAAI,OAAO;AAC/F,cAAM,OAA4B,UAAU,YAAY;AACxD,eAAO;AAAA,UACL,MAAM;AAAA,UACN,OAAO,EAAE,MAAM,SAAS,eAAe,GAAG,EAAE;AAAA,QAC9C;AAAA,MACF;AACA,mBAAa,KAAK;AAElB,UAAI,CAAC,SAAS,IAAI;AAChB,cAAM,OAA4B,SAAS,WAAW,MAAM,cAAc;AAC1E,eAAO;AAAA,UACL,MAAM;AAAA,UACN,OAAO,EAAE,MAAM,SAAS,uCAAuC,SAAS,MAAM,GAAG;AAAA,QACnF;AAAA,MACF;AAEA,UAAI,OAAO,iBAAiB,OAAO;AACjC,cAAM,MAAM,MAAM,SAAS,KAAK;AAChC,cAAM,YAAY,YAAY,GAAG;AACjC,eAAO;AAAA,UACL,MAAM,+BAA+B,SAAS;AAAA,UAC9C,QAAQ;AAAA,QACV;AAAA,MACF;AAMA,YAAM,MAAM,OAAO,KAAK,MAAM,SAAS,YAAY,CAAC;AACpD,YAAM,MAAM,IAAI,SAAS,QAAQ;AACjC,aAAO;AAAA,QACL,MAAM,iEAAiE,GAAG;AAAA,QAC1E,QAAQ;AAAA,MACV;AAAA,IACF;AAAA,EACF;AACF;AAEA,IAAM,SAAsB;AAAA,EAC1B,MAAM;AAAA,EACN,SAAS;AAAA,EACT,cAAc;AAAA,EACd,gBAAgB;AAAA,IACd,SAAS;AAAA,IACT,OAAO;AAAA,IACP,MAAM;AAAA,EACR;AAAA,EACA,YAAY;AAAA,IACV,IAAI;AAAA,MACF,WAAW,EAAE,OAAO,gCAAY,aAAa,sEAAyB;AAAA,MACtE,QAAQ;AAAA,QACN,OAAO;AAAA,QACP,aAAa;AAAA,MACf;AAAA,IACF;AAAA,EACF;AAAA,EACA,kBAAkB,CAAC,UAAU,QAAQ;AAKnC,UAAM,SAAS,IAAI,OAAuB;AAC1C,aAAS,qBAAqB,YAAY,uBAAuB,MAAM,CAAC;AACxE,QAAI,IAAI,MAAM,sDAAsD,OAAO,SAAS,YAAY,OAAO,YAAY,GAAG;AAAA,EACxH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAQF;AAEA,IAAO,gBAAQ;AAEf,SAAS,kBAAkB,GAAmB;AAC5C,SAAO,EAAE,SAAS,GAAG,IAAI,EAAE,MAAM,GAAG,EAAE,IAAI;AAC5C;AAEA,SAAS,eAAe,KAAsB;AAC5C,MAAI,eAAe,MAAO,QAAO,IAAI;AACrC,MAAI,OAAO,QAAQ,SAAU,QAAO;AACpC,MAAI;AACF,WAAO,KAAK,UAAU,GAAG;AAAA,EAC3B,QAAQ;AACN,WAAO,OAAO,GAAG;AAAA,EACnB;AACF;","names":[]}

package/dist/index.mjs ADDED Viewed

@@ -0,0 +1,137 @@
+var __require = /* @__PURE__ */ ((x) => typeof require !== "undefined" ? require : typeof Proxy !== "undefined" ? new Proxy(x, {
+  get: (a, b) => (typeof require !== "undefined" ? require : a)[b]
+}) : x)(function(x) {
+  if (typeof require !== "undefined") return require.apply(this, arguments);
+  throw Error('Dynamic require of "' + x + '" is not supported');
+});
+// src/index.ts
+import { createHash } from "crypto";
+import { z } from "zod/v3";
+// src/encoder.ts
+var plantumlEncoder = __require("plantuml-encoder");
+function encode(source) {
+  return plantumlEncoder.encode(source);
+}
+// src/sanitize.ts
+var SCRIPT_TAG_RE = /<script\b[^>]*>[\s\S]*?<\/script\s*>/gi;
+var FOREIGN_OBJECT_RE = /<foreignObject\b[^>]*>[\s\S]*?<\/foreignObject\s*>/gi;
+var ON_EVENT_ATTR_RE = /\son\w+\s*=\s*(?:"[^"]*"|'[^']*'|[^\s>]+)/gi;
+var JAVASCRIPT_URL_ATTR_RE = /\s(?:xlink:)?href\s*=\s*(?:"\s*javascript:[^"]*"|'\s*javascript:[^']*'|javascript:[^\s>]+)/gi;
+function sanitizeSvg(input) {
+  let out = input;
+  out = out.replace(SCRIPT_TAG_RE, "");
+  out = out.replace(FOREIGN_OBJECT_RE, "");
+  out = out.replace(ON_EVENT_ATTR_RE, "");
+  out = out.replace(JAVASCRIPT_URL_ATTR_RE, "");
+  return out;
+}
+// src/index.ts
+var plantumlConfigSchema = z.object({
+  serverUrl: z.string().url().default("http://plantuml:8080").describe("Base URL of the PlantUML server."),
+  outputFormat: z.enum(["svg", "png"]).default("svg").describe("Image format the server returns. SVG is preferred (smaller, interactive); PNG is a fallback for installs whose server only serves PNG.")
+});
+var FETCH_TIMEOUT_MS = 1e4;
+var CACHE_TTL_SEC = 60 * 60;
+function createPlantUmlRenderer(config) {
+  return {
+    cacheVersion: 1,
+    reservation: { variant: "aspect", aspectRatio: 16 / 9 },
+    computeEmbedKey: (info) => {
+      return createHash("sha256").update(info.source).digest("hex");
+    },
+    async render(info, _ctx) {
+      const encoded = encode(info.source);
+      const url = `${trimTrailingSlash(config.serverUrl)}/${config.outputFormat}/${encoded}`;
+      const controller = new AbortController();
+      const timer = setTimeout(() => controller.abort(), FETCH_TIMEOUT_MS);
+      let response;
+      try {
+        response = await fetch(url, { signal: controller.signal });
+      } catch (err) {
+        clearTimeout(timer);
+        const isAbort = err instanceof Error && (err.name === "AbortError" || /abort/i.test(err.message));
+        const code = isAbort ? "timeout" : "network";
+        return {
+          html: "",
+          error: { code, message: stringifyError(err) }
+        };
+      }
+      clearTimeout(timer);
+      if (!response.ok) {
+        const code = response.status === 404 ? "not_found" : "network";
+        return {
+          html: "",
+          error: { code, message: `PlantUML server responded with HTTP ${response.status}` }
+        };
+      }
+      if (config.outputFormat === "svg") {
+        const svg = await response.text();
+        const sanitized = sanitizeSvg(svg);
+        return {
+          html: `<div class="plantuml-embed">${sanitized}</div>`,
+          ttlSec: CACHE_TTL_SEC
+        };
+      }
+      const buf = Buffer.from(await response.arrayBuffer());
+      const b64 = buf.toString("base64");
+      return {
+        html: `<img class="plantuml-embed" alt="" src="data:image/png;base64,${b64}">`,
+        ttlSec: CACHE_TTL_SEC
+      };
+    }
+  };
+}
+var plugin = {
+  name: "@crowi/plugin-renderer-plantuml",
+  version: "0.1.0-dev",
+  configSchema: plantumlConfigSchema,
+  adminPlacement: {
+    section: "renderer",
+    label: "PlantUML diagrams",
+    icon: "diagram-3"
+  },
+  configI18n: {
+    ja: {
+      serverUrl: { label: "\u30B5\u30FC\u30D0\u30FC URL", description: "PlantUML \u30B5\u30FC\u30D0\u30FC\u306E\u30D9\u30FC\u30B9 URL\u3002" },
+      format: {
+        label: "\u753B\u50CF\u5F62\u5F0F",
+        description: "\u30B5\u30FC\u30D0\u30FC\u304C\u8FD4\u3059\u753B\u50CF\u5F62\u5F0F\u3002SVG \u63A8\u5968\uFF08\u8EFD\u91CF\u3067\u5BFE\u8A71\u7684\uFF09\u3002PNG \u306F SVG \u3092\u8FD4\u305B\u306A\u3044\u30B5\u30FC\u30D0\u30FC\u5411\u3051\u306E\u30D5\u30A9\u30FC\u30EB\u30D0\u30C3\u30AF\u3067\u3059\u3002"
+      }
+    }
+  },
+  registerRenderer: (registry, ctx) => {
+    const config = ctx.config();
+    registry.addCodeBlockRenderer("plantuml", createPlantUmlRenderer(config));
+    ctx.log.debug(`registered PlantUML code-block renderer (serverUrl=${config.serverUrl}, format=${config.outputFormat})`);
+  }
+  // When admin saves new config, re-register so the renderer closure
+  // picks up the new serverUrl / outputFormat. Phase 4's registry
+  // last-wins + boot warn applies here too — re-registering for the
+  // same lang produces a warn each time. We accept that noise because
+  // operator-driven reconfig is rare and the warn is informational.
+  // NOTE: a richer reconfigure surface (replace-in-place without warn)
+  // is Phase 7+ work.
+};
+var index_default = plugin;
+function trimTrailingSlash(s) {
+  return s.endsWith("/") ? s.slice(0, -1) : s;
+}
+function stringifyError(err) {
+  if (err instanceof Error) return err.message;
+  if (typeof err === "string") return err;
+  try {
+    return JSON.stringify(err);
+  } catch {
+    return String(err);
+  }
+}
+export {
+  createPlantUmlRenderer,
+  index_default as default,
+  plantumlConfigSchema
+};
+//# sourceMappingURL=index.mjs.map

package/dist/index.mjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../src/index.ts","../src/encoder.ts","../src/sanitize.ts"],"sourcesContent":["import { createHash } from 'node:crypto';\nimport { z } from 'zod/v3';\nimport type { CodeBlockInfo, CodeBlockRenderer, CrowiPlugin, RenderError, RenderResult } from '@crowi/plugin-api';\nimport { encode as encodePlantUml } from './encoder';\nimport { sanitizeSvg } from './sanitize';\n\n/**\n * @crowi/plugin-renderer-plantuml\n *\n * Renders ```plantuml fenced code blocks via an operator-configured\n * PlantUML server. The diagram source is deflate+base64-encoded\n * (`plantuml-encoder`) and fetched from `${serverUrl}/${format}/${encoded}`,\n * then either inlined as SVG (sanitized) or embedded as a base64 PNG.\n *\n * Phase 6 ships this as the first user of `addCodeBlockRenderer`\n * and the cache contract (Phase 4 PluginRenderCache). Failures are\n * cached as `RenderError` for 5 minutes (network / timeout); the\n * placeholder is rendered through `crowi-embed-placeholder-error-*`.\n *\n * Operator install:\n * 1. Run the official PlantUML server (e.g. `docker compose` from\n * Crowi's compose file ships one at `http://plantuml:8080`).\n * 2. List this plugin in `crowi.config.json:plugins`.\n * 3. In the admin UI, fill in `serverUrl` if your server isn't at\n * the default hostname.\n */\n\n/**\n * Schema-driven config. The admin UI in `/admin/plugins` builds the\n * form by walking this object. Defaults match the docker-compose\n * service hostname that ships with the Crowi 2.x dev runner.\n */\nexport const plantumlConfigSchema = z.object({\n serverUrl: z.string().url().default('http://plantuml:8080').describe('Base URL of the PlantUML server.'),\n outputFormat: z\n .enum(['svg', 'png'])\n .default('svg')\n .describe('Image format the server returns. SVG is preferred (smaller, interactive); PNG is a fallback for installs whose server only serves PNG.'),\n});\n\nexport type PlantUmlConfig = z.infer<typeof plantumlConfigSchema>;\n\n/** Render-side timeout for the PlantUML server fetch. */\nconst FETCH_TIMEOUT_MS = 10_000;\n/** Fresh cache TTL — 1 hour. SWR window = 4h via cachedRender default. */\nconst CACHE_TTL_SEC = 60 * 60;\n\n/**\n * Build the CodeBlockRenderer instance, bound to a resolved config.\n * Exported so unit tests can construct a renderer without going through\n * the full plugin registration flow.\n */\nexport function createPlantUmlRenderer(config: PlantUmlConfig): CodeBlockRenderer {\n return {\n cacheVersion: 1,\n reservation: { variant: 'aspect', aspectRatio: 16 / 9 },\n computeEmbedKey: (info: CodeBlockInfo) => {\n // Hash the diagram source only — operator changing serverUrl /\n // outputFormat invalidates implicitly via the 1h TTL rather than\n // explicit invalidation. cacheVersion bump is the operator's\n // escape hatch when they need immediate invalidation.\n return createHash('sha256').update(info.source).digest('hex');\n },\n async render(info, _ctx): Promise<RenderResult> {\n const encoded = encodePlantUml(info.source);\n const url = `${trimTrailingSlash(config.serverUrl)}/${config.outputFormat}/${encoded}`;\n const controller = new AbortController();\n const timer = setTimeout(() => controller.abort(), FETCH_TIMEOUT_MS);\n let response: Response;\n try {\n response = await fetch(url, { signal: controller.signal });\n } catch (err) {\n clearTimeout(timer);\n // AbortController fired → timeout. Otherwise → network.\n const isAbort = err instanceof Error && (err.name === 'AbortError' || /abort/i.test(err.message));\n const code: RenderError['code'] = isAbort ? 'timeout' : 'network';\n return {\n html: '',\n error: { code, message: stringifyError(err) },\n };\n }\n clearTimeout(timer);\n\n if (!response.ok) {\n const code: RenderError['code'] = response.status === 404 ? 'not_found' : 'network';\n return {\n html: '',\n error: { code, message: `PlantUML server responded with HTTP ${response.status}` },\n };\n }\n\n if (config.outputFormat === 'svg') {\n const svg = await response.text();\n const sanitized = sanitizeSvg(svg);\n return {\n html: `<div class=\"plantuml-embed\">${sanitized}</div>`,\n ttlSec: CACHE_TTL_SEC,\n };\n }\n\n // PNG path — base64 the binary body. The plugin returns a\n // self-contained `<img>` tag with a data: URL. Cache entries\n // get larger for PNGs, but the per-entry size cap from Phase 4\n // (cache/mongodb-cache.ts) caps that automatically.\n const buf = Buffer.from(await response.arrayBuffer());\n const b64 = buf.toString('base64');\n return {\n html: `<img class=\"plantuml-embed\" alt=\"\" src=\"data:image/png;base64,${b64}\">`,\n ttlSec: CACHE_TTL_SEC,\n };\n },\n };\n}\n\nconst plugin: CrowiPlugin = {\n name: '@crowi/plugin-renderer-plantuml',\n version: '0.1.0-dev',\n configSchema: plantumlConfigSchema,\n adminPlacement: {\n section: 'renderer',\n label: 'PlantUML diagrams',\n icon: 'diagram-3',\n },\n configI18n: {\n ja: {\n serverUrl: { label: 'サーバー URL', description: 'PlantUML サーバーのベース URL。' },\n format: {\n label: '画像形式',\n description: 'サーバーが返す画像形式。SVG 推奨（軽量で対話的）。PNG は SVG を返せないサーバー向けのフォールバックです。',\n },\n },\n },\n registerRenderer: (registry, ctx) => {\n // PluginContext.config<T>() parses the configSchema-typed config\n // row and returns it. The plantuml plugin closes over the config\n // here; admin edits trigger `reconfigure(ctx)` (Phase 4 base plugin\n // hook) which we use to refresh the cached renderer.\n const config = ctx.config<PlantUmlConfig>();\n registry.addCodeBlockRenderer('plantuml', createPlantUmlRenderer(config));\n ctx.log.debug(`registered PlantUML code-block renderer (serverUrl=${config.serverUrl}, format=${config.outputFormat})`);\n },\n // When admin saves new config, re-register so the renderer closure\n // picks up the new serverUrl / outputFormat. Phase 4's registry\n // last-wins + boot warn applies here too — re-registering for the\n // same lang produces a warn each time. We accept that noise because\n // operator-driven reconfig is rare and the warn is informational.\n // NOTE: a richer reconfigure surface (replace-in-place without warn)\n // is Phase 7+ work.\n};\n\nexport default plugin;\n\nfunction trimTrailingSlash(s: string): string {\n return s.endsWith('/') ? s.slice(0, -1) : s;\n}\n\nfunction stringifyError(err: unknown): string {\n if (err instanceof Error) return err.message;\n if (typeof err === 'string') return err;\n try {\n return JSON.stringify(err);\n } catch {\n return String(err);\n }\n}\n","/**\n * Typed wrapper around the untyped `plantuml-encoder` npm package\n * (no `@types/plantuml-encoder` exists on DefinitelyTyped). The package\n * exports a single CJS function `{ encode(source: string): string }`\n * that deflate-encodes the diagram source and re-encodes with PlantUML's\n * custom base64-ish alphabet (`{ 0..9, A..Z, a..z, -, _ }`).\n *\n * We re-export `encode` so the rest of the plugin code can rely on a\n * single typed surface instead of casting at every call site.\n */\n// eslint-disable-next-line @typescript-eslint/no-require-imports\nconst plantumlEncoder = require('plantuml-encoder') as { encode(source: string): string };\n\n/**\n * Encode a PlantUML diagram source into the URL-safe token the\n * PlantUML server reads from `/${format}/${encoded}`.\n *\n * Example:\n * encode('@startuml\\nA -> B\\n@enduml')\n * // → 'SoWkIImgAStDuNBAJrBGjLDmpCbCJbMmKiX8pSd9vt98pKi1IW00'\n */\nexport function encode(source: string): string {\n return plantumlEncoder.encode(source);\n}\n","/**\n * Minimal regex-based SVG sanitizer.\n *\n * The PlantUML server is operator-trusted (they ran the docker-compose\n * container). The sanitizer is defence-in-depth for the case where the\n * operator's PlantUML server is compromised or returns user-controlled\n * content. It is NOT a substitute for DOMPurify — Phase 6.1+ may switch\n * to `isomorphic-dompurify` when the JSDOM cost is justified.\n *\n * What we strip (in order):\n * 1. `<script>...</script>` blocks (case-insensitive, multiline,\n * tolerates whitespace + attributes on the open tag).\n * 2. `<foreignObject>...</foreignObject>` (can carry HTML, easy to\n * smuggle script via). PlantUML diagrams never legitimately use\n * foreignObject.\n * 3. `on*=` event-handler attributes from any element (onclick,\n * onload, onerror, …). Strips both single and double-quoted\n * values, plus unquoted bareword values.\n * 4. `javascript:` URL values from `href` / `xlink:href`. The full\n * attribute pair is removed so the resulting element doesn't carry\n * a dangling broken attribute.\n *\n * The implementation is pure-regex; no DOM, no jsdom, suitable for any\n * Node.js process. The expected input is server SVG output (well-\n * formed-ish XML), not arbitrary HTML — so the regex passes are\n * acceptably safe within that constrained shape.\n *\n * If the operator's threat model demands stricter sanitization, they\n * can wrap the output with a reverse proxy that runs DOMPurify, or wait\n * for the Phase 6.1+ DOMPurify integration.\n */\n\n/** Strip `<script ...>...</script>` blocks. */\nconst SCRIPT_TAG_RE = /<script\\b[^>]*>[\\s\\S]*?<\\/script\\s*>/gi;\n/** Strip `<foreignObject ...>...</foreignObject>` blocks. */\nconst FOREIGN_OBJECT_RE = /<foreignObject\\b[^>]*>[\\s\\S]*?<\\/foreignObject\\s*>/gi;\n/**\n * Strip `on<word>=\"...\"` / `on<word>='...'` / `on<word>=<value>` event\n * handler attributes. The leading `\\s` requirement prevents stripping\n * a substring like `son=\"...\"` that happens to contain `on=`.\n */\nconst ON_EVENT_ATTR_RE = /\\son\\w+\\s*=\\s*(?:\"[^\"]*\"|'[^']*'|[^\\s>]+)/gi;\n/**\n * Strip `href=\"javascript:...\"` / `xlink:href=\"javascript:...\"`\n * (case-insensitive, tolerates whitespace + quoting). Drops the entire\n * key-value pair so no dangling `href=` remains.\n */\nconst JAVASCRIPT_URL_ATTR_RE = /\\s(?:xlink:)?href\\s*=\\s*(?:\"\\s*javascript:[^\"]*\"|'\\s*javascript:[^']*'|javascript:[^\\s>]+)/gi;\n\n/**\n * Sanitize an SVG string. Returns a copy with the disallowed\n * constructs removed. Idempotent: running twice produces the same\n * output as running once.\n */\nexport function sanitizeSvg(input: string): string {\n let out = input;\n out = out.replace(SCRIPT_TAG_RE, '');\n out = out.replace(FOREIGN_OBJECT_RE, '');\n out = out.replace(ON_EVENT_ATTR_RE, '');\n out = out.replace(JAVASCRIPT_URL_ATTR_RE, '');\n return out;\n}\n"],"mappings":";;;;;;;;AAAA,SAAS,kBAAkB;AAC3B,SAAS,SAAS;;;ACUlB,IAAM,kBAAkB,UAAQ,kBAAkB;AAU3C,SAAS,OAAO,QAAwB;AAC7C,SAAO,gBAAgB,OAAO,MAAM;AACtC;;;ACUA,IAAM,gBAAgB;AAEtB,IAAM,oBAAoB;AAM1B,IAAM,mBAAmB;AAMzB,IAAM,yBAAyB;AAOxB,SAAS,YAAY,OAAuB;AACjD,MAAI,MAAM;AACV,QAAM,IAAI,QAAQ,eAAe,EAAE;AACnC,QAAM,IAAI,QAAQ,mBAAmB,EAAE;AACvC,QAAM,IAAI,QAAQ,kBAAkB,EAAE;AACtC,QAAM,IAAI,QAAQ,wBAAwB,EAAE;AAC5C,SAAO;AACT;;;AF7BO,IAAM,uBAAuB,EAAE,OAAO;AAAA,EAC3C,WAAW,EAAE,OAAO,EAAE,IAAI,EAAE,QAAQ,sBAAsB,EAAE,SAAS,kCAAkC;AAAA,EACvG,cAAc,EACX,KAAK,CAAC,OAAO,KAAK,CAAC,EACnB,QAAQ,KAAK,EACb,SAAS,wIAAwI;AACtJ,CAAC;AAKD,IAAM,mBAAmB;AAEzB,IAAM,gBAAgB,KAAK;AAOpB,SAAS,uBAAuB,QAA2C;AAChF,SAAO;AAAA,IACL,cAAc;AAAA,IACd,aAAa,EAAE,SAAS,UAAU,aAAa,KAAK,EAAE;AAAA,IACtD,iBAAiB,CAAC,SAAwB;AAKxC,aAAO,WAAW,QAAQ,EAAE,OAAO,KAAK,MAAM,EAAE,OAAO,KAAK;AAAA,IAC9D;AAAA,IACA,MAAM,OAAO,MAAM,MAA6B;AAC9C,YAAM,UAAU,OAAe,KAAK,MAAM;AAC1C,YAAM,MAAM,GAAG,kBAAkB,OAAO,SAAS,CAAC,IAAI,OAAO,YAAY,IAAI,OAAO;AACpF,YAAM,aAAa,IAAI,gBAAgB;AACvC,YAAM,QAAQ,WAAW,MAAM,WAAW,MAAM,GAAG,gBAAgB;AACnE,UAAI;AACJ,UAAI;AACF,mBAAW,MAAM,MAAM,KAAK,EAAE,QAAQ,WAAW,OAAO,CAAC;AAAA,MAC3D,SAAS,KAAK;AACZ,qBAAa,KAAK;AAElB,cAAM,UAAU,eAAe,UAAU,IAAI,SAAS,gBAAgB,SAAS,KAAK,IAAI,OAAO;AAC/F,cAAM,OAA4B,UAAU,YAAY;AACxD,eAAO;AAAA,UACL,MAAM;AAAA,UACN,OAAO,EAAE,MAAM,SAAS,eAAe,GAAG,EAAE;AAAA,QAC9C;AAAA,MACF;AACA,mBAAa,KAAK;AAElB,UAAI,CAAC,SAAS,IAAI;AAChB,cAAM,OAA4B,SAAS,WAAW,MAAM,cAAc;AAC1E,eAAO;AAAA,UACL,MAAM;AAAA,UACN,OAAO,EAAE,MAAM,SAAS,uCAAuC,SAAS,MAAM,GAAG;AAAA,QACnF;AAAA,MACF;AAEA,UAAI,OAAO,iBAAiB,OAAO;AACjC,cAAM,MAAM,MAAM,SAAS,KAAK;AAChC,cAAM,YAAY,YAAY,GAAG;AACjC,eAAO;AAAA,UACL,MAAM,+BAA+B,SAAS;AAAA,UAC9C,QAAQ;AAAA,QACV;AAAA,MACF;AAMA,YAAM,MAAM,OAAO,KAAK,MAAM,SAAS,YAAY,CAAC;AACpD,YAAM,MAAM,IAAI,SAAS,QAAQ;AACjC,aAAO;AAAA,QACL,MAAM,iEAAiE,GAAG;AAAA,QAC1E,QAAQ;AAAA,MACV;AAAA,IACF;AAAA,EACF;AACF;AAEA,IAAM,SAAsB;AAAA,EAC1B,MAAM;AAAA,EACN,SAAS;AAAA,EACT,cAAc;AAAA,EACd,gBAAgB;AAAA,IACd,SAAS;AAAA,IACT,OAAO;AAAA,IACP,MAAM;AAAA,EACR;AAAA,EACA,YAAY;AAAA,IACV,IAAI;AAAA,MACF,WAAW,EAAE,OAAO,gCAAY,aAAa,sEAAyB;AAAA,MACtE,QAAQ;AAAA,QACN,OAAO;AAAA,QACP,aAAa;AAAA,MACf;AAAA,IACF;AAAA,EACF;AAAA,EACA,kBAAkB,CAAC,UAAU,QAAQ;AAKnC,UAAM,SAAS,IAAI,OAAuB;AAC1C,aAAS,qBAAqB,YAAY,uBAAuB,MAAM,CAAC;AACxE,QAAI,IAAI,MAAM,sDAAsD,OAAO,SAAS,YAAY,OAAO,YAAY,GAAG;AAAA,EACxH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAQF;AAEA,IAAO,gBAAQ;AAEf,SAAS,kBAAkB,GAAmB;AAC5C,SAAO,EAAE,SAAS,GAAG,IAAI,EAAE,MAAM,GAAG,EAAE,IAAI;AAC5C;AAEA,SAAS,eAAe,KAAsB;AAC5C,MAAI,eAAe,MAAO,QAAO,IAAI;AACrC,MAAI,OAAO,QAAQ,SAAU,QAAO;AACpC,MAAI;AACF,WAAO,KAAK,UAAU,GAAG;AAAA,EAC3B,QAAQ;AACN,WAAO,OAAO,GAAG;AAAA,EACnB;AACF;","names":[]}

package/package.json ADDED Viewed

@@ -0,0 +1,46 @@
+{
+  "name": "@crowi/plugin-renderer-plantuml",
+  "version": "0.1.0-alpha.0",
+  "description": "PlantUML diagram renderer for Crowi 2.x. Sends ```plantuml fenced blocks to a PlantUML server and inlines the returned SVG (or PNG). Cache TTL 1h.",
+  "main": "dist/index.js",
+  "module": "dist/index.mjs",
+  "types": "dist/index.d.ts",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.mjs",
+      "require": "./dist/index.js"
+    }
+  },
+  "files": [
+    "dist",
+    "README.md"
+  ],
+  "publishConfig": {
+    "access": "public"
+  },
+  "peerDependencies": {
+    "zod": "^4.4.3"
+  },
+  "dependencies": {
+    "plantuml-encoder": "^1.4.0",
+    "@crowi/plugin-api": "^0.1.0-alpha.0"
+  },
+  "devDependencies": {
+    "@types/jest": "^29.5.14",
+    "@types/node": "^24",
+    "jest": "^29.7.0",
+    "ts-jest": "^29.3.4",
+    "tsup": "^8.3.5",
+    "typescript": "^5.8.3",
+    "zod": "^4.4.3",
+    "@crowi/tsconfig": "0.1.0-alpha.0",
+    "@crowi/plugin-api": "0.1.0-alpha.0"
+  },
+  "scripts": {
+    "build": "tsup",
+    "dev": "tsup --watch --no-clean",
+    "type-check": "tsc --noEmit",
+    "test": "jest --passWithNoTests"
+  }
+}