@devvit/shared-types 0.11.0-next-2024-10-03-38b7c67ab.0 → 0.11.0-next-2024-10-03-ca1abc4bf.0

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@devvit/shared-types",
-  "version": "0.11.0-next-2024-10-03-38b7c67ab.0",
+  "version": "0.11.0-next-2024-10-03-ca1abc4bf.0",
   "license": "BSD-3-Clause",
   "repository": {
     "type": "git",
@@ -24,14 +24,14 @@
   },
   "types": "./index.d.ts",
   "dependencies": {
-    "@devvit/protos": "0.11.0-next-2024-10-03-38b7c67ab.0",
+    "@devvit/protos": "0.11.0-next-2024-10-03-ca1abc4bf.0",
     "jsonschema": "1.4.1",
     "uuid": "9.0.0"
   },
   "devDependencies": {
-    "@devvit/eslint-config": "0.11.0-next-2024-10-03-38b7c67ab.0",
-    "@devvit/repo-tools": "0.11.0-next-2024-10-03-38b7c67ab.0",
-    "@devvit/tsconfig": "0.11.0-next-2024-10-03-38b7c67ab.0",
+    "@devvit/eslint-config": "0.11.0-next-2024-10-03-ca1abc4bf.0",
+    "@devvit/repo-tools": "0.11.0-next-2024-10-03-ca1abc4bf.0",
+    "@devvit/tsconfig": "0.11.0-next-2024-10-03-ca1abc4bf.0",
     "@types/redis-mock": "0.17.1",
     "@types/uuid": "9.0.0",
     "eslint": "8.9.0",
@@ -45,5 +45,5 @@
     "directory": "dist"
   },
   "source": "./src/index.ts",
-  "gitHead": "930bd13f9b22e1b5d5f987aca4ee7405f6303a11"
+  "gitHead": "ce4d984e1fa96c9101f82748de3abe03002cda87"
 }

package/imageUtil.d.ts

@@ -1,20 +0,0 @@
-export declare const REDD_IT = "redd.it";
-export declare const REDDIT_STATIC = "redditstatic.com";
-export declare const REDDIT_MEDIA = "redditmedia.com";
-export declare const SNOO_DEV = "snoo.dev";
-export declare const VerifiedPublicImageHosts: readonly string[];
-export declare const VerifiedImageHosts: readonly string[];
-/**
- * Validates whether an image URL is allowed to be displayed
- * @param imageUrl
- * @returns true if the URL is allowed
- */
-export declare function isValidImageURL(imageUrl: string): boolean;
-/**
- * Performs any sanitization needed on a given image URL
- * Currently only processes SVG data URIs
- * @param imageUrl
- * @returns the sanitized URL
- */
-export declare function sanitizeImageURL(imageUrl: string): string | undefined;
-//# sourceMappingURL=imageUtil.d.ts.map

package/imageUtil.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"imageUtil.d.ts","sourceRoot":"","sources":["../src/imageUtil.ts"],"names":[],"mappings":"AAGA,eAAO,MAAM,OAAO,YAAY,CAAC;AACjC,eAAO,MAAM,aAAa,qBAAqB,CAAC;AAChD,eAAO,MAAM,YAAY,oBAAoB,CAAC;AAC9C,eAAO,MAAM,QAAQ,aAAa,CAAC;AAEnC,eAAO,MAAM,wBAAwB,EAAE,SAAS,MAAM,EAA2C,CAAC;AAClG,eAAO,MAAM,kBAAkB,EAAE,SAAS,MAAM,EAK/C,CAAC;AAoBF;;;;GAIG;AACH,wBAAgB,eAAe,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAgBzD;AAED;;;;;GAKG;AACH,wBAAgB,gBAAgB,CAAC,QAAQ,EAAE,MAAM,GAAG,MAAM,GAAG,SAAS,CAsCrE"}

package/imageUtil.js

@@ -1,89 +0,0 @@
-// Only the following domains are approved: redd.it, redditstatic.com, redditmedia.com, or snoo.dev
-import { sanitizeSvg } from './sanitizeSvg.js';
-export const REDD_IT = 'redd.it';
-export const REDDIT_STATIC = 'redditstatic.com';
-export const REDDIT_MEDIA = 'redditmedia.com';
-export const SNOO_DEV = 'snoo.dev';
-export const VerifiedPublicImageHosts = [REDD_IT, REDDIT_STATIC, REDDIT_MEDIA];
-export const VerifiedImageHosts = [
-    SNOO_DEV,
-    REDD_IT,
-    REDDIT_STATIC,
-    REDDIT_MEDIA,
-];
-const MIME_SVG_XML = 'image/svg+xml';
-const ALLOWED_DATA_MIMETYPES = [MIME_SVG_XML];
-function validateDataUrl(url) {
-    // mediaType is everything before the data section
-    const mediaType = url.pathname.split(',')[0];
-    // chunks are separated by semicolons, with the first being the mimetype
-    const mimetype = mediaType.split(';')[0];
-    return ALLOWED_DATA_MIMETYPES.includes(mimetype);
-}
-function validateHttpUrl(url) {
-    // Get just the domain name from the hostname
-    const domain = url.hostname.split('.').slice(-2).join('.');
-    return VerifiedImageHosts.includes(domain);
-}
-/**
- * Validates whether an image URL is allowed to be displayed
- * @param imageUrl
- * @returns true if the URL is allowed
- */
-export function isValidImageURL(imageUrl) {
-    try {
-        const url = new URL(imageUrl);
-        const protocol = url.protocol.substring(0, 4);
-        switch (protocol) {
-            case 'blob':
-                return true;
-            case 'data':
-                return validateDataUrl(url);
-            case 'http':
-                return validateHttpUrl(url);
-        }
-    }
-    catch (_) {
-        // invalid imageUrl
-    }
-    return false;
-}
-/**
- * Performs any sanitization needed on a given image URL
- * Currently only processes SVG data URIs
- * @param imageUrl
- * @returns the sanitized URL
- */
-export function sanitizeImageURL(imageUrl) {
-    try {
-        // only parse up until the data segment so we don't waste time parsing it here
-        const dataSeparator = imageUrl.indexOf(',');
-        const url = new URL(dataSeparator > 0 ? imageUrl.slice(0, dataSeparator) : imageUrl);
-        // nothing to sanitize
-        if (url.protocol.startsWith('http') || url.protocol.startsWith('blob')) {
-            return encodeURI(imageUrl);
-        }
-        const mediaType = url.pathname;
-        const [mimetype] = mediaType.split(';');
-        // can't sanitize binary image data
-        if (mimetype !== MIME_SVG_XML) {
-            return imageUrl;
-        }
-        const base64 = mediaType.split(';').at(-1) === 'base64';
-        const data = imageUrl.slice(dataSeparator + 1);
-        const svgData = base64 ? atob(data) : data;
-        // extract SVG
-        const svg = decodeURIComponent(svgData);
-        // sanitize
-        const safeSvg = sanitizeSvg(svg);
-        if (safeSvg === undefined) {
-            return undefined;
-        }
-        // URI encode if we're not base64 encoding to ensure the img tag doesn't choke on `#` and `?` characters
-        const safeData = base64 ? btoa(safeSvg) : encodeURIComponent(safeSvg);
-        return `data:${mediaType},${safeData}`;
-    }
-    catch {
-        // failed to parse URL
-    }
-}

package/imageUtil.test.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"imageUtil.test.d.ts","sourceRoot":"","sources":["../src/imageUtil.test.ts"],"names":[],"mappings":""}