@eggjs/security 5.0.0-beta.18 → 5.0.0-beta.20

package/dist/agent.js

@@ -1,4 +1,4 @@
-import { preprocessConfig } from "./lib/utils.js";
+import { preprocessConfig } from "./utils-Cajs5P8M.js";
 
 //#region src/agent.ts
 var AgentBoot = class {

package/dist/app/extend/agent.d.ts

@@ -1,4 +1,5 @@
-import { HttpClientOptions, HttpClientRequestURL, HttpClientResponse } from "../../lib/extend/safe_curl.js";
+import "../../config.default-D8v08Vox.js";
+import { HttpClientOptions, HttpClientRequestURL, HttpClientResponse } from "../../safe_curl-mqZZv_YQ.js";
 import { Agent } from "egg";
 
 //#region src/app/extend/agent.d.ts

package/dist/app/extend/agent.js

@@ -1,4 +1,4 @@
-import { safeCurlForApplication } from "../../lib/extend/safe_curl.js";
+import { safeCurlForApplication } from "../../safe_curl-UlViaxoF.js";
 import { Agent } from "egg";
 
 //#region src/app/extend/agent.ts

package/dist/app/extend/application.d.ts

@@ -1,12 +1,4 @@
-import { HttpClientOptions, HttpClientRequestURL, HttpClientResponse } from "../../lib/extend/safe_curl.js";
-import { Application } from "egg";
-
-//#region src/app/extend/application.d.ts
-declare class SecurityApplication extends Application {
-  injectCsrf(html: string): string;
-  injectNonce(html: string): string;
-  injectHijackingDefense(html: string): string;
-  safeCurl<T = any>(url: HttpClientRequestURL, options?: HttpClientOptions): Promise<HttpClientResponse<T>>;
-}
-//#endregion
+import "../../config.default-D8v08Vox.js";
+import "../../safe_curl-mqZZv_YQ.js";
+import { SecurityApplication } from "../../application-n5bk2L_z.js";
 export { SecurityApplication as default };

package/dist/app/extend/application.js

@@ -1,32 +1,4 @@
-import { safeCurlForApplication } from "../../lib/extend/safe_curl.js";
-import { Application } from "egg";
+import "../../safe_curl-UlViaxoF.js";
+import { SecurityApplication } from "../../application-COC0mYEe.js";
 
-//#region src/app/extend/application.ts
-const INPUT_CSRF = "\r\n<input type=\"hidden\" name=\"_csrf\" value=\"{{ctx.csrf}}\" /></form>";
-const INJECTION_DEFENSE = "<!--for injection--><!--</html>--><!--for injection-->";
-var SecurityApplication = class extends Application {
-	injectCsrf(html) {
-		html = html.replace(/(<form.*?>)([\s\S]*?)<\/form>/gi, (_, $1, $2) => {
-			const match = $2;
-			if (match.indexOf("name=\"_csrf\"") !== -1 || match.indexOf("name='_csrf'") !== -1) return $1 + match + "</form>";
-			return $1 + match + INPUT_CSRF;
-		});
-		return html;
-	}
-	injectNonce(html) {
-		html = html.replace(/<script(.*?)>([\s\S]*?)<\/script[^>]*?>/gi, (_, $1, $2) => {
-			if (!$1.includes("nonce=")) $1 += " nonce=\"{{ctx.nonce}}\"";
-			return "<script" + $1 + ">" + $2 + "<\/script>";
-		});
-		return html;
-	}
-	injectHijackingDefense(html) {
-		return INJECTION_DEFENSE + html + INJECTION_DEFENSE;
-	}
-	async safeCurl(url, options) {
-		return await safeCurlForApplication(this, url, options);
-	}
-};
-
-//#endregion
 export { SecurityApplication as default };

package/dist/app/extend/context.d.ts

@@ -1,61 +1,4 @@
-import { SecurityConfig } from "../../config/config.default.js";
-import { HttpClientOptions, HttpClientRequestURL, HttpClientResponse } from "../../lib/extend/safe_curl.js";
-import SecurityResponse from "./response.js";
-import { Context } from "egg";
-
-//#region src/app/extend/context.d.ts
-declare const CSRF_SECRET: unique symbol;
-declare const LOG_CSRF_NOTICE: unique symbol;
-declare const INPUT_TOKEN: unique symbol;
-declare const CSRF_REFERER_CHECK: unique symbol;
-declare const CSRF_CTOKEN_CHECK: unique symbol;
-declare class SecurityContext extends Context {
-  response: SecurityResponse;
-  get securityOptions(): Partial<SecurityConfig>;
-  /**
-   * Check whether the specific `domain` is in / matches the whiteList or not.
-   * @param {string} domain The assigned domain.
-   * @param {Array<string>} [customWhiteList] The custom white list for domain.
-   * @return {boolean} If the domain is in / matches the whiteList, return true;
-   * otherwise false.
-   */
-  isSafeDomain(domain: string, customWhiteList?: string[]): boolean;
-  get nonce(): string;
-  /**
-   * get csrf token, general use in template
-   * @return {String} csrf token
-   * @public
-   */
-  get csrf(): string;
-  /**
-   * get csrf secret from session or cookie
-   * @return {String} csrf secret
-   * @private
-   */
-  get [CSRF_SECRET](): string;
-  /**
-   * ensure csrf secret exists in session or cookie.
-   * @param {Boolean} [rotate] reset secret even if the secret exists
-   * @public
-   */
-  ensureCsrfSecret(rotate?: boolean): void;
-  get [INPUT_TOKEN](): string;
-  /**
-   * rotate csrf secret exists in session or cookie.
-   * must rotate the secret when user login
-   * @public
-   */
-  rotateCsrfSecret(): void;
-  /**
-   * assert csrf token/referer is present
-   * @public
-   */
-  assertCsrf(): void;
-  [CSRF_CTOKEN_CHECK](): "missing csrf token" | "invalid csrf token" | undefined;
-  [CSRF_REFERER_CHECK](): "missing csrf referer or origin" | "invalid csrf referer or origin" | undefined;
-  [LOG_CSRF_NOTICE](msg: string): void;
-  safeCurl<T = any>(url: HttpClientRequestURL, options?: HttpClientOptions): Promise<HttpClientResponse<T>>;
-  unsafeRedirect(url: string, alt?: string): void;
-}
-//#endregion
+import "../../config.default-D8v08Vox.js";
+import "../../safe_curl-mqZZv_YQ.js";
+import { SecurityContext } from "../../context-C-N1IY85.js";
 export { SecurityContext as default };

package/dist/app/extend/context.js

@@ -1,191 +1,4 @@
-import { checkIfIgnore, getFromUrl, isSafeDomain } from "../../lib/utils.js";
-import { Context } from "egg";
-import { debuglog } from "node:util";
-import { nanoid } from "nanoid/non-secure";
-import Tokens from "csrf";
+import "../../utils-Cajs5P8M.js";
+import { SecurityContext } from "../../context-e-QJTKfq.js";
 
-//#region src/app/extend/context.ts
-const debug = debuglog("egg/security/app/extend/context");
-const tokens = new Tokens();
-const CSRF_SECRET = Symbol("egg-security#CSRF_SECRET");
-const _CSRF_SECRET = Symbol("egg-security#_CSRF_SECRET");
-const NEW_CSRF_SECRET = Symbol("egg-security#NEW_CSRF_SECRET");
-const LOG_CSRF_NOTICE = Symbol("egg-security#LOG_CSRF_NOTICE");
-const INPUT_TOKEN = Symbol("egg-security#INPUT_TOKEN");
-const NONCE_CACHE = Symbol("egg-security#NONCE_CACHE");
-const SECURITY_OPTIONS = Symbol("egg-security#SECURITY_OPTIONS");
-const CSRF_REFERER_CHECK = Symbol("egg-security#CSRF_REFERER_CHECK");
-const CSRF_CTOKEN_CHECK = Symbol("egg-security#CSRF_CTOKEN_CHECK");
-function findToken(obj, keys) {
-	if (!obj) return;
-	if (!keys || !keys.length) return;
-	if (typeof keys === "string") return obj[keys];
-	for (const key of keys) if (obj[key]) return obj[key];
-}
-var SecurityContext = class extends Context {
-	get securityOptions() {
-		if (!this[SECURITY_OPTIONS]) this[SECURITY_OPTIONS] = {};
-		return this[SECURITY_OPTIONS];
-	}
-	/**
-	* Check whether the specific `domain` is in / matches the whiteList or not.
-	* @param {string} domain The assigned domain.
-	* @param {Array<string>} [customWhiteList] The custom white list for domain.
-	* @return {boolean} If the domain is in / matches the whiteList, return true;
-	* otherwise false.
-	*/
-	isSafeDomain(domain, customWhiteList) {
-		const domainWhiteList = customWhiteList && customWhiteList.length > 0 ? customWhiteList : this.app.config.security.domainWhiteList;
-		return isSafeDomain(domain, domainWhiteList);
-	}
-	get nonce() {
-		if (!this[NONCE_CACHE]) this[NONCE_CACHE] = nanoid(16);
-		return this[NONCE_CACHE];
-	}
-	/**
-	* get csrf token, general use in template
-	* @return {String} csrf token
-	* @public
-	*/
-	get csrf() {
-		const secret = this[NEW_CSRF_SECRET] || this[CSRF_SECRET];
-		debug("get csrf token, NEW_CSRF_SECRET: %s, _CSRF_SECRET: %s", this[NEW_CSRF_SECRET], this[CSRF_SECRET]);
-		return secret ? tokens.create(secret) : "";
-	}
-	/**
-	* get csrf secret from session or cookie
-	* @return {String} csrf secret
-	* @private
-	*/
-	get [CSRF_SECRET]() {
-		if (this[_CSRF_SECRET]) return this[_CSRF_SECRET];
-		let { useSession, sessionName, cookieName: cookieNames, cookieOptions } = this.app.config.security.csrf;
-		if (useSession) this[_CSRF_SECRET] = this.session[sessionName] || "";
-		else {
-			if (!Array.isArray(cookieNames)) cookieNames = [cookieNames];
-			for (const cookieName of cookieNames) {
-				this[_CSRF_SECRET] = this.cookies.get(cookieName, { signed: cookieOptions.signed }) || "";
-				if (this[_CSRF_SECRET]) break;
-			}
-		}
-		return this[_CSRF_SECRET];
-	}
-	/**
-	* ensure csrf secret exists in session or cookie.
-	* @param {Boolean} [rotate] reset secret even if the secret exists
-	* @public
-	*/
-	ensureCsrfSecret(rotate) {
-		if (this[CSRF_SECRET] && !rotate) return;
-		debug("ensure csrf secret, exists: %s, rotate; %s", this[CSRF_SECRET], rotate);
-		const secret = tokens.secretSync();
-		this[NEW_CSRF_SECRET] = secret;
-		let { useSession, sessionName, cookieDomain, cookieName: cookieNames, cookieOptions } = this.app.config.security.csrf;
-		if (useSession) this.session[sessionName] = secret;
-		else {
-			if (typeof cookieDomain === "function") cookieDomain = cookieDomain(this);
-			const cookieOpts = {
-				domain: cookieDomain,
-				...cookieOptions
-			};
-			if (!Array.isArray(cookieNames)) cookieNames = [cookieNames];
-			for (const cookieName of cookieNames) this.cookies.set(cookieName, secret, cookieOpts);
-		}
-	}
-	get [INPUT_TOKEN]() {
-		const { headerName, bodyName, queryName } = this.app.config.security.csrf;
-		const token = findToken(this.request.query, queryName) || findToken(this.request.body, bodyName) || headerName && this.request.get(headerName);
-		debug("get token: %j, secret: %j", token, this[CSRF_SECRET]);
-		return token;
-	}
-	/**
-	* rotate csrf secret exists in session or cookie.
-	* must rotate the secret when user login
-	* @public
-	*/
-	rotateCsrfSecret() {
-		if (!this[NEW_CSRF_SECRET] && this[CSRF_SECRET]) this.ensureCsrfSecret(true);
-	}
-	/**
-	* assert csrf token/referer is present
-	* @public
-	*/
-	assertCsrf() {
-		if (checkIfIgnore(this.app.config.security.csrf, this)) {
-			debug("%s, ignore by csrf options", this.path);
-			return;
-		}
-		const { type } = this.app.config.security.csrf;
-		let message;
-		const messages = [];
-		switch (type) {
-			case "ctoken":
-				message = this[CSRF_CTOKEN_CHECK]();
-				if (message) this.throw(403, message);
-				break;
-			case "referer":
-				message = this[CSRF_REFERER_CHECK]();
-				if (message) this.throw(403, message);
-				break;
-			case "all":
-				message = this[CSRF_CTOKEN_CHECK]();
-				if (message) this.throw(403, message);
-				message = this[CSRF_REFERER_CHECK]();
-				if (message) this.throw(403, message);
-				break;
-			case "any":
-				message = this[CSRF_CTOKEN_CHECK]();
-				if (!message) return;
-				messages.push(message);
-				message = this[CSRF_REFERER_CHECK]();
-				if (!message) return;
-				messages.push(message);
-				this.throw(403, `both ctoken and referer check error: ${messages.join(", ")}`);
-				break;
-			default: this.throw(`invalid type ${type}`);
-		}
-	}
-	[CSRF_CTOKEN_CHECK]() {
-		if (!this[CSRF_SECRET]) {
-			debug("missing csrf token");
-			this[LOG_CSRF_NOTICE]("missing csrf token");
-			return "missing csrf token";
-		}
-		const token = this[INPUT_TOKEN];
-		if (token !== this[CSRF_SECRET] && !tokens.verify(this[CSRF_SECRET], token)) {
-			debug("verify secret and token error");
-			this[LOG_CSRF_NOTICE]("invalid csrf token");
-			const { rotateWhenInvalid } = this.app.config.security.csrf;
-			if (rotateWhenInvalid) this.rotateCsrfSecret();
-			return "invalid csrf token";
-		}
-	}
-	[CSRF_REFERER_CHECK]() {
-		const { refererWhiteList } = this.app.config.security.csrf;
-		const referer = (this.headers.referer ?? this.headers.origin ?? "").toLowerCase();
-		if (!referer) {
-			debug("missing csrf referer or origin");
-			this[LOG_CSRF_NOTICE]("missing csrf referer or origin");
-			return "missing csrf referer or origin";
-		}
-		const host = getFromUrl(referer, "host");
-		const domainList = refererWhiteList.concat(this.host);
-		if (!host || !isSafeDomain(host, domainList)) {
-			debug("verify referer or origin error");
-			this[LOG_CSRF_NOTICE]("invalid csrf referer or origin");
-			return "invalid csrf referer or origin";
-		}
-	}
-	[LOG_CSRF_NOTICE](msg) {
-		if (this.app.config.env === "local") this.logger.warn(`${msg}. See https://eggjs.org/zh-CN/core/security/#%E5%AE%89%E5%85%A8%E5%A8%81%E8%83%81-csrf-%E7%9A%84%E9%98%B2%E8%8C%83`);
-	}
-	async safeCurl(url, options) {
-		return await this.app.safeCurl(url, options);
-	}
-	unsafeRedirect(url, alt) {
-		this.response.unsafeRedirect(url, alt);
-	}
-};
-
-//#endregion
 export { SecurityContext as default };

package/dist/app/extend/helper.d.ts

@@ -1,11 +1,11 @@
-import cliFilter from "../../lib/helper/cliFilter.js";
-import escapeShellArg from "../../lib/helper/escapeShellArg.js";
-import escapeShellCmd from "../../lib/helper/escapeShellCmd.js";
-import shtml from "../../lib/helper/shtml.js";
-import escapeJavaScript from "../../lib/helper/sjs.js";
-import jsonEscape from "../../lib/helper/sjson.js";
-import pathFilter from "../../lib/helper/spath.js";
-import surl from "../../lib/helper/surl.js";
+import { cliFilter } from "../../cliFilter-DKZxCxSe.js";
+import { escapeShellArg } from "../../escapeShellArg-BnzDicAC.js";
+import { escapeShellCmd } from "../../escapeShellCmd-DQZZIHde.js";
+import { shtml } from "../../shtml-CAquTzgV.js";
+import { escapeJavaScript } from "../../sjs-QZIJYS71.js";
+import { jsonEscape } from "../../sjson-O-vKJPws.js";
+import { pathFilter } from "../../spath-DseDPHxf.js";
+import { surl } from "../../surl-JV70X_RZ.js";
 import * as escape_html0 from "escape-html";
 
 //#region src/app/extend/helper.d.ts

package/dist/app/extend/helper.js

@@ -1,4 +1,14 @@
-import helper_default$1 from "../../lib/helper/index.js";
+import "../../utils-Cajs5P8M.js";
+import "../../cliFilter-7BSD8Nc_.js";
+import "../../escape-p8-cW8c_.js";
+import "../../escapeShellArg-C0v1ZeCl.js";
+import "../../escapeShellCmd-CkAdyhtO.js";
+import "../../shtml-CgF4kOx-.js";
+import "../../sjs-Cbmkk5xS.js";
+import "../../sjson-BetFnVR6.js";
+import "../../spath-Bu9sy6Kz.js";
+import "../../surl-ClleTea7.js";
+import { helper_default as helper_default$1 } from "../../helper-DylzfQ_5.js";
 
 //#region src/app/extend/helper.ts
 var helper_default = { ...helper_default$1 };

package/dist/app/extend/response.d.ts

@@ -1,39 +1,4 @@
-import SecurityContext from "./context.js";
-import { Response } from "egg";
-
-//#region src/app/extend/response.d.ts
-declare class SecurityResponse extends Response {
-  ctx: SecurityContext;
-  /**
-   * This is an unsafe redirection, and we WON'T check if the
-   * destination url is safe or not.
-   * Please DO NOT use this method unless in some very special cases,
-   * otherwise there may be security vulnerabilities.
-   *
-   * @function Response#unsafeRedirect
-   * @param {String} url URL to forward
-   * @example
-   * ```js
-   * ctx.response.unsafeRedirect('http://www.domain.com');
-   * ctx.unsafeRedirect('http://www.domain.com');
-   * ```
-   */
-  unsafeRedirect(url: string, alt?: string): void;
-  /**
-   * A safe redirection, and we'll check if the URL is in
-   * a safe domain or not.
-   * We've overridden the default Koa's implementation by adding a
-   * white list as the filter for that.
-   *
-   * @function Response#redirect
-   * @param {String} url URL to forward
-   * @example
-   * ```js
-   * ctx.response.redirect('/login');
-   * ctx.redirect('/login');
-   * ```
-   */
-  redirect(url: string, alt?: string): void;
-}
-//#endregion
+import "../../config.default-D8v08Vox.js";
+import "../../safe_curl-mqZZv_YQ.js";
+import { SecurityResponse } from "../../context-C-N1IY85.js";
 export { SecurityResponse as default };

package/dist/app/extend/response.js

@@ -1,70 +1,5 @@
-import "./context.js";
-import { Response } from "egg";
+import "../../utils-Cajs5P8M.js";
+import "../../context-e-QJTKfq.js";
+import { SecurityResponse } from "../../response-BFnHAJrV.js";
 
-//#region src/app/extend/response.ts
-const unsafeRedirect = Response.prototype.redirect;
-var SecurityResponse = class extends Response {
-	/**
-	* This is an unsafe redirection, and we WON'T check if the
-	* destination url is safe or not.
-	* Please DO NOT use this method unless in some very special cases,
-	* otherwise there may be security vulnerabilities.
-	*
-	* @function Response#unsafeRedirect
-	* @param {String} url URL to forward
-	* @example
-	* ```js
-	* ctx.response.unsafeRedirect('http://www.domain.com');
-	* ctx.unsafeRedirect('http://www.domain.com');
-	* ```
-	*/
-	unsafeRedirect(url, alt) {
-		unsafeRedirect.call(this, url, alt);
-	}
-	/**
-	* A safe redirection, and we'll check if the URL is in
-	* a safe domain or not.
-	* We've overridden the default Koa's implementation by adding a
-	* white list as the filter for that.
-	*
-	* @function Response#redirect
-	* @param {String} url URL to forward
-	* @example
-	* ```js
-	* ctx.response.redirect('/login');
-	* ctx.redirect('/login');
-	* ```
-	*/
-	redirect(url, alt) {
-		url = (url || "/").trim();
-		if (url[0] === "/" && url[1] === "/") url = "/";
-		if (url[0] === "/" && url[1] !== "\\") {
-			this.unsafeRedirect(url, alt);
-			return;
-		}
-		let urlObject;
-		try {
-			urlObject = new URL(url);
-		} catch {
-			url = "/";
-			this.unsafeRedirect(url);
-			return;
-		}
-		const domainWhiteList = this.app.config.security.domainWhiteList;
-		if (urlObject.protocol !== "http:" && urlObject.protocol !== "https:") url = "/";
-		else if (!urlObject.hostname) url = "/";
-		else if (domainWhiteList && domainWhiteList.length !== 0) {
-			if (!this.ctx.isSafeDomain(urlObject.hostname)) {
-				const message = `a security problem has been detected for url "${url}", redirection is prohibited.`;
-				if (process.env.NODE_ENV === "production") {
-					this.app.coreLogger.warn("[@eggjs/security/response/redirect] %s", message);
-					url = "/";
-				} else return this.ctx.throw(500, message);
-			}
-		}
-		this.unsafeRedirect(url);
-	}
-};
-
-//#endregion
 export { SecurityResponse as default };

package/dist/app/middleware/securities.js

@@ -1,4 +1,15 @@
-import middlewares_default from "../../lib/middlewares/index.js";
+import "../../utils-Cajs5P8M.js";
+import "../../csp-BW5AJd_f.js";
+import "../../csrf-9aSLHiby.js";
+import "../../dta-DVAKEpJ3.js";
+import "../../hsts-CWMKNTEh.js";
+import "../../methodnoallow-BAZONArS.js";
+import "../../noopen-C3jUBwoH.js";
+import "../../nosniff-CcLkhX2I.js";
+import "../../referrerPolicy-D4Uafq6c.js";
+import "../../xframe-q9fEZkVI.js";
+import "../../xssProtection-D5QsHX-e.js";
+import { middlewares_default } from "../../middlewares-CkQjv8t0.js";
 import assert from "node:assert";
 import compose from "koa-compose";
 import { pathMatching } from "egg-path-matching";

package/dist/app.js

@@ -1,5 +1,5 @@
-import { preprocessConfig } from "./lib/utils.js";
-import { SecurityConfig } from "./config/config.default.js";
+import { preprocessConfig } from "./utils-Cajs5P8M.js";
+import { SecurityConfig } from "./config.default-AcwQOAG0.js";
 
 //#region src/app.ts
 var AppBoot = class {

package/dist/application-COC0mYEe.js

@@ -0,0 +1,32 @@
+import { safeCurlForApplication } from "./safe_curl-UlViaxoF.js";
+import { Application } from "egg";
+
+//#region src/app/extend/application.ts
+const INPUT_CSRF = "\r\n<input type=\"hidden\" name=\"_csrf\" value=\"{{ctx.csrf}}\" /></form>";
+const INJECTION_DEFENSE = "<!--for injection--><!--</html>--><!--for injection-->";
+var SecurityApplication = class extends Application {
+	injectCsrf(html) {
+		html = html.replace(/(<form.*?>)([\s\S]*?)<\/form>/gi, (_, $1, $2) => {
+			const match = $2;
+			if (match.indexOf("name=\"_csrf\"") !== -1 || match.indexOf("name='_csrf'") !== -1) return $1 + match + "</form>";
+			return $1 + match + INPUT_CSRF;
+		});
+		return html;
+	}
+	injectNonce(html) {
+		html = html.replace(/<script(.*?)>([\s\S]*?)<\/script[^>]*?>/gi, (_, $1, $2) => {
+			if (!$1.includes("nonce=")) $1 += " nonce=\"{{ctx.nonce}}\"";
+			return "<script" + $1 + ">" + $2 + "<\/script>";
+		});
+		return html;
+	}
+	injectHijackingDefense(html) {
+		return INJECTION_DEFENSE + html + INJECTION_DEFENSE;
+	}
+	async safeCurl(url, options) {
+		return await safeCurlForApplication(this, url, options);
+	}
+};
+
+//#endregion
+export { SecurityApplication };

package/dist/application-n5bk2L_z.d.ts

@@ -0,0 +1,12 @@
+import { HttpClientOptions, HttpClientRequestURL, HttpClientResponse } from "./safe_curl-mqZZv_YQ.js";
+import { Application } from "egg";
+
+//#region src/app/extend/application.d.ts
+declare class SecurityApplication extends Application {
+  injectCsrf(html: string): string;
+  injectNonce(html: string): string;
+  injectHijackingDefense(html: string): string;
+  safeCurl<T = any>(url: HttpClientRequestURL, options?: HttpClientOptions): Promise<HttpClientResponse<T>>;
+}
+//#endregion
+export { SecurityApplication };

package/dist/cliFilter-7BSD8Nc_.js

@@ -0,0 +1,18 @@
+//#region src/lib/helper/cliFilter.ts
+/**
+* remote command execution
+*/
+const BASIC_ALPHABETS = new Set("abcdefghijklmnopqrstuvwxyz1234567890ABCDEFGHIJKLMNOPQRSTUVWXYZ.-_".split(""));
+function cliFilter(text) {
+	const str = "" + text;
+	let res = "";
+	let ascii;
+	for (let index = 0; index < str.length; index++) {
+		ascii = str[index];
+		if (BASIC_ALPHABETS.has(ascii)) res += ascii;
+	}
+	return res;
+}
+
+//#endregion
+export { cliFilter };

package/dist/cliFilter-DKZxCxSe.d.ts

@@ -0,0 +1,7 @@
+//#region src/lib/helper/cliFilter.d.ts
+/**
+ * remote command execution
+ */
+declare function cliFilter(text: string): string;
+//#endregion
+export { cliFilter };