npm - @friggframework/core - Versions diffs - 2.0.0--canary.419.e387a34.0 → 2.0.0--canary.419.daed467.0 - Mend

@friggframework/core 2.0.0--canary.419.e387a34.0 → 2.0.0--canary.419.daed467.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/database/mongo.js +39 -24
package/package.json +5 -5

package/database/mongo.js CHANGED Viewed

@@ -49,34 +49,49 @@ if (appDefinition.database?.documentDB?.enable === true) {
     // Set TLS CA file path if specified
     if (appDefinition.database.documentDB.tlsCAFile) {
-        const tlsCAFilePath = path.resolve(process.cwd(), appDefinition.database.documentDB.tlsCAFile);
-        mongoConfig.tlsCAFile = tlsCAFilePath;
+        const tlsCAFile = appDefinition.database.documentDB.tlsCAFile;
-        console.log('📄 DocumentDB TLS CA file configured:');
-        console.log('   📎 Original path:', appDefinition.database.documentDB.tlsCAFile);
-        console.log('   📎 Resolved path:', tlsCAFilePath);
-        console.log('   📄 File exists:', fs.existsSync(tlsCAFilePath));
-        // List current directory contents for debugging
-        try {
-            console.log('📁 Current directory contents:');
-            fs.readdirSync(process.cwd()).forEach(item => {
-                const stats = fs.statSync(path.join(process.cwd(), item));
-                console.log(`   ${stats.isDirectory() ? '📁' : '📄'} ${item}`);
-            });
+        // Basic safety: reject obviously dangerous paths
+        if (tlsCAFile.includes('..') || path.isAbsolute(tlsCAFile)) {
+            console.warn('⚠️  Rejecting potentially unsafe tlsCAFile path:', tlsCAFile);
+        } else {
+            const tlsCAFilePath = path.resolve(process.cwd(), tlsCAFile);
+            console.log('📄 DocumentDB TLS CA file configured:');
+            console.log('   📎 Original path:', tlsCAFile);
+            console.log('   📎 Resolved path:', tlsCAFilePath);
+            console.log('   📄 File exists:', fs.existsSync(tlsCAFilePath));
-            // Check if security directory exists
-            const securityDir = path.join(process.cwd(), 'security');
-            if (fs.existsSync(securityDir)) {
-                console.log('📁 Security directory contents:');
-                fs.readdirSync(securityDir).forEach(item => {
-                    console.log(`   📄 ${item}`);
-                });
+            // Only set tlsCAFile if the file actually exists
+            if (fs.existsSync(tlsCAFilePath)) {
+                mongoConfig.tlsCAFile = tlsCAFilePath;
+                console.log('✅ TLS CA file configured successfully');
             } else {
-                console.log('❌ Security directory does not exist at:', securityDir);
+                console.error('❌ TLS CA file not found, continuing without certificate');
+            }
+            // Debug directory listing (only in development)
+            if (process.env.NODE_ENV !== 'production') {
+                try {
+                    console.log('📁 Current directory contents:');
+                    fs.readdirSync(process.cwd()).forEach(item => {
+                        const stats = fs.statSync(path.join(process.cwd(), item));
+                        console.log(`   ${stats.isDirectory() ? '📁' : '📄'} ${item}`);
+                    });
+                    const securityDir = path.join(process.cwd(), 'security');
+                    if (fs.existsSync(securityDir)) {
+                        console.log('📁 Security directory contents:');
+                        fs.readdirSync(securityDir).forEach(item => {
+                            console.log(`   📄 ${item}`);
+                        });
+                    } else {
+                        console.log('❌ Security directory does not exist at:', securityDir);
+                    }
+                } catch (error) {
+                    console.log('❌ Error listing directory contents:', error.message);
+                }
             }
-        } catch (error) {
-            console.log('❌ Error listing directory contents:', error.message);
         }
     }
 } else {

package/package.json CHANGED Viewed

@@ -1,7 +1,7 @@
 {
   "name": "@friggframework/core",
   "prettier": "@friggframework/prettier-config",
-  "version": "2.0.0--canary.419.e387a34.0",
+  "version": "2.0.0--canary.419.daed467.0",
   "dependencies": {
     "@hapi/boom": "^10.0.1",
     "aws-sdk": "^2.1200.0",
@@ -22,9 +22,9 @@
     "uuid": "^9.0.1"
   },
   "devDependencies": {
-    "@friggframework/eslint-config": "2.0.0--canary.419.e387a34.0",
-    "@friggframework/prettier-config": "2.0.0--canary.419.e387a34.0",
-    "@friggframework/test": "2.0.0--canary.419.e387a34.0",
+    "@friggframework/eslint-config": "2.0.0--canary.419.daed467.0",
+    "@friggframework/prettier-config": "2.0.0--canary.419.daed467.0",
+    "@friggframework/test": "2.0.0--canary.419.daed467.0",
     "@types/lodash": "4.17.15",
     "@typescript-eslint/eslint-plugin": "^8.0.0",
     "chai": "^4.3.6",
@@ -56,5 +56,5 @@
   "publishConfig": {
     "access": "public"
   },
-  "gitHead": "e387a348fdc21f44aacf0ead206444dfd07dec90"
+  "gitHead": "daed467862dc5acc37b4dd9e48ea62444da598be"
 }