@frontmcp/uipack 0.8.0 → 0.9.0

package/runtime/index.js

@@ -39,6 +39,424 @@ var init_utils = __esm({
   }
 });
 
+// libs/uipack/src/runtime/sanitizer.ts
+function isEmail(value) {
+  return PII_PATTERNS.email.test(value);
+}
+function isPhone(value) {
+  return PII_PATTERNS.phone.test(value);
+}
+function isCreditCard(value) {
+  const digits = value.replace(/[-\s]/g, "");
+  return digits.length >= 13 && digits.length <= 19 && PII_PATTERNS.creditCard.test(value);
+}
+function isSSN(value) {
+  return PII_PATTERNS.ssn.test(value);
+}
+function isIPv4(value) {
+  return PII_PATTERNS.ipv4.test(value);
+}
+function detectPIIType(value) {
+  if (isEmail(value)) return "EMAIL";
+  if (isCreditCard(value)) return "CARD";
+  if (isSSN(value)) return "ID";
+  if (isPhone(value)) return "PHONE";
+  if (isIPv4(value)) return "IP";
+  return null;
+}
+function redactPIIFromText(text) {
+  if (text.length > MAX_PII_TEXT_LENGTH) {
+    return text;
+  }
+  let result = text;
+  result = result.replace(PII_PATTERNS.creditCardInText, REDACTION_TOKENS.CARD);
+  result = result.replace(PII_PATTERNS.ssnInText, REDACTION_TOKENS.ID);
+  result = result.replace(PII_PATTERNS.emailInText, REDACTION_TOKENS.EMAIL);
+  result = result.replace(PII_PATTERNS.phoneInText, REDACTION_TOKENS.PHONE);
+  result = result.replace(PII_PATTERNS.ipv4InText, REDACTION_TOKENS.IP);
+  return result;
+}
+function sanitizeValue(key, value, path, options, depth, visited) {
+  const maxDepth = options.maxDepth ?? 10;
+  if (depth > maxDepth) {
+    return value;
+  }
+  if (value === null || value === void 0) {
+    return value;
+  }
+  if (typeof options.mode === "function") {
+    return options.mode(key, value, path);
+  }
+  if (Array.isArray(options.mode)) {
+    const lowerKey = key.toLowerCase();
+    if (options.mode.some((f) => f.toLowerCase() === lowerKey)) {
+      return REDACTION_TOKENS.REDACTED;
+    }
+  }
+  if (typeof value === "string") {
+    if (options.mode === true) {
+      const piiType = detectPIIType(value);
+      if (piiType) {
+        return REDACTION_TOKENS[piiType];
+      }
+      if (options.sanitizeInText !== false) {
+        const redacted = redactPIIFromText(value);
+        if (redacted !== value) {
+          return redacted;
+        }
+      }
+    }
+    return value;
+  }
+  if (Array.isArray(value)) {
+    if (visited.has(value)) {
+      return REDACTION_TOKENS.REDACTED;
+    }
+    visited.add(value);
+    return value.map(
+      (item, index) => sanitizeValue(String(index), item, [...path, String(index)], options, depth + 1, visited)
+    );
+  }
+  if (typeof value === "object") {
+    if (visited.has(value)) {
+      return REDACTION_TOKENS.REDACTED;
+    }
+    visited.add(value);
+    const result = {};
+    for (const [k, v] of Object.entries(value)) {
+      result[k] = sanitizeValue(k, v, [...path, k], options, depth + 1, visited);
+    }
+    return result;
+  }
+  return value;
+}
+function sanitizeInput(input, mode = true) {
+  if (!input || typeof input !== "object") {
+    return {};
+  }
+  const options = {
+    mode,
+    maxDepth: 10,
+    sanitizeInText: true
+  };
+  const visited = /* @__PURE__ */ new WeakSet();
+  return sanitizeValue("", input, [], options, 0, visited);
+}
+function createSanitizer(mode = true) {
+  return (input) => sanitizeInput(input, mode);
+}
+function detectPII(input, options) {
+  const maxDepth = options?.maxDepth ?? 10;
+  const fields = [];
+  const visited = /* @__PURE__ */ new WeakSet();
+  const check = (value, path, depth) => {
+    if (depth > maxDepth) return;
+    if (value === null || value === void 0) return;
+    if (typeof value === "string") {
+      if (detectPIIType(value)) {
+        fields.push(path.join("."));
+      }
+      return;
+    }
+    if (Array.isArray(value)) {
+      if (visited.has(value)) return;
+      visited.add(value);
+      value.forEach((item, index) => check(item, [...path, String(index)], depth + 1));
+      return;
+    }
+    if (typeof value === "object") {
+      if (visited.has(value)) return;
+      visited.add(value);
+      for (const [k, v] of Object.entries(value)) {
+        check(v, [...path, k], depth + 1);
+      }
+    }
+  };
+  check(input, [], 0);
+  return {
+    hasPII: fields.length > 0,
+    fields
+  };
+}
+function sanitizeHtmlContent(html) {
+  if (typeof window !== "undefined" && typeof document !== "undefined") {
+    return import_dompurify.default.sanitize(html);
+  }
+  return sanitizeHtmlViaParser(html);
+}
+function sanitizeHtmlViaParser(html) {
+  if (html.length > MAX_HTML_LENGTH) {
+    return html.replace(/&/g, "&amp;").replace(/</g, "&lt;").replace(/>/g, "&gt;");
+  }
+  const result = [];
+  let i = 0;
+  const len = html.length;
+  while (i < len) {
+    if (html[i] === "<") {
+      const tagEnd = findTagEnd(html, i);
+      if (tagEnd === -1) {
+        result.push(html[i]);
+        i++;
+        continue;
+      }
+      const tagContent = html.slice(i + 1, tagEnd);
+      const tagInfo = parseTagContent(tagContent);
+      if (!tagInfo) {
+        result.push(html[i]);
+        i++;
+        continue;
+      }
+      const { tagName, isClosing, isSelfClosing, attributes } = tagInfo;
+      const tagLower = tagName.toLowerCase();
+      if (HTML_DANGEROUS_TAGS.has(tagLower)) {
+        if (!isClosing && !isSelfClosing) {
+          const closeTag = `</${tagLower}`;
+          const closeIdx = html.toLowerCase().indexOf(closeTag, tagEnd + 1);
+          if (closeIdx !== -1) {
+            const closeEnd = html.indexOf(">", closeIdx);
+            i = closeEnd !== -1 ? closeEnd + 1 : tagEnd + 1;
+          } else {
+            i = tagEnd + 1;
+          }
+        } else {
+          i = tagEnd + 1;
+        }
+        continue;
+      }
+      const safeAttrs = sanitizeAttributes(attributes);
+      if (isClosing) {
+        result.push(`</${tagName}>`);
+      } else if (isSelfClosing) {
+        result.push(`<${tagName}${safeAttrs} />`);
+      } else {
+        result.push(`<${tagName}${safeAttrs}>`);
+      }
+      i = tagEnd + 1;
+    } else {
+      result.push(html[i]);
+      i++;
+    }
+  }
+  return result.join("");
+}
+function findTagEnd(html, start) {
+  let i = start + 1;
+  let inQuote = null;
+  while (i < html.length) {
+    if (inQuote) {
+      if (html[i] === inQuote) inQuote = null;
+    } else {
+      if (html[i] === '"' || html[i] === "'") {
+        inQuote = html[i];
+      } else if (html[i] === ">") {
+        return i;
+      }
+    }
+    i++;
+  }
+  return -1;
+}
+function parseTagContent(content) {
+  const trimmed = content.trim();
+  if (!trimmed) return null;
+  let idx = 0;
+  const isClosing = trimmed[0] === "/";
+  if (isClosing) idx++;
+  while (idx < trimmed.length && /\s/.test(trimmed[idx])) idx++;
+  const nameStart = idx;
+  while (idx < trimmed.length && /[a-zA-Z0-9-]/.test(trimmed[idx])) idx++;
+  const tagName = trimmed.slice(nameStart, idx);
+  if (!tagName) return null;
+  const isSelfClosing = trimmed.endsWith("/");
+  const attributes = [];
+  const attrPart = isSelfClosing ? trimmed.slice(idx, -1) : trimmed.slice(idx);
+  let attrIdx = 0;
+  while (attrIdx < attrPart.length) {
+    while (attrIdx < attrPart.length && /\s/.test(attrPart[attrIdx])) attrIdx++;
+    if (attrIdx >= attrPart.length) break;
+    const attrNameStart = attrIdx;
+    while (attrIdx < attrPart.length && /[a-zA-Z0-9_-]/.test(attrPart[attrIdx])) attrIdx++;
+    const attrName = attrPart.slice(attrNameStart, attrIdx);
+    if (!attrName) {
+      attrIdx++;
+      continue;
+    }
+    while (attrIdx < attrPart.length && /\s/.test(attrPart[attrIdx])) attrIdx++;
+    let attrValue = "";
+    if (attrIdx < attrPart.length && attrPart[attrIdx] === "=") {
+      attrIdx++;
+      while (attrIdx < attrPart.length && /\s/.test(attrPart[attrIdx])) attrIdx++;
+      if (attrIdx < attrPart.length && (attrPart[attrIdx] === '"' || attrPart[attrIdx] === "'")) {
+        const quote = attrPart[attrIdx];
+        attrIdx++;
+        const valueStart = attrIdx;
+        while (attrIdx < attrPart.length && attrPart[attrIdx] !== quote) attrIdx++;
+        attrValue = attrPart.slice(valueStart, attrIdx);
+        if (attrIdx < attrPart.length) attrIdx++;
+      } else {
+        const valueStart = attrIdx;
+        while (attrIdx < attrPart.length && !/\s/.test(attrPart[attrIdx])) attrIdx++;
+        attrValue = attrPart.slice(valueStart, attrIdx);
+      }
+    }
+    attributes.push({ name: attrName, value: attrValue });
+  }
+  return { tagName, isClosing, isSelfClosing, attributes };
+}
+function sanitizeAttributes(attributes) {
+  const safe = [];
+  for (const { name, value } of attributes) {
+    const nameLower = name.toLowerCase();
+    if (nameLower.startsWith("on") || HTML_EVENT_HANDLERS.has(nameLower)) {
+      continue;
+    }
+    if (["href", "src", "action", "formaction", "data", "poster", "codebase"].includes(nameLower)) {
+      const valueLower = value.toLowerCase().trim();
+      if (HTML_DANGEROUS_SCHEMES.some((scheme) => valueLower.startsWith(scheme))) {
+        continue;
+      }
+    }
+    if (nameLower === "style") {
+      const styleLower = value.toLowerCase();
+      if (styleLower.includes("expression(") || styleLower.includes("javascript:") || styleLower.includes("url(")) {
+        continue;
+      }
+    }
+    const escapedValue = value.replace(/&/g, "&amp;").replace(/"/g, "&quot;").replace(/</g, "&lt;").replace(/>/g, "&gt;");
+    safe.push(` ${name}="${escapedValue}"`);
+  }
+  return safe.join("");
+}
+var import_dompurify, REDACTION_TOKENS, PII_PATTERNS, MAX_PII_TEXT_LENGTH, HTML_EVENT_HANDLERS, HTML_DANGEROUS_TAGS, HTML_DANGEROUS_SCHEMES, MAX_HTML_LENGTH;
+var init_sanitizer = __esm({
+  "libs/uipack/src/runtime/sanitizer.ts"() {
+    "use strict";
+    import_dompurify = __toESM(require("dompurify"));
+    REDACTION_TOKENS = {
+      EMAIL: "[EMAIL]",
+      PHONE: "[PHONE]",
+      CARD: "[CARD]",
+      ID: "[ID]",
+      IP: "[IP]",
+      REDACTED: "[REDACTED]"
+    };
+    PII_PATTERNS = {
+      // Email: user@domain.tld
+      email: /^[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}$/,
+      // Email embedded in text
+      emailInText: /[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}/g,
+      // Phone: Various formats (US-centric but flexible)
+      phone: /^[+]?[(]?[0-9]{1,4}[)]?[-\s.]?[0-9]{1,4}[-\s.]?[0-9]{1,9}$/,
+      // Phone embedded in text
+      phoneInText: /(?:\+?1[-.\s]?)?\(?[0-9]{3}\)?[-.\s]?[0-9]{3}[-.\s]?[0-9]{4}/g,
+      // Credit card: 13-19 digits (with optional separators)
+      creditCard: /^(?:[0-9]{4}[-\s]?){3,4}[0-9]{1,4}$/,
+      // Credit card embedded in text
+      creditCardInText: /\b(?:[0-9]{4}[-\s]?){3,4}[0-9]{1,4}\b/g,
+      // SSN: XXX-XX-XXXX
+      ssn: /^[0-9]{3}[-]?[0-9]{2}[-]?[0-9]{4}$/,
+      // SSN embedded in text
+      ssnInText: /\b[0-9]{3}[-]?[0-9]{2}[-]?[0-9]{4}\b/g,
+      // IPv4 address
+      ipv4: /^(?:(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.){3}(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)$/,
+      // IPv4 embedded in text
+      ipv4InText: /\b(?:(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.){3}(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\b/g
+    };
+    MAX_PII_TEXT_LENGTH = 1e5;
+    HTML_EVENT_HANDLERS = /* @__PURE__ */ new Set([
+      "onabort",
+      "onafterprint",
+      "onauxclick",
+      "onbeforematch",
+      "onbeforeprint",
+      "onbeforetoggle",
+      "onbeforeunload",
+      "onblur",
+      "oncancel",
+      "oncanplay",
+      "oncanplaythrough",
+      "onchange",
+      "onclick",
+      "onclose",
+      "oncontextlost",
+      "oncontextmenu",
+      "oncontextrestored",
+      "oncopy",
+      "oncuechange",
+      "oncut",
+      "ondblclick",
+      "ondrag",
+      "ondragend",
+      "ondragenter",
+      "ondragleave",
+      "ondragover",
+      "ondragstart",
+      "ondrop",
+      "ondurationchange",
+      "onemptied",
+      "onended",
+      "onerror",
+      "onfocus",
+      "onformdata",
+      "onhashchange",
+      "oninput",
+      "oninvalid",
+      "onkeydown",
+      "onkeypress",
+      "onkeyup",
+      "onlanguagechange",
+      "onload",
+      "onloadeddata",
+      "onloadedmetadata",
+      "onloadstart",
+      "onmessage",
+      "onmessageerror",
+      "onmousedown",
+      "onmouseenter",
+      "onmouseleave",
+      "onmousemove",
+      "onmouseout",
+      "onmouseover",
+      "onmouseup",
+      "onoffline",
+      "ononline",
+      "onpagehide",
+      "onpageshow",
+      "onpaste",
+      "onpause",
+      "onplay",
+      "onplaying",
+      "onpopstate",
+      "onprogress",
+      "onratechange",
+      "onrejectionhandled",
+      "onreset",
+      "onresize",
+      "onscroll",
+      "onscrollend",
+      "onsecuritypolicyviolation",
+      "onseeked",
+      "onseeking",
+      "onselect",
+      "onslotchange",
+      "onstalled",
+      "onstorage",
+      "onsubmit",
+      "onsuspend",
+      "ontimeupdate",
+      "ontoggle",
+      "onunhandledrejection",
+      "onunload",
+      "onvolumechange",
+      "onwaiting",
+      "onwheel"
+    ]);
+    HTML_DANGEROUS_TAGS = /* @__PURE__ */ new Set(["script", "style", "iframe", "object", "embed", "applet", "base"]);
+    HTML_DANGEROUS_SCHEMES = ["javascript:", "data:", "vbscript:"];
+    MAX_HTML_LENGTH = 5e5;
+  }
+});
+
 // libs/uipack/src/handlebars/helpers.ts
 function formatDate(date, format) {
   if (date === null || date === void 0) {
@@ -657,6 +1075,7 @@ var HtmlRendererAdapter;
 var init_html_adapter = __esm({
   "libs/uipack/src/runtime/adapters/html.adapter.ts"() {
     "use strict";
+    init_sanitizer();
     HtmlRendererAdapter = class {
       type = "html";
       // Lazy-loaded Handlebars renderer
@@ -682,7 +1101,7 @@ var init_html_adapter = __esm({
       async renderToDOM(content, target, context, _options) {
         try {
           const html = await this.render(content, context);
-          target.innerHTML = html;
+          target.innerHTML = sanitizeHtmlContent(html);
           target.dispatchEvent(
             new CustomEvent("frontmcp:rendered", {
               bubbles: true,
@@ -981,6 +1400,7 @@ __export(runtime_exports, {
   loadAdapter: () => loadAdapter,
   redactPIIFromText: () => redactPIIFromText,
   sanitizeCSPDomains: () => sanitizeCSPDomains,
+  sanitizeHtmlContent: () => sanitizeHtmlContent,
   sanitizeInput: () => sanitizeInput,
   validateCSPDomain: () => validateCSPDomain,
   wrapHybridWidgetShell: () => wrapHybridWidgetShell,
@@ -2428,8 +2848,14 @@ var MCP_BRIDGE_RUNTIME = `
 </script>
 `;
 function getMCPBridgeScript() {
-  const match = MCP_BRIDGE_RUNTIME.match(/<script>([\s\S]*?)<\/script>/);
-  return match ? match[1].trim() : "";
+  const openTag = "<script>";
+  const closeTag = "</script>";
+  const startIdx = MCP_BRIDGE_RUNTIME.indexOf(openTag);
+  const endIdx = MCP_BRIDGE_RUNTIME.lastIndexOf(closeTag);
+  if (startIdx === -1 || endIdx === -1 || endIdx <= startIdx) {
+    return "";
+  }
+  return MCP_BRIDGE_RUNTIME.slice(startIdx + openTag.length, endIdx).trim();
 }
 function isMCPBridgeSupported() {
   if (typeof window === "undefined") return false;
@@ -3038,179 +3464,7 @@ function buildThemeCss(theme) {
 
 // libs/uipack/src/runtime/wrapper.ts
 init_utils();
-
-// libs/uipack/src/runtime/sanitizer.ts
-var REDACTION_TOKENS = {
-  EMAIL: "[EMAIL]",
-  PHONE: "[PHONE]",
-  CARD: "[CARD]",
-  ID: "[ID]",
-  IP: "[IP]",
-  REDACTED: "[REDACTED]"
-};
-var PII_PATTERNS = {
-  // Email: user@domain.tld
-  email: /^[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}$/,
-  // Email embedded in text
-  emailInText: /[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}/g,
-  // Phone: Various formats (US-centric but flexible)
-  phone: /^[+]?[(]?[0-9]{1,4}[)]?[-\s.]?[0-9]{1,4}[-\s.]?[0-9]{1,9}$/,
-  // Phone embedded in text
-  phoneInText: /(?:\+?1[-.\s]?)?\(?[0-9]{3}\)?[-.\s]?[0-9]{3}[-.\s]?[0-9]{4}/g,
-  // Credit card: 13-19 digits (with optional separators)
-  creditCard: /^(?:[0-9]{4}[-\s]?){3,4}[0-9]{1,4}$/,
-  // Credit card embedded in text
-  creditCardInText: /\b(?:[0-9]{4}[-\s]?){3,4}[0-9]{1,4}\b/g,
-  // SSN: XXX-XX-XXXX
-  ssn: /^[0-9]{3}[-]?[0-9]{2}[-]?[0-9]{4}$/,
-  // SSN embedded in text
-  ssnInText: /\b[0-9]{3}[-]?[0-9]{2}[-]?[0-9]{4}\b/g,
-  // IPv4 address
-  ipv4: /^(?:(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.){3}(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)$/,
-  // IPv4 embedded in text
-  ipv4InText: /\b(?:(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.){3}(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\b/g
-};
-function isEmail(value) {
-  return PII_PATTERNS.email.test(value);
-}
-function isPhone(value) {
-  return PII_PATTERNS.phone.test(value);
-}
-function isCreditCard(value) {
-  const digits = value.replace(/[-\s]/g, "");
-  return digits.length >= 13 && digits.length <= 19 && PII_PATTERNS.creditCard.test(value);
-}
-function isSSN(value) {
-  return PII_PATTERNS.ssn.test(value);
-}
-function isIPv4(value) {
-  return PII_PATTERNS.ipv4.test(value);
-}
-function detectPIIType(value) {
-  if (isEmail(value)) return "EMAIL";
-  if (isCreditCard(value)) return "CARD";
-  if (isSSN(value)) return "ID";
-  if (isPhone(value)) return "PHONE";
-  if (isIPv4(value)) return "IP";
-  return null;
-}
-var MAX_PII_TEXT_LENGTH = 1e5;
-function redactPIIFromText(text) {
-  if (text.length > MAX_PII_TEXT_LENGTH) {
-    return text;
-  }
-  let result = text;
-  result = result.replace(PII_PATTERNS.creditCardInText, REDACTION_TOKENS.CARD);
-  result = result.replace(PII_PATTERNS.ssnInText, REDACTION_TOKENS.ID);
-  result = result.replace(PII_PATTERNS.emailInText, REDACTION_TOKENS.EMAIL);
-  result = result.replace(PII_PATTERNS.phoneInText, REDACTION_TOKENS.PHONE);
-  result = result.replace(PII_PATTERNS.ipv4InText, REDACTION_TOKENS.IP);
-  return result;
-}
-function sanitizeValue(key, value, path, options, depth, visited) {
-  const maxDepth = options.maxDepth ?? 10;
-  if (depth > maxDepth) {
-    return value;
-  }
-  if (value === null || value === void 0) {
-    return value;
-  }
-  if (typeof options.mode === "function") {
-    return options.mode(key, value, path);
-  }
-  if (Array.isArray(options.mode)) {
-    const lowerKey = key.toLowerCase();
-    if (options.mode.some((f) => f.toLowerCase() === lowerKey)) {
-      return REDACTION_TOKENS.REDACTED;
-    }
-  }
-  if (typeof value === "string") {
-    if (options.mode === true) {
-      const piiType = detectPIIType(value);
-      if (piiType) {
-        return REDACTION_TOKENS[piiType];
-      }
-      if (options.sanitizeInText !== false) {
-        const redacted = redactPIIFromText(value);
-        if (redacted !== value) {
-          return redacted;
-        }
-      }
-    }
-    return value;
-  }
-  if (Array.isArray(value)) {
-    if (visited.has(value)) {
-      return REDACTION_TOKENS.REDACTED;
-    }
-    visited.add(value);
-    return value.map(
-      (item, index) => sanitizeValue(String(index), item, [...path, String(index)], options, depth + 1, visited)
-    );
-  }
-  if (typeof value === "object") {
-    if (visited.has(value)) {
-      return REDACTION_TOKENS.REDACTED;
-    }
-    visited.add(value);
-    const result = {};
-    for (const [k, v] of Object.entries(value)) {
-      result[k] = sanitizeValue(k, v, [...path, k], options, depth + 1, visited);
-    }
-    return result;
-  }
-  return value;
-}
-function sanitizeInput(input, mode = true) {
-  if (!input || typeof input !== "object") {
-    return {};
-  }
-  const options = {
-    mode,
-    maxDepth: 10,
-    sanitizeInText: true
-  };
-  const visited = /* @__PURE__ */ new WeakSet();
-  return sanitizeValue("", input, [], options, 0, visited);
-}
-function createSanitizer(mode = true) {
-  return (input) => sanitizeInput(input, mode);
-}
-function detectPII(input, options) {
-  const maxDepth = options?.maxDepth ?? 10;
-  const fields = [];
-  const visited = /* @__PURE__ */ new WeakSet();
-  const check = (value, path, depth) => {
-    if (depth > maxDepth) return;
-    if (value === null || value === void 0) return;
-    if (typeof value === "string") {
-      if (detectPIIType(value)) {
-        fields.push(path.join("."));
-      }
-      return;
-    }
-    if (Array.isArray(value)) {
-      if (visited.has(value)) return;
-      visited.add(value);
-      value.forEach((item, index) => check(item, [...path, String(index)], depth + 1));
-      return;
-    }
-    if (typeof value === "object") {
-      if (visited.has(value)) return;
-      visited.add(value);
-      for (const [k, v] of Object.entries(value)) {
-        check(v, [...path, k], depth + 1);
-      }
-    }
-  };
-  check(input, [], 0);
-  return {
-    hasPII: fields.length > 0,
-    fields
-  };
-}
-
-// libs/uipack/src/runtime/wrapper.ts
+init_sanitizer();
 function createTemplateHelpers() {
   let idCounter2 = 0;
   return {
@@ -4798,6 +5052,9 @@ function wrapToolUIForClaude(options) {
 </html>`;
 }
 
+// libs/uipack/src/runtime/index.ts
+init_sanitizer();
+
 // libs/uipack/src/runtime/adapters/index.ts
 init_html_adapter();
 init_mdx_adapter();
@@ -5162,6 +5419,7 @@ function generateBootstrapScript() {
   loadAdapter,
   redactPIIFromText,
   sanitizeCSPDomains,
+  sanitizeHtmlContent,
   sanitizeInput,
   validateCSPDomain,
   wrapHybridWidgetShell,

package/runtime/mcp-bridge.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"mcp-bridge.d.ts","sourceRoot":"","sources":["../../src/runtime/mcp-bridge.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;GAkBG;AAIH;;;;;;;;;;;;;;;;;;;;;GAqBG;AACH,eAAO,MAAM,kBAAkB,koeA8c9B,CAAC;AAEF;;;GAGG;AACH,wBAAgB,kBAAkB,IAAI,MAAM,CAI3C;AAED;;GAEG;AACH,wBAAgB,oBAAoB,IAAI,OAAO,CAW9C;AAMD;;;;;;;;;GASG;AACH,eAAO,MAAM,uBAAuB,QAA+B,CAAC;AAEpE;;;;;;;;;;;;;;;GAeG;AACH,eAAO,MAAM,uBAAuB;;;;;CAAqB,CAAC;AAE1D;;;;;;;;;;;;;GAaG;AACH,OAAO,EAAE,kBAAkB,IAAI,oBAAoB,EAAE,MAAM,mBAAmB,CAAC;AAG/E,YAAY,EAAE,oBAAoB,EAAE,MAAM,mBAAmB,CAAC"}
+{"version":3,"file":"mcp-bridge.d.ts","sourceRoot":"","sources":["../../src/runtime/mcp-bridge.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;GAkBG;AAIH;;;;;;;;;;;;;;;;;;;;;GAqBG;AACH,eAAO,MAAM,kBAAkB,koeA8c9B,CAAC;AAEF;;;GAGG;AACH,wBAAgB,kBAAkB,IAAI,MAAM,CAa3C;AAED;;GAEG;AACH,wBAAgB,oBAAoB,IAAI,OAAO,CAW9C;AAMD;;;;;;;;;GASG;AACH,eAAO,MAAM,uBAAuB,QAA+B,CAAC;AAEpE;;;;;;;;;;;;;;;GAeG;AACH,eAAO,MAAM,uBAAuB;;;;;CAAqB,CAAC;AAE1D;;;;;;;;;;;;;GAaG;AACH,OAAO,EAAE,kBAAkB,IAAI,oBAAoB,EAAE,MAAM,mBAAmB,CAAC;AAG/E,YAAY,EAAE,oBAAoB,EAAE,MAAM,mBAAmB,CAAC"}

package/runtime/sanitizer.d.ts

@@ -169,4 +169,12 @@ export declare function detectPII(input: Record<string, unknown>, options?: {
     hasPII: boolean;
     fields: string[];
 };
+/**
+ * Sanitize HTML content to prevent XSS attacks.
+ * Uses DOMPurify for robust sanitization when available (browser), falls back to parser-based approach.
+ *
+ * @param html - HTML string to sanitize
+ * @returns Sanitized HTML string
+ */
+export declare function sanitizeHtmlContent(html: string): string;
 //# sourceMappingURL=sanitizer.d.ts.map

package/runtime/sanitizer.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"sanitizer.d.ts","sourceRoot":"","sources":["../../src/runtime/sanitizer.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAmCG;AAEH;;GAEG;AACH,eAAO,MAAM,gBAAgB;;;;;;;CAOnB,CAAC;AAEX;;GAEG;AACH,eAAO,MAAM,YAAY;;;;;;;;;;;CA8BxB,CAAC;AAEF;;GAEG;AACH,MAAM,MAAM,WAAW,GAAG,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,EAAE,KAAK,OAAO,CAAC;AAEnF;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B;;;;;OAKG;IACH,IAAI,EAAE,IAAI,GAAG,MAAM,EAAE,GAAG,WAAW,CAAC;IAEpC;;;OAGG;IACH,QAAQ,CAAC,EAAE,MAAM,CAAC;IAElB;;;OAGG;IACH,cAAc,CAAC,EAAE,OAAO,CAAC;CAC1B;AAED;;GAEG;AACH,wBAAgB,OAAO,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAE9C;AAED;;GAEG;AACH,wBAAgB,OAAO,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAE9C;AAED;;GAEG;AACH,wBAAgB,YAAY,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAInD;AAED;;GAEG;AACH,wBAAgB,KAAK,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAE5C;AAED;;GAEG;AACH,wBAAgB,MAAM,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAE7C;AAED;;GAEG;AACH,wBAAgB,aAAa,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM,OAAO,gBAAgB,GAAG,IAAI,CAOjF;AAQD;;GAEG;AACH,wBAAgB,iBAAiB,CAAC,IAAI,EAAE,MAAM,GAAG,MAAM,CAgBtD;AA0FD;;;;;;;;;;;;;;;;;;;;;;;GAuBG;AACH,wBAAgB,aAAa,CAC3B,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC9B,IAAI,GAAE,IAAI,GAAG,MAAM,EAAE,GAAG,WAAkB,GACzC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAczB;AAED;;;;;;;;;;;;;GAaG;AACH,wBAAgB,eAAe,CAC7B,IAAI,GAAE,IAAI,GAAG,MAAM,EAAE,GAAG,WAAkB,GACzC,CAAC,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,KAAK,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAE7D;AAED;;;;;;;;GAQG;AACH,wBAAgB,SAAS,CACvB,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC9B,OAAO,CAAC,EAAE;IAAE,QAAQ,CAAC,EAAE,MAAM,CAAA;CAAE,GAC9B;IACD,MAAM,EAAE,OAAO,CAAC;IAChB,MAAM,EAAE,MAAM,EAAE,CAAC;CAClB,CA0CA"}
+{"version":3,"file":"sanitizer.d.ts","sourceRoot":"","sources":["../../src/runtime/sanitizer.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAmCG;AAIH;;GAEG;AACH,eAAO,MAAM,gBAAgB;;;;;;;CAOnB,CAAC;AAEX;;GAEG;AACH,eAAO,MAAM,YAAY;;;;;;;;;;;CA8BxB,CAAC;AAEF;;GAEG;AACH,MAAM,MAAM,WAAW,GAAG,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,EAAE,KAAK,OAAO,CAAC;AAEnF;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B;;;;;OAKG;IACH,IAAI,EAAE,IAAI,GAAG,MAAM,EAAE,GAAG,WAAW,CAAC;IAEpC;;;OAGG;IACH,QAAQ,CAAC,EAAE,MAAM,CAAC;IAElB;;;OAGG;IACH,cAAc,CAAC,EAAE,OAAO,CAAC;CAC1B;AAED;;GAEG;AACH,wBAAgB,OAAO,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAE9C;AAED;;GAEG;AACH,wBAAgB,OAAO,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAE9C;AAED;;GAEG;AACH,wBAAgB,YAAY,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAInD;AAED;;GAEG;AACH,wBAAgB,KAAK,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAE5C;AAED;;GAEG;AACH,wBAAgB,MAAM,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAE7C;AAED;;GAEG;AACH,wBAAgB,aAAa,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM,OAAO,gBAAgB,GAAG,IAAI,CAOjF;AAQD;;GAEG;AACH,wBAAgB,iBAAiB,CAAC,IAAI,EAAE,MAAM,GAAG,MAAM,CAgBtD;AA0FD;;;;;;;;;;;;;;;;;;;;;;;GAuBG;AACH,wBAAgB,aAAa,CAC3B,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC9B,IAAI,GAAE,IAAI,GAAG,MAAM,EAAE,GAAG,WAAkB,GACzC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAczB;AAED;;;;;;;;;;;;;GAaG;AACH,wBAAgB,eAAe,CAC7B,IAAI,GAAE,IAAI,GAAG,MAAM,EAAE,GAAG,WAAkB,GACzC,CAAC,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,KAAK,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAE7D;AAED;;;;;;;;GAQG;AACH,wBAAgB,SAAS,CACvB,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC9B,OAAO,CAAC,EAAE;IAAE,QAAQ,CAAC,EAAE,MAAM,CAAA;CAAE,GAC9B;IACD,MAAM,EAAE,OAAO,CAAC;IAChB,MAAM,EAAE,MAAM,EAAE,CAAC;CAClB,CA0CA;AA4GD;;;;;;GAMG;AACH,wBAAgB,mBAAmB,CAAC,IAAI,EAAE,MAAM,GAAG,MAAM,CAUxD"}

package/tool-template/index.js

@@ -2679,6 +2679,7 @@ function buildThemeCss(theme) {
 init_utils();
 
 // libs/uipack/src/runtime/sanitizer.ts
+var import_dompurify = __toESM(require("dompurify"));
 var REDACTION_TOKENS = {
   EMAIL: "[EMAIL]",
   PHONE: "[PHONE]",