npm - @nest-omni/core - Versions diffs - 4.1.3-10 → 4.1.3-12 - Mend

@nest-omni/core 4.1.3-10 → 4.1.3-12

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (183) hide show

package/audit/audit.module.js +42 -2
package/audit/controllers/audit.controller.d.ts +64 -0
package/audit/controllers/audit.controller.js +50 -0
package/audit/decorators/audit-action.decorator.d.ts +74 -0
package/audit/decorators/audit-action.decorator.js +42 -0
package/audit/decorators/audit-controller.decorator.d.ts +1 -1
package/audit/decorators/audit-controller.decorator.js +2 -2
package/audit/decorators/entity-audit.decorator.d.ts +78 -2
package/audit/decorators/entity-audit.decorator.js +145 -4
package/audit/decorators/index.d.ts +2 -0
package/audit/decorators/index.js +2 -0
package/audit/entities/audit-action-summary.entity.d.ts +23 -0
package/audit/entities/audit-action-summary.entity.js +101 -0
package/audit/entities/entity-audit-log.entity.d.ts +8 -0
package/audit/entities/entity-audit-log.entity.js +54 -2
package/audit/entities/entity-transaction.entity.d.ts +8 -2
package/audit/entities/entity-transaction.entity.js +39 -3
package/audit/entities/index.d.ts +3 -0
package/audit/entities/index.js +3 -0
package/audit/entities/manual-operation-log.entity.js +8 -1
package/audit/enums/audit.enums.d.ts +22 -6
package/audit/enums/audit.enums.js +27 -9
package/audit/index.d.ts +4 -1
package/audit/index.js +25 -2
package/audit/interceptors/audit-action.interceptor.d.ts +38 -0
package/audit/interceptors/audit-action.interceptor.js +215 -0
package/audit/interceptors/index.d.ts +1 -0
package/audit/interceptors/index.js +1 -0
package/audit/interfaces/audit.interfaces.d.ts +145 -2
package/audit/services/audit-action.service.d.ts +141 -0
package/audit/services/audit-action.service.js +244 -0
package/audit/services/audit-context.service.d.ts +82 -0
package/audit/services/audit-context.service.js +170 -0
package/audit/services/entity-audit.service.d.ts +174 -4
package/audit/services/entity-audit.service.js +515 -14
package/audit/services/index.d.ts +3 -0
package/audit/services/index.js +3 -0
package/audit/services/manual-audit-log.service.d.ts +24 -23
package/audit/services/manual-audit-log.service.js +32 -53
package/audit/services/operation-description.service.d.ts +13 -3
package/audit/services/operation-description.service.js +161 -24
package/audit/services/transaction-audit.service.js +3 -3
package/audit/subscribers/entity-audit.subscriber.d.ts +4 -0
package/audit/subscribers/entity-audit.subscriber.js +47 -0
package/file-upload/controllers/file-access.controller.d.ts +23 -0
package/file-upload/controllers/file-access.controller.js +128 -0
package/file-upload/decorators/csv-data.decorator.d.ts +44 -0
package/file-upload/decorators/csv-data.decorator.js +131 -0
package/file-upload/decorators/excel-data.decorator.d.ts +44 -0
package/file-upload/decorators/excel-data.decorator.js +125 -0
package/file-upload/decorators/file-upload.decorator.d.ts +83 -0
package/file-upload/decorators/file-upload.decorator.js +172 -0
package/file-upload/decorators/index.d.ts +4 -0
package/file-upload/decorators/index.js +20 -0
package/file-upload/decorators/process.decorator.d.ts +40 -0
package/file-upload/decorators/process.decorator.js +52 -0
package/file-upload/dto/create-file.dto.d.ts +24 -0
package/file-upload/dto/create-file.dto.js +112 -0
package/file-upload/dto/find-files.dto.d.ts +15 -0
package/file-upload/dto/find-files.dto.js +76 -0
package/file-upload/dto/index.d.ts +4 -0
package/file-upload/dto/index.js +20 -0
package/file-upload/dto/pagination.dto.d.ts +7 -0
package/file-upload/dto/pagination.dto.js +39 -0
package/file-upload/dto/update-file.dto.d.ts +16 -0
package/file-upload/dto/update-file.dto.js +71 -0
package/file-upload/entities/file-metadata.entity.d.ts +22 -0
package/file-upload/entities/file-metadata.entity.js +84 -0
package/file-upload/entities/file.entity.d.ts +129 -0
package/file-upload/entities/file.entity.js +384 -0
package/file-upload/entities/index.d.ts +2 -0
package/file-upload/entities/index.js +18 -0
package/file-upload/enums/file-type.enum.d.ts +72 -0
package/file-upload/enums/file-type.enum.js +212 -0
package/file-upload/exceptions/file-upload.exception.d.ts +57 -0
package/file-upload/exceptions/file-upload.exception.js +120 -0
package/file-upload/exceptions/index.d.ts +1 -0
package/file-upload/exceptions/index.js +17 -0
package/file-upload/file-upload.module.d.ts +89 -0
package/file-upload/file-upload.module.js +264 -0
package/file-upload/index.d.ts +26 -0
package/file-upload/index.js +59 -0
package/file-upload/interceptors/file-upload.interceptor.d.ts +48 -0
package/file-upload/interceptors/file-upload.interceptor.js +434 -0
package/file-upload/interceptors/index.d.ts +1 -0
package/file-upload/interceptors/index.js +17 -0
package/file-upload/interfaces/custom-file-type.interface.d.ts +72 -0
package/file-upload/interfaces/custom-file-type.interface.js +2 -0
package/file-upload/interfaces/file-buffer.interface.d.ts +72 -0
package/file-upload/interfaces/file-buffer.interface.js +2 -0
package/file-upload/interfaces/file-entity.interface.d.ts +142 -0
package/file-upload/interfaces/file-entity.interface.js +28 -0
package/file-upload/interfaces/file-metadata.interface.d.ts +21 -0
package/file-upload/interfaces/file-metadata.interface.js +2 -0
package/file-upload/interfaces/file-upload-options.interface.d.ts +117 -0
package/file-upload/interfaces/file-upload-options.interface.js +2 -0
package/file-upload/interfaces/index.d.ts +7 -0
package/file-upload/interfaces/index.js +24 -0
package/file-upload/interfaces/storage-provider.interface.d.ts +239 -0
package/file-upload/interfaces/storage-provider.interface.js +2 -0
package/file-upload/interfaces/upload-options.interface.d.ts +19 -0
package/file-upload/interfaces/upload-options.interface.js +2 -0
package/file-upload/providers/index.d.ts +2 -0
package/file-upload/providers/index.js +18 -0
package/file-upload/providers/local-storage.provider.d.ts +98 -0
package/file-upload/providers/local-storage.provider.js +484 -0
package/file-upload/providers/s3-storage.provider.d.ts +87 -0
package/file-upload/providers/s3-storage.provider.js +455 -0
package/file-upload/services/file-signature-validator.service.d.ts +118 -0
package/file-upload/services/file-signature-validator.service.js +376 -0
package/file-upload/services/file.service.d.ts +190 -0
package/file-upload/services/file.service.js +609 -0
package/file-upload/services/index.d.ts +4 -0
package/file-upload/services/index.js +20 -0
package/file-upload/services/malicious-file-detector.service.d.ts +274 -0
package/file-upload/services/malicious-file-detector.service.js +1035 -0
package/file-upload/services/mime-registry.service.d.ts +47 -0
package/file-upload/services/mime-registry.service.js +167 -0
package/file-upload/utils/checksum.util.d.ts +28 -0
package/file-upload/utils/checksum.util.js +65 -0
package/file-upload/utils/dynamic-import.util.d.ts +50 -0
package/file-upload/utils/dynamic-import.util.js +144 -0
package/file-upload/utils/filename.util.d.ts +59 -0
package/file-upload/utils/filename.util.js +184 -0
package/file-upload/utils/filepath.util.d.ts +70 -0
package/file-upload/utils/filepath.util.js +152 -0
package/file-upload/utils/index.d.ts +4 -0
package/file-upload/utils/index.js +20 -0
package/http-client/http-client.module.js +1 -5
package/index.d.ts +3 -1
package/index.js +4 -1
package/package.json +4 -5
package/redis-lock/lock-heartbeat.service.d.ts +2 -2
package/redis-lock/lock-heartbeat.service.js +4 -4
package/redis-lock/redis-lock.service.d.ts +18 -0
package/redis-lock/redis-lock.service.js +38 -8
package/setup/bootstrap.setup.d.ts +1 -0
package/setup/bootstrap.setup.js +1 -0
package/setup/schedule.decorator.js +18 -8
package/shared/index.d.ts +1 -1
package/shared/index.js +1 -1
package/shared/{serviceRegistryModule.js → service-registry.module.js} +9 -16
package/shared/services/index.d.ts +0 -1
package/shared/services/index.js +0 -1
package/transaction/__tests__/mocks.d.ts +9 -0
package/transaction/__tests__/mocks.js +33 -0
package/transaction/base-service-transaction.d.ts +99 -0
package/transaction/base-service-transaction.js +286 -0
package/transaction/cls-compatibility.service.d.ts +55 -0
package/transaction/cls-compatibility.service.js +127 -0
package/transaction/data-source-registry.d.ts +91 -0
package/transaction/data-source-registry.js +349 -0
package/transaction/database-adapter.d.ts +44 -0
package/transaction/database-adapter.js +240 -0
package/transaction/decorators/entity-datasource.decorator.d.ts +62 -0
package/transaction/decorators/entity-datasource.decorator.js +105 -0
package/transaction/index.d.ts +14 -0
package/transaction/index.js +57 -0
package/transaction/logging-transactional.interceptor.d.ts +18 -0
package/transaction/logging-transactional.interceptor.js +163 -0
package/transaction/transaction-context.service.d.ts +137 -0
package/transaction/transaction-context.service.js +411 -0
package/transaction/transaction-manager.d.ts +230 -0
package/transaction/transaction-manager.js +1001 -0
package/transaction/transaction-synchronization.d.ts +171 -0
package/transaction/transaction-synchronization.js +380 -0
package/transaction/transaction.errors.d.ts +91 -0
package/transaction/transaction.errors.js +206 -0
package/transaction/transaction.module.d.ts +30 -0
package/transaction/transaction.module.js +98 -0
package/transaction/transactional.decorator.d.ts +82 -0
package/transaction/transactional.decorator.js +319 -0
package/transaction/typeorm-module-wrapper.d.ts +96 -0
package/transaction/typeorm-module-wrapper.js +197 -0
package/validators/file-mimetype.validator.d.ts +0 -2
package/validators/file-mimetype.validator.js +4 -6
package/validators/is-exists.validator.d.ts +2 -5
package/validators/is-exists.validator.js +4 -6
package/validators/is-unique.validator.d.ts +2 -5
package/validators/is-unique.validator.js +6 -11
package/shared/services/validator.service.d.ts +0 -3
package/shared/services/validator.service.js +0 -20
/package/shared/{serviceRegistryModule.d.ts → service-registry.module.d.ts} +0 -0

package/file-upload/services/malicious-file-detector.service.d.ts ADDED Viewed

@@ -0,0 +1,274 @@
+/**
+ * 检测结果
+ */
+export interface DetectionResult {
+    /** 是否安全 */
+    safe: boolean;
+    /** 威胁列表 */
+    threats: string[];
+    /** 风险评分 0-100 */
+    riskScore: number;
+    /** 是否为恶意软件 */
+    isMalware: boolean;
+    /** 检测详情 */
+    details?: {
+        /** 多编码检测结果 */
+        encodingThreats?: string[];
+        /** 文件结构分析结果 */
+        structureAnalysis?: StructureAnalysisResult;
+        /** ClamAV扫描结果 */
+        clamavResult?: ClamAVResult;
+    };
+}
+/**
+ * 文件结构分析结果
+ */
+export interface StructureAnalysisResult {
+    /** 检测到的异常 */
+    anomalies: string[];
+    /** 风险评分 */
+    riskScore: number;
+    /** 文件类型特征 */
+    characteristics: {
+        /** 是否包含嵌套压缩 */
+        hasNestedArchive?: boolean;
+        /** 是否包含可执行内容 */
+        hasExecutableContent?: boolean;
+        /** 是否包含宏 */
+        hasMacros?: boolean;
+        /** 熵值（用于检测加密/混淆） */
+        entropy?: number;
+    };
+}
+/**
+ * ClamAV扫描结果
+ */
+export interface ClamAVResult {
+    /** 是否已扫描 */
+    scanned: boolean;
+    /** 是否发现病毒 */
+    infected: boolean;
+    /** 病毒签名 */
+    virusName?: string;
+    /** 错误信息 */
+    error?: string;
+}
+/**
+ * 恶意文件检测配置
+ */
+export interface MaliciousDetectorOptions {
+    /** 是否启用恶意文件检测（总开关） */
+    enabled?: boolean;
+    /** 是否启用ClamAV */
+    enableClamAV?: boolean;
+    /** ClamAV模式：'local' | 'remote' */
+    clamavMode?: 'local' | 'remote';
+    /** 本地ClamAV扫描命令（当mode='local'时使用） */
+    clamavCommand?: string;
+    /** 远程ClamAV服务配置（当mode='remote'时使用） */
+    clamavRemote?: {
+        /** 远程服务地址 */
+        host: string;
+        /** 端口号 */
+        port: number;
+        /** 超时时间（毫秒） */
+        timeout?: number;
+    };
+    /** 是否启用多编码检测 */
+    enableMultiEncoding?: boolean;
+    /** 是否启用文件结构分析 */
+    enableStructureAnalysis?: boolean;
+    /** 风险阈值 */
+    riskThreshold?: number;
+}
+/**
+ * 恶意文件检测服务
+ */
+/**
+ * 恶意文件检测服务（增强版）
+ *
+ * 功能：
+ * 1. 多编码检测 - 支持 UTF-8, UTF-16LE, Latin1, ASCII, Base64
+ * 2. 文件结构分析 - 检测嵌套压缩、可执行内容、Office宏、高熵值、多态性
+ * 3. ClamAV集成 - 支持本地命令行和远程服务两种模式
+ *
+ * 使用示例：
+ * ```typescript
+ * // 方式1: 本地ClamAV（需要在当前机器安装）
+ * FileUploadModule.forRoot({
+ *   maliciousDetection: {
+ *     enableClamAV: true,
+ *     clamavMode: 'local',           // 本地模式
+ *     clamavCommand: 'clamdscan',    // 或 'clamscan'
+ *   },
+ * });
+ *
+ * // 方式2: 远程ClamAV服务（推荐用于生产环境）
+ * FileUploadModule.forRoot({
+ *   maliciousDetection: {
+ *     enableClamAV: true,
+ *     clamavMode: 'remote',          // 远程模式
+ *     clamavRemote: {
+ *       host: 'clamav-server.com',   // ClamAV服务器地址
+ *       port: 3310,                  // ClamAV守护进程端口
+ *       timeout: 30000,              // 超时时间(ms)
+ *     },
+ *   },
+ * });
+ *
+ * // 方式3: 仅使用多编码检测和结构分析（无需安装ClamAV）
+ * FileUploadModule.forRoot({
+ *   maliciousDetection: {
+ *     enableClamAV: false,           // 禁用ClamAV
+ *     enableMultiEncoding: true,     // 启用多编码检测
+ *     enableStructureAnalysis: true, // 启用结构分析
+ *     riskThreshold: 50,             // 风险阈值
+ *   },
+ * });
+ *
+ * // 直接使用服务
+ * const result = await maliciousDetector.scanFile('/path/to/file');
+ * console.log('Is Safe:', result.safe);
+ * console.log('Risk Score:', result.riskScore);
+ * console.log('Threats:', result.threats);
+ * console.log('Details:', result.details);
+ * ```
+ *
+ * 远程ClamAV服务部署示例：
+ * ```bash
+ * # Docker部署ClamAV服务
+ * docker run -d -p 3310:3310 \
+ *   --name clamav \
+ *   clamav/clamav:latest
+ *
+ * # 配置clamd.conf允许远程连接
+ * TCPSocket 3310
+ * TCPAddr 0.0.0.0
+ * StreamMaxLength 100M
+ * ```
+ *
+ * 检测结果示例：
+ * ```json
+ * {
+ *   "safe": false,
+ *   "isMalware": true,
+ *   "riskScore": 85,
+ *   "threats": [
+ *     "PE executable header (Windows)",
+ *     "Script tag injection (base64 encoded)",
+ *     "Executable content detected"
+ *   ],
+ *   "details": {
+ *     "encodingThreats": ["Script tag injection (base64 encoded)"],
+ *     "structureAnalysis": {
+ *       "anomalies": ["Executable content detected"],
+ *       "riskScore": 60,
+ *       "characteristics": {
+ *         "hasExecutableContent": true,
+ *         "entropy": 6.8
+ *       }
+ *     },
+ *     "clamavResult": {
+ *       "scanned": true,
+ *       "infected": true,
+ *       "virusName": "Win.Trojan.Agent"
+ *     }
+ *   }
+ * }
+ * ```
+ */
+export declare class MaliciousFileDetector {
+    private readonly options?;
+    private readonly logger;
+    private readonly encodings;
+    private readonly maliciousPatterns;
+    private readonly suspiciousSignatures;
+    constructor(options?: MaliciousDetectorOptions);
+    /**
+     * 扫描文件（增强版）
+     */
+    scanFile(filePath: string): Promise<DetectionResult>;
+    /**
+     * 检查签名
+     */
+    private checkSignature;
+    /**
+     * 缓冲区包含检查
+     */
+    private bufferContains;
+    /**
+     * 检查压缩比（简单实现）
+     */
+    private checkCompressionRatio;
+    /**
+     * 检查可疑文件名
+     */
+    private hasSuspiciousName;
+    /**
+     * 检查双扩展名
+     */
+    private hasDoubleExtension;
+    /**
+     * 检查隐藏扩展名技巧
+     */
+    private hasHiddenExtension;
+    /**
+     * 多编码检测（新增）
+     * 通过多种编码方式解析文件内容，检测隐藏的恶意模式
+     */
+    private detectMultiEncodingThreats;
+    /**
+     * 文件结构分析（新增）
+     * 分析文件的深层结构，检测异常特征
+     */
+    private analyzeFileStructure;
+    /**
+     * ClamAV病毒扫描（增强版 - 支持本地/远程）
+     */
+    private scanWithClamAV;
+    /**
+     * 本地ClamAV扫描
+     */
+    private scanWithLocalClamAV;
+    /**
+     * 验证文件路径，防止命令注入
+     */
+    private validateFilePath;
+    /**
+     * 远程ClamAV扫描（通过ClamAV守护进程的网络接口）
+     */
+    private scanWithRemoteClamAV;
+    /**
+     * 验证 ClamAV 响应格式
+     */
+    private isValidClamAVResponse;
+    /**
+     * 验证病毒名称格式
+     */
+    private isValidVirusName;
+    /**
+     * 检测嵌套压缩文件
+     */
+    private detectNestedArchive;
+    /**
+     * 检测可执行内容
+     */
+    private detectExecutableContent;
+    /**
+     * 检测Office宏
+     */
+    private detectOfficeMacros;
+    /**
+     * 计算Shannon熵值
+     * 用于检测加密或高度压缩的内容
+     */
+    private calculateEntropy;
+    /**
+     * 检测多态性（文件类型伪装）
+     */
+    private detectPolymorphism;
+    /**
+     * 在buffer中查找pattern的位置
+     */
+    private bufferIndexOf;
+}