npm - @nice2dev/ui-security - Versions diffs - 1.0.10 - Mend

@nice2dev/ui-security 1.0.10

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (24) hide show

package/CHANGELOG.md +56 -0
package/README.md +26 -0
package/dist/compliance-utilities.d.ts +201 -0
package/dist/components/NiceDeviceTrust.d.ts +18 -0
package/dist/components/NiceFaceRecognition.d.ts +25 -0
package/dist/components/NiceFingerprintScanner.d.ts +34 -0
package/dist/components/NiceIrisScanner.d.ts +22 -0
package/dist/components/NiceMfaSelector.d.ts +24 -0
package/dist/components/NicePassphraseInput.d.ts +22 -0
package/dist/components/NicePatternLock.d.ts +19 -0
package/dist/components/NicePinKeypad.d.ts +20 -0
package/dist/components/NiceSecurityAuditLog.d.ts +16 -0
package/dist/components/NiceSessionManager.d.ts +24 -0
package/dist/components/NiceWebAuthnButton.d.ts +22 -0
package/dist/content-safety.d.ts +212 -0
package/dist/core/biometricEngine.d.ts +111 -0
package/dist/core/i18n.d.ts +11 -0
package/dist/core/types.d.ts +244 -0
package/dist/index.cjs +292 -0
package/dist/index.d.ts +33 -0
package/dist/index.mjs +3997 -0
package/dist/security-automation.d.ts +121 -0
package/dist/security-utilities.d.ts +192 -0
package/package.json +82 -0

package/dist/security-automation.d.ts ADDED Viewed

@@ -0,0 +1,121 @@
+/**
+ * @file Security Automation CI/CD Integration
+ * @description Scripts for SAST, SCA, secret scanning in CI/CD
+ */
+export interface SASTConfig {
+    /** Source directories to scan */
+    sourceDirectories: string[];
+    /** File extensions to include */
+    extensions: string[];
+    /** Exclude patterns */
+    exclude?: string[];
+    /** Severity threshold to fail build */
+    failOnSeverity?: 'critical' | 'high' | 'medium' | 'low';
+    /** Output format */
+    outputFormat?: 'json' | 'sarif' | 'html';
+    /** Output file path */
+    outputPath?: string;
+}
+export interface SASTFinding {
+    id: string;
+    severity: 'critical' | 'high' | 'medium' | 'low' | 'info';
+    title: string;
+    description: string;
+    file: string;
+    line: number;
+    column?: number;
+    code?: string;
+    cweId?: string;
+    recommendation: string;
+}
+/**
+ * Common security patterns to detect
+ */
+export declare const SECURITY_PATTERNS: {
+    hardcodedSecrets: {
+        pattern: RegExp;
+        name: string;
+    }[];
+    sqlInjection: {
+        pattern: RegExp;
+        name: string;
+    }[];
+    xss: {
+        pattern: RegExp;
+        name: string;
+    }[];
+    insecureFunctions: {
+        pattern: RegExp;
+        name: string;
+    }[];
+    infoExposure: {
+        pattern: RegExp;
+        name: string;
+    }[];
+};
+/**
+ * Generate SAST configuration for CI
+ */
+export declare function generateSASTConfig(): string;
+export interface SCAConfig {
+    /** Package manager */
+    packageManager: 'npm' | 'pnpm' | 'yarn';
+    /** Severity threshold */
+    failOnSeverity?: 'critical' | 'high' | 'moderate' | 'low';
+    /** Ignore dev dependencies */
+    ignoreDevDependencies?: boolean;
+    /** Allowed licenses */
+    allowedLicenses?: string[];
+    /** Blocked licenses */
+    blockedLicenses?: string[];
+}
+export interface SCAVulnerability {
+    name: string;
+    version: string;
+    severity: 'critical' | 'high' | 'moderate' | 'low';
+    vulnerableVersions: string;
+    patchedVersions?: string;
+    cve?: string;
+    ghsaId?: string;
+    title: string;
+    url: string;
+}
+/**
+ * Generate SCA configuration for CI
+ */
+export declare function generateSCAConfig(): string;
+export interface SecretPattern {
+    name: string;
+    pattern: RegExp;
+    severity: 'critical' | 'high' | 'medium';
+}
+/**
+ * Common secret patterns
+ */
+export declare const SECRET_PATTERNS: SecretPattern[];
+/**
+ * Generate secret scanning pre-commit hook
+ */
+export declare function generatePreCommitHook(): string;
+/**
+ * Generate GitHub Actions secret scanning workflow
+ */
+export declare function generateSecretScanningConfig(): string;
+export interface SecurityRelease {
+    version: string;
+    date: string;
+    cves: string[];
+    severity: 'critical' | 'high' | 'medium' | 'low';
+    description: string;
+    affectedVersions: string;
+    fixedIn: string;
+    acknowledgments?: string[];
+}
+/**
+ * Generate security advisory template
+ */
+export declare function generateSecurityAdvisory(release: SecurityRelease): string;
+/**
+ * Generate SECURITY.md template
+ */
+export declare function generateSecurityMd(): string;

package/dist/security-utilities.d.ts ADDED Viewed

@@ -0,0 +1,192 @@
+/**
+ * @file Nice2Dev Security Utilities
+ * @description Content Security Policy, XSS prevention, CSRF protection
+ * @packageDocumentation
+ */
+export interface CSPDirectives {
+    defaultSrc?: string[];
+    scriptSrc?: string[];
+    styleSrc?: string[];
+    imgSrc?: string[];
+    fontSrc?: string[];
+    connectSrc?: string[];
+    frameSrc?: string[];
+    objectSrc?: string[];
+    mediaSrc?: string[];
+    workerSrc?: string[];
+    childSrc?: string[];
+    formAction?: string[];
+    frameAncestors?: string[];
+    baseUri?: string[];
+    reportUri?: string;
+    reportTo?: string;
+    upgradeInsecureRequests?: boolean;
+    blockAllMixedContent?: boolean;
+}
+export interface CSPConfig {
+    /** Base directives */
+    directives: CSPDirectives;
+    /** Report-only mode (doesn't block, only reports) */
+    reportOnly?: boolean;
+    /** Nonce for inline scripts/styles */
+    nonce?: string;
+}
+/**
+ * Generate CSP header value from config
+ */
+export declare function generateCSPHeader(config: CSPConfig): string;
+/**
+ * Get recommended CSP for Nice2Dev apps
+ */
+export declare function getRecommendedCSP(options?: {
+    apiDomain?: string;
+    cdnDomain?: string;
+    reportUri?: string;
+}): CSPDirectives;
+/**
+ * Generate random nonce for CSP
+ */
+export declare function generateNonce(): string;
+/**
+ * Escape HTML to prevent XSS
+ */
+export declare function escapeHtml(input: string): string;
+/**
+ * Sanitize user input for safe display
+ */
+export declare function sanitizeInput(input: string, options?: {
+    allowedTags?: string[];
+    allowedAttributes?: string[];
+    maxLength?: number;
+}): string;
+/**
+ * Validate and sanitize URL
+ */
+export declare function sanitizeUrl(url: string): string | null;
+/**
+ * Sanitize SVG content to prevent XSS
+ */
+export declare function sanitizeSvg(svg: string): string;
+/**
+ * Create safe HTML for dangerouslySetInnerHTML
+ */
+export declare function createSafeHtml(html: string, options?: {
+    allowedTags?: string[];
+    allowedAttributes?: string[];
+}): {
+    __html: string;
+};
+export interface CSRFConfig {
+    /** Token header name */
+    headerName?: string;
+    /** Token cookie name */
+    cookieName?: string;
+    /** Token form field name */
+    fieldName?: string;
+}
+/**
+ * Generate CSRF token
+ */
+export declare function generateCSRFToken(): string;
+/**
+ * Get CSRF token from cookie
+ */
+export declare function getCSRFTokenFromCookie(cookieName?: string | undefined): string | null;
+/**
+ * Create fetch wrapper with CSRF token
+ */
+export declare function createCSRFFetch(config?: CSRFConfig): (url: string, options?: RequestInit) => Promise<Response>;
+/**
+ * Hook for CSRF-protected forms
+ */
+export declare function useCSRFToken(config?: CSRFConfig): {
+    token: string | null;
+    inputProps: {
+        type: "hidden";
+        name: string | undefined;
+        value: string;
+    };
+    headerName: string | undefined;
+};
+export interface RateLimitConfig {
+    /** Max requests */
+    maxRequests: number;
+    /** Time window in ms */
+    windowMs: number;
+    /** Key generator (e.g., by endpoint) */
+    keyGenerator?: (request: {
+        url: string;
+        method?: string;
+    }) => string;
+}
+/**
+ * Client-side rate limiter
+ */
+export declare function createRateLimiter(config: RateLimitConfig): {
+    checkLimit: (request: {
+        url: string;
+        method?: string;
+    }) => {
+        allowed: boolean;
+        remaining: number;
+        resetAt: number;
+    };
+    reset: (key?: string) => void;
+};
+/**
+ * Hook for rate limiting API calls
+ */
+export declare function useRateLimiter(config: RateLimitConfig): {
+    checkAndFetch: (url: string, options?: RequestInit) => Promise<Response>;
+    checkLimit: (request: {
+        url: string;
+        method?: string;
+    }) => {
+        allowed: boolean;
+        remaining: number;
+        resetAt: number;
+    };
+    reset: (key?: string) => void;
+};
+export interface FileUploadConfig {
+    /** Allowed MIME types */
+    allowedTypes?: string[];
+    /** Max file size in bytes */
+    maxSize?: number;
+    /** Max total size for multiple files */
+    maxTotalSize?: number;
+    /** Max number of files */
+    maxFiles?: number;
+    /** Scan for viruses (requires backend integration) */
+    virusScan?: boolean;
+    /** Virus scan endpoint */
+    virusScanEndpoint?: string;
+}
+export interface FileValidationResult {
+    valid: boolean;
+    errors: string[];
+    file?: File;
+}
+/**
+ * Validate file for upload
+ */
+export declare function validateFile(file: File, config: FileUploadConfig): FileValidationResult;
+/**
+ * Validate multiple files
+ */
+export declare function validateFiles(files: File[], config: FileUploadConfig): {
+    valid: boolean;
+    errors: string[];
+    validFiles: File[];
+    invalidFiles: {
+        file: File;
+        errors: string[];
+    }[];
+};
+/**
+ * Scan file for viruses (requires backend)
+ */
+export declare function scanFileForViruses(file: File, endpoint: string): Promise<{
+    clean: boolean;
+    threat?: string;
+}>;

package/package.json ADDED Viewed

@@ -0,0 +1,82 @@
+{
+  "name": "@nice2dev/ui-security",
+  "version": "1.0.10",
+  "description": "Nice2Dev Security — Biometric authentication (fingerprint, iris, face), security keypads, PIN entry, pattern lock, liveness detection for React. Frontend-first with optional backend verification.",
+  "type": "module",
+  "main": "dist/index.cjs",
+  "module": "dist/index.mjs",
+  "types": "dist/index.d.ts",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.mjs",
+      "require": "./dist/index.cjs"
+    },
+    "./style.css": "./dist/style.css"
+  },
+  "files": [
+    "dist",
+    "LICENSE",
+    "CHANGELOG.md",
+    "README.md"
+  ],
+  "sideEffects": [
+    "*.css"
+  ],
+  "scripts": {
+    "dev": "vite",
+    "build": "tsc -p tsconfig.build.json && vite build",
+    "typecheck": "tsc --noEmit",
+    "test": "vitest run --config vitest.config.ts",
+    "test:watch": "vitest --config vitest.config.ts",
+    "test:coverage": "vitest run --config vitest.config.ts --coverage",
+    "clean": "rimraf dist",
+    "prepublishOnly": "npm run build"
+  },
+  "keywords": [
+    "react",
+    "security",
+    "biometric",
+    "fingerprint",
+    "iris",
+    "face-recognition",
+    "webauthn",
+    "fido2",
+    "passkey",
+    "pin",
+    "pattern-lock",
+    "keypad",
+    "liveness-detection",
+    "mfa",
+    "authentication",
+    "nicetodev"
+  ],
+  "author": "NiceToDev <contact@nicetodev.com>",
+  "license": "SEE LICENSE IN LICENSE",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/NiceToDev/NiceToDev.UI.git",
+    "directory": "packages/ui-security"
+  },
+  "homepage": "https://github.com/NiceToDev/NiceToDev.UI#readme",
+  "bugs": {
+    "url": "https://github.com/NiceToDev/NiceToDev.UI/issues"
+  },
+  "peerDependencies": {
+    "react": ">=17.0.0",
+    "react-dom": ">=17.0.0"
+  },
+  "devDependencies": {
+    "@testing-library/jest-dom": "^6.9.1",
+    "@testing-library/react": "^14.0.0",
+    "@types/react": "^18.2.0",
+    "@types/react-dom": "^18.2.0",
+    "@vitejs/plugin-react": "^4.2.0",
+    "react": "^18.2.0",
+    "react-dom": "^18.2.0",
+    "typescript": "^5.3.0",
+    "vite": "^6.2.0",
+    "vite-plugin-dts": "^4.5.0",
+    "vitest": "^4.1.0"
+  }
+}