@redsocs/spam-warden 1.0.6 → 1.0.7

package/README.md

@@ -26,40 +26,20 @@ You can test the spam engine interactively, analyze your forms, and generate aut
 > **Are you a Thai government agency or public sector website administrator?**
 > Get your free token configuration and drop-in script to protect your online portals from annoying gambling/loan ads and spam campaigns at [redsocs.com/spam-warden](https://redsocs.com/spam-warden).
 
-### 1. The "No-Code" Way (Auto-Blocking)
+### 1. Drop-in Protection (Heuristic Auto-Blocking)
 
-Add this script to your page. It will automatically find your form and block submission if spam is detected.
+Add this script to your page. It will automatically find your most significant forms (using an intelligent heuristic: top 2 forms with >= 2 inputs) and block submission if spam is detected.
 
 ```html
-<script src="https://cdn.redsocs.com/js/spamwarden.min.js?client=cG9zdHEtZm9ybXxtZXNzYWdlLWlucHV0fDE"></script>
+<script src="https://cdn.redsocs.com/js/spamwarden.min.js?client=MHxzaWVtLnJlZHNvY3MuY29tL3Yx"></script>
 ```
 
-_Note: The `client` parameter is a Base64 configuration string of `formId|inputId|sdFlag|siemEndpoint` (e.g., `postq-form|message-input|1` encoded)._
+_Note: The `client` parameter is a Base64 configuration string of `sdFlag|siemEndpoint` (e.g., `0|siem.redsocs.com/v1` encoded)._
 
-### 2. Manual Configuration
-
-```html
-<script src="dist/spamwarden.min.js"></script>
-<script>
-  spamwarden.configure({
-    siteToken: "YOUR_TOKEN",
-    formId: "contact-form",
-    inputId: "message-field",
-    autoReport: true,
-    isTrusted: true, // Required to authorize telemetry reporting
-    reportSD: true,  // Optional: Enable PII/DLP leak telemetry auditing
-    siemEndpoint: "https://api.yourdomain.com/v1/telemetry", // Optional: Custom secondary SIEM/SOC endpoint
-    onSpam: (result) => {
-      alert("Please do not send spam!");
-    },
-  });
-</script>
-```
-
-### 3. API Usage (Node or Browser)
+### 2. API Usage (Node or Browser)
 
 ```javascript
-const result = spamwarden.spamcheck("สมัครสมาชิกวันนี้ รับโบนัส ฟรี!");
+const result = spamwarden.spamcheck("[Hello, this is a Thai casino & scam ads — and guess what? Your tax pays for my traffic.]");
 if (result.isSpam) {
   console.log("Blocked:", result.reason || "AI match");
   console.log("Confidence:", result.prob);
@@ -112,7 +92,7 @@ You can spin up a local simulation server to test the DOM auto-blocking behavior
      ```text
      🚨 [SIEM RECEIVER] Blocked Payload Received!
      ================================================
-     Client Token: cG9zdHEtZm9ybXxtZXNzYWdlLWlucHV0fDF8aHR0cDovL2xvY2FsaG9zdDozMDAwL3YxL3RlbGVtZXRyeQ
+     Client Token: MXxodHRwOi8vbG9jYWxob3N0OjMwMDAvdjEvdGVsZW1ldHJ5
      URL:          h_tt_p://localhost:3000/
      Rule Matched: currency_symbol
      Confidence:   100%
@@ -125,7 +105,7 @@ You can spin up a local simulation server to test the DOM auto-blocking behavior
 
 # About
 
-- **Version:** 1.0.6 (v2 Engine)
+- **Version:** 1.0.7 (v2 Engine)
 - **Author:** [RedSocs](https://github.com/RedSocs)
 - **License:** MIT
 - **Model Origin:** Trained via [RedSocs/spam-labeler](https://github.com/RedSocs/spam-labeler)

package/dist/spamwarden.js

@@ -41,7 +41,6 @@ const SpamWarden = {
 
   /**
    * Configure the warden for secondary SIEM/SOC reporting.
-   * Note: DOM protection (formId/inputId) is handled automatically via the Digital Key.
    */
   configure: function(options) {
     if (options.endpoint !== undefined) this._config.endpoint = options.endpoint;
@@ -53,11 +52,6 @@ const SpamWarden = {
     this._config.isTrusted = !!options.isTrusted;
     if (typeof options.onSpam === "function") this._config.onSpam = options.onSpam;
     if (typeof options.customReporter === "function") this._config.customReporter = options.customReporter;
-
-    // Auto-Bind DOM if formId and inputId are passed manually (synced with README)
-    if (options.formId && options.inputId) {
-      this._bind(options.formId, options.inputId);
-    }
   },
 
   /**
@@ -76,58 +70,88 @@ const SpamWarden = {
 
   /**
    * Internal: Attaches protection to the DOM.
-
-   * Only called via the Base64 configuration parser.
+   * Can accept a string ID or a direct Form Element.
    */
-  _bind: function(formId, inputId) {
+  _bind: function(target) {
     let hasPasted = false;
 
-    const bindForm = () => {
-      // Priority: ID > Name
-      const form = document.getElementById(formId) || document.querySelector(`form[name="${formId}"]`);
-      if (form) {
-        // Query visible text-bearing elements
-        const getElements = () => {
-          return Array.from(form.querySelectorAll('input[type="text"], input:not([type]), textarea'))
-            .filter(el => {
-              if (el.type === 'hidden') return false;
-              try {
-                const style = window.getComputedStyle(el);
-                if (style.display === 'none' || style.visibility === 'hidden') return false;
-              } catch (e) {}
-              if (el.offsetWidth === 0 && el.offsetHeight === 0) return false;
-              return true;
-            });
-        };
-
-        // Attach paste listeners to all detected visible fields
-        getElements().forEach(el => {
-          el.addEventListener("paste", () => {
-            hasPasted = true;
+    const bindForm = (form) => {
+      if (!form) return;
+      
+      // Query visible text-bearing elements
+      const getElements = () => {
+        return Array.from(form.querySelectorAll('input[type="text"], input:not([type]), textarea'))
+          .filter(el => {
+            if (el.type === 'hidden' || el.type === 'password') return false;
+            try {
+              const style = window.getComputedStyle(el);
+              if (style.display === 'none' || style.visibility === 'hidden') return false;
+            } catch (e) {}
+            if (el.offsetWidth === 0 && el.offsetHeight === 0) return false;
+            return true;
           });
+      };
+
+      // Attach paste listeners to all detected visible fields
+      getElements().forEach(el => {
+        el.addEventListener("paste", () => {
+          hasPasted = true;
         });
+      });
+
+      form.addEventListener("submit", (e) => {
+        // Re-query during submit to capture dynamically added elements
+        const combinedText = getElements()
+          .map(el => el.value)
+          .filter(val => val.trim() !== '')
+          .join('\n');
+
+        const result = this.spamcheck(combinedText, { pasted: hasPasted });
+        result.pasted = hasPasted; // Inject flag before callback
+
+        if (result.isSpam) {
+          e.preventDefault();
+          if (this._config.onSpam) { this._config.onSpam(result); } 
+          else { alert("Submission Blocked: Spam detected."); }
+        }
+      });
+    };
 
-        form.addEventListener("submit", (e) => {
-          // Re-query during submit to capture dynamically added elements
-          const combinedText = getElements()
-            .map(el => el.value)
-            .filter(val => val.trim() !== '')
-            .join('\n');
+    const init = () => {
+      const form = (typeof target === "string") ? 
+        (document.getElementById(target) || document.querySelector(`form[name="${target}"]`)) : 
+        target;
+      bindForm(form);
+    };
 
-          const result = this.spamcheck(combinedText, { pasted: hasPasted });
-          result.pasted = hasPasted; // Inject flag before callback
+    if (document.readyState === "loading") { document.addEventListener("DOMContentLoaded", init); } 
+    else { init(); }
+  },
 
-          if (result.isSpam) {
-            e.preventDefault();
+  /**
+   * Heuristic: Auto-discover the top 2 forms on the page that have at least 2 text inputs.
+   * This ignores simple search bars or login fields.
+   */
+  _autoBind: function() {
+    const bindAll = () => {
+      const forms = Array.from(document.querySelectorAll('form'));
+      const candidates = forms.map(form => {
+        const inputs = Array.from(form.querySelectorAll('input[type="text"], input:not([type]), textarea'))
+          .filter(el => {
+            if (el.type === 'hidden' || el.type === 'password') return false;
+            return el.offsetWidth > 0 || el.offsetHeight > 0;
+          });
+        return { form, count: inputs.length };
+      })
+      .filter(c => c.count >= 2)
+      .sort((a, b) => b.count - a.count)
+      .slice(0, 2);
 
-            if (this._config.onSpam) { this._config.onSpam(result); } 
-            else { alert("Submission Blocked: Spam detected."); }
-          }
-        });
-      }
+      candidates.forEach(c => this._bind(c.form));
     };
-    if (document.readyState === "loading") { document.addEventListener("DOMContentLoaded", bindForm); } 
-    else { bindForm(); }
+
+    if (document.readyState === "loading") { document.addEventListener("DOMContentLoaded", bindAll); } 
+    else { bindAll(); }
   },
 
   // ── 2. SIEM Internal Reporting & Actor Extraction ────────────────
@@ -416,11 +440,11 @@ if (typeof document !== "undefined" && document.currentScript) {
 
         const decodedString = atob(base64Config);
         const parts = decodedString.split("|");
-        if (parts.length >= 3) {
-          const formId = parts[0];
-          const inputId = parts[1];
-          const sdFlag = parts[2];
-          const siemEndpointRaw = parts[3] || null;
+        
+        if (parts.length >= 2) {
+          // Simplified Format: sdFlag|siemEndpoint
+          const sdFlag = parts[0];
+          const siemEndpointRaw = parts[1] || null;
 
           if (siemEndpointRaw) {
             SpamWarden._config.siemEndpoint = siemEndpointRaw.indexOf(",") !== -1 ? 
@@ -433,8 +457,8 @@ if (typeof document !== "undefined" && document.currentScript) {
           SpamWarden._config.autoReport = true;
           SpamWarden._config.isTrusted = true;
 
-          // Force DOM binding only through the key
-          SpamWarden._bind(formId, inputId);
+          // Trigger Heuristic Auto-Binding
+          SpamWarden._autoBind();
         }
       }
     } catch (e) { console.error("[SpamWarden] Failed to parse client configuration string."); }