@salesforce/ui-design-mode 10.14.1 → 10.15.1

package/dist/protocol/messageTypes.d.cts

@@ -29,6 +29,13 @@ export interface SourceLocation {
 }
 export interface EnableInteractionsMessage {
     type: "enable-interactions";
+    /**
+     * Trusted workspace-folder paths supplied by the host. The runtime refuses to
+     * highlight/select an element whose `data-source-file` resolves outside every
+     * root. Omitted/empty ⇒ no path gating (the host's file-read sink remains the
+     * authoritative boundary).
+     */
+    workspaceRoots?: string[];
 }
 export interface DisableInteractionsMessage {
     type: "disable-interactions";

package/dist/protocol/messageTypes.d.ts

@@ -29,6 +29,13 @@ export interface SourceLocation {
 }
 export interface EnableInteractionsMessage {
     type: "enable-interactions";
+    /**
+     * Trusted workspace-folder paths supplied by the host. The runtime refuses to
+     * highlight/select an element whose `data-source-file` resolves outside every
+     * root. Omitted/empty ⇒ no path gating (the host's file-read sink remains the
+     * authoritative boundary).
+     */
+    workspaceRoots?: string[];
 }
 export interface DisableInteractionsMessage {
     type: "disable-interactions";

package/dist/protocol/messageTypes.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"messageTypes.d.ts","sourceRoot":"","sources":["../../src/protocol/messageTypes.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH;;;;;;;;;GASG;AAEH;;;;;;;;GAQG;AACH,MAAM,WAAW,cAAc;IAC9B,UAAU,EAAE,MAAM,CAAC;IACnB,UAAU,EAAE,MAAM,CAAC;IACnB,YAAY,EAAE,MAAM,CAAC;CACrB;AAID,MAAM,WAAW,yBAAyB;IACzC,IAAI,EAAE,qBAAqB,CAAC;CAC5B;AAED,MAAM,WAAW,0BAA0B;IAC1C,IAAI,EAAE,sBAAsB,CAAC;CAC7B;AAED,MAAM,WAAW,kBAAkB;IAClC,IAAI,EAAE,cAAc,CAAC;IACrB,QAAQ,EAAE,MAAM,CAAC;IACjB,KAAK,EAAE,MAAM,CAAC;IACd,cAAc,CAAC,EAAE,cAAc,CAAC;CAChC;AAED,MAAM,WAAW,iBAAiB;IACjC,IAAI,EAAE,aAAa,CAAC;IACpB,IAAI,EAAE,MAAM,CAAC;IACb,cAAc,CAAC,EAAE,cAAc,CAAC;CAChC;AAED;;;;;;;;;;;;GAYG;AACH,MAAM,WAAW,kBAAkB;IAClC,IAAI,EAAE,cAAc,CAAC;IACrB,GAAG,EAAE,MAAM,CAAC;IACZ,UAAU,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,GAAG,SAAS,CAAC,CAAC;IAC/C,cAAc,CAAC,EAAE,cAAc,CAAC;CAChC;AAED,MAAM,MAAM,mBAAmB,GAC5B,yBAAyB,GACzB,0BAA0B,GAC1B,kBAAkB,GAClB,iBAAiB,GACjB,kBAAkB,CAAC;AAItB,MAAM,WAAW,8BAA8B;IAC9C,IAAI,EAAE,0BAA0B,CAAC;IACjC;;;OAGG;IACH,YAAY,CAAC,EAAE,MAAM,EAAE,CAAC;CACxB;AAED,MAAM,WAAW,wBAAwB;IACxC,IAAI,EAAE,oBAAoB,CAAC;IAC3B,SAAS,EAAE,aAAa,GAAG,IAAI,CAAC;CAChC;AAED,MAAM,WAAW,kBAAkB;IAClC,IAAI,EAAE,cAAc,CAAC;IACrB,MAAM,EAAE,UAAU,CAAC;CACnB;AAED,MAAM,MAAM,mBAAmB,GAC5B,8BAA8B,GAC9B,wBAAwB,GACxB,kBAAkB,CAAC;AAItB;;;;;;GAMG;AACH,MAAM,WAAW,mBAAmB;IACnC,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,QAAQ,CAAC,EAAE,MAAM,CAAC;CAClB;AAED;;;;;;GAMG;AACH,MAAM,WAAW,cAAc;IAC9B,GAAG,EAAE,KAAK,CAAC;IACX,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,EAAE,MAAM,CAAC;CACf;AAED;;;;GAIG;AACH,MAAM,MAAM,SAAS,GAAG,cAAc,CAAC;AAEvC,kEAAkE;AAClE,MAAM,WAAW,aAAa;IAC7B,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,MAAM,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,mBAAmB,CAAC,CAAC;IAC7C,WAAW,CAAC,EAAE,cAAc,CAAC;IAC7B,kBAAkB,CAAC,EAAE,OAAO,CAAC;IAC7B,KAAK,CAAC,EAAE,SAAS,CAAC;CAClB;AAED,MAAM,WAAW,UAAU;IAC1B,YAAY,EAAE,MAAM,CAAC;IACrB,OAAO,EAAE,MAAM,CAAC;IAChB,WAAW,CAAC,EAAE,cAAc,CAAC;IAC7B,aAAa,CAAC,EAAE,MAAM,CAAC;CACvB;AAID,eAAO,MAAM,uBAAuB,EAAG,qBAA8B,CAAC;AACtE,eAAO,MAAM,wBAAwB,EAAG,sBAA+B,CAAC;AACxE,eAAO,MAAM,gBAAgB,EAAG,cAAuB,CAAC;AACxD,eAAO,MAAM,eAAe,EAAG,aAAsB,CAAC;AACtD,eAAO,MAAM,gBAAgB,EAAG,cAAuB,CAAC;AACxD,eAAO,MAAM,4BAA4B,EAAG,0BAAmC,CAAC;AAChF,eAAO,MAAM,sBAAsB,EAAG,oBAA6B,CAAC;AACpE,eAAO,MAAM,gBAAgB,EAAG,cAAuB,CAAC"}
+{"version":3,"file":"messageTypes.d.ts","sourceRoot":"","sources":["../../src/protocol/messageTypes.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH;;;;;;;;;GASG;AAEH;;;;;;;;GAQG;AACH,MAAM,WAAW,cAAc;IAC9B,UAAU,EAAE,MAAM,CAAC;IACnB,UAAU,EAAE,MAAM,CAAC;IACnB,YAAY,EAAE,MAAM,CAAC;CACrB;AAID,MAAM,WAAW,yBAAyB;IACzC,IAAI,EAAE,qBAAqB,CAAC;IAC5B;;;;;OAKG;IACH,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;CAC1B;AAED,MAAM,WAAW,0BAA0B;IAC1C,IAAI,EAAE,sBAAsB,CAAC;CAC7B;AAED,MAAM,WAAW,kBAAkB;IAClC,IAAI,EAAE,cAAc,CAAC;IACrB,QAAQ,EAAE,MAAM,CAAC;IACjB,KAAK,EAAE,MAAM,CAAC;IACd,cAAc,CAAC,EAAE,cAAc,CAAC;CAChC;AAED,MAAM,WAAW,iBAAiB;IACjC,IAAI,EAAE,aAAa,CAAC;IACpB,IAAI,EAAE,MAAM,CAAC;IACb,cAAc,CAAC,EAAE,cAAc,CAAC;CAChC;AAED;;;;;;;;;;;;GAYG;AACH,MAAM,WAAW,kBAAkB;IAClC,IAAI,EAAE,cAAc,CAAC;IACrB,GAAG,EAAE,MAAM,CAAC;IACZ,UAAU,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,GAAG,SAAS,CAAC,CAAC;IAC/C,cAAc,CAAC,EAAE,cAAc,CAAC;CAChC;AAED,MAAM,MAAM,mBAAmB,GAC5B,yBAAyB,GACzB,0BAA0B,GAC1B,kBAAkB,GAClB,iBAAiB,GACjB,kBAAkB,CAAC;AAItB,MAAM,WAAW,8BAA8B;IAC9C,IAAI,EAAE,0BAA0B,CAAC;IACjC;;;OAGG;IACH,YAAY,CAAC,EAAE,MAAM,EAAE,CAAC;CACxB;AAED,MAAM,WAAW,wBAAwB;IACxC,IAAI,EAAE,oBAAoB,CAAC;IAC3B,SAAS,EAAE,aAAa,GAAG,IAAI,CAAC;CAChC;AAED,MAAM,WAAW,kBAAkB;IAClC,IAAI,EAAE,cAAc,CAAC;IACrB,MAAM,EAAE,UAAU,CAAC;CACnB;AAED,MAAM,MAAM,mBAAmB,GAC5B,8BAA8B,GAC9B,wBAAwB,GACxB,kBAAkB,CAAC;AAItB;;;;;;GAMG;AACH,MAAM,WAAW,mBAAmB;IACnC,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,QAAQ,CAAC,EAAE,MAAM,CAAC;CAClB;AAED;;;;;;GAMG;AACH,MAAM,WAAW,cAAc;IAC9B,GAAG,EAAE,KAAK,CAAC;IACX,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,EAAE,MAAM,CAAC;CACf;AAED;;;;GAIG;AACH,MAAM,MAAM,SAAS,GAAG,cAAc,CAAC;AAEvC,kEAAkE;AAClE,MAAM,WAAW,aAAa;IAC7B,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,MAAM,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,mBAAmB,CAAC,CAAC;IAC7C,WAAW,CAAC,EAAE,cAAc,CAAC;IAC7B,kBAAkB,CAAC,EAAE,OAAO,CAAC;IAC7B,KAAK,CAAC,EAAE,SAAS,CAAC;CAClB;AAED,MAAM,WAAW,UAAU;IAC1B,YAAY,EAAE,MAAM,CAAC;IACrB,OAAO,EAAE,MAAM,CAAC;IAChB,WAAW,CAAC,EAAE,cAAc,CAAC;IAC7B,aAAa,CAAC,EAAE,MAAM,CAAC;CACvB;AAID,eAAO,MAAM,uBAAuB,EAAG,qBAA8B,CAAC;AACtE,eAAO,MAAM,wBAAwB,EAAG,sBAA+B,CAAC;AACxE,eAAO,MAAM,gBAAgB,EAAG,cAAuB,CAAC;AACxD,eAAO,MAAM,eAAe,EAAG,aAAsB,CAAC;AACtD,eAAO,MAAM,gBAAgB,EAAG,cAAuB,CAAC;AACxD,eAAO,MAAM,4BAA4B,EAAG,0BAAmC,CAAC;AAChF,eAAO,MAAM,sBAAsB,EAAG,oBAA6B,CAAC;AACpE,eAAO,MAAM,gBAAgB,EAAG,cAAuB,CAAC"}

package/dist/runtime/design-mode-interactions.js

@@ -370,12 +370,58 @@
     }
   };
 
+  // src/security/pathContainment.ts
+  var normalizeSeparators = (p) => p.replace(/\\/g, "/");
+  var stripTrailingSlash = (p) => {
+    const s = p.replace(/\/+$/, "");
+    return s === "" && p.startsWith("/") ? "/" : s;
+  };
+  var normalizeDotSegments = (p) => {
+    const normalized = normalizeSeparators(p);
+    const isAbsolute = normalized.startsWith("/");
+    const out = [];
+    for (const seg of normalized.split("/")) {
+      if (seg === "" || seg === ".") continue;
+      if (seg === "..") {
+        if (out.length > 0 && out[out.length - 1] !== "..") out.pop();
+        else if (!isAbsolute) out.push("..");
+      } else {
+        out.push(seg);
+      }
+    }
+    return (isAbsolute ? "/" : "") + out.join("/");
+  };
+  var isPathContained = (candidate, roots) => {
+    if (typeof candidate !== "string" || candidate.trim() === "") return false;
+    if (!Array.isArray(roots) || roots.length === 0) return false;
+    const normalizedCandidate = stripTrailingSlash(normalizeDotSegments(candidate));
+    if (normalizedCandidate === "") return false;
+    return roots.some((root) => {
+      if (typeof root !== "string" || root.trim() === "") return false;
+      const normalizedRoot = stripTrailingSlash(normalizeDotSegments(root));
+      if (normalizedRoot === "") return false;
+      if (normalizedCandidate === normalizedRoot) return true;
+      const prefix = normalizedRoot === "/" ? "/" : `${normalizedRoot}/`;
+      return normalizedCandidate.startsWith(prefix);
+    });
+  };
+
   // src/runtime/interactions/componentMatcher.ts
   var ComponentMatcher = class {
     constructor(options = {}) {
       __publicField(this, "allowlist");
+      // Trusted workspace-folder paths supplied by the host on enable. When set, an
+      // element whose `data-source-file` resolves outside every root is not
+      // highlightable/selectable — a defense against an attacker-injected
+      // `data-source-file` pointing outside the workspace. Empty ⇒ no path gating
+      // (the extension's file-read sink remains the authoritative boundary).
+      __publicField(this, "workspaceRoots", []);
       this.allowlist = options.allowlist ?? [];
     }
+    /** Set the trusted workspace roots used to gate highlight/select by source path. */
+    setWorkspaceRoots(roots) {
+      this.workspaceRoots = roots.slice();
+    }
     /**
      * Check whether an element carries a *valid, complete* source location.
      * A bare `data-source-file` attribute is not enough — it must parse into a
@@ -415,11 +461,28 @@
       if (!this.hasSourceMetadata(element)) {
         return false;
       }
+      if (!this.isSourceWithinWorkspace(element)) {
+        return false;
+      }
       if (this.allowlist.length > 0) {
         return this.matchesList(element, this.allowlist);
       }
       return true;
     }
+    /**
+     * Gate on the element's `data-source-file` when workspace roots are known: an
+     * **absolute** path outside every root is refused (the attacker-injected case).
+     * A relative path is allowed through — it can't escape, and the extension sink
+     * resolves it against a real root. No roots known ⇒ allow (defer to the sink).
+     */
+    isSourceWithinWorkspace(element) {
+      if (this.workspaceRoots.length === 0) return true;
+      const sourceFile = getSourceFromDataAttributes(element)?.sourceFile;
+      if (!sourceFile) return true;
+      const isAbsolute = sourceFile.startsWith("/") || /^[a-zA-Z]:[\\/]/.test(sourceFile);
+      if (!isAbsolute) return true;
+      return isPathContained(sourceFile, this.workspaceRoots);
+    }
     /**
      * Find the nearest highlightable element by walking up the DOM tree
      * @param target - The target element
@@ -883,9 +946,12 @@
       this.communicationManager.notifyInitializationComplete();
     }
     /**
-     * Enable the design mode interactions
+     * Enable the design mode interactions. The host passes the trusted workspace
+     * roots so elements whose `data-source-file` is outside the workspace are not
+     * highlightable/selectable.
      */
-    enable() {
+    enable(workspaceRoots = []) {
+      this.componentMatcher.setWorkspaceRoots(workspaceRoots);
       this.isActive = true;
       console.log("Design Mode Interactions enabled");
     }
@@ -974,8 +1040,8 @@
     }
   }
   if (typeof window !== "undefined") {
-    window.enableInteractions = function() {
-      interactions.enable();
+    window.enableInteractions = function(workspaceRoots = []) {
+      interactions.enable(workspaceRoots);
     };
     window.disableInteractions = function() {
       interactions.disable();
@@ -1008,7 +1074,8 @@
         }
       }
       if (typed && typed.type === MSG_ENABLE_INTERACTIONS) {
-        window.enableInteractions?.();
+        const roots = Array.isArray(typed.workspaceRoots) ? typed.workspaceRoots.filter((r) => typeof r === "string") : [];
+        window.enableInteractions?.(roots);
       }
       if (typed && typed.type === MSG_DISABLE_INTERACTIONS) {
         window.disableInteractions?.();

package/dist/runtime/interactions/componentMatcher.d.cts

@@ -8,7 +8,10 @@ export interface ComponentMatcherOptions {
 }
 export declare class ComponentMatcher {
     private allowlist;
+    private workspaceRoots;
     constructor(options?: ComponentMatcherOptions);
+    /** Set the trusted workspace roots used to gate highlight/select by source path. */
+    setWorkspaceRoots(roots: readonly string[]): void;
     /**
      * Check whether an element carries a *valid, complete* source location.
      * A bare `data-source-file` attribute is not enough — it must parse into a
@@ -33,6 +36,13 @@ export declare class ComponentMatcher {
      * @returns True if the element should be highlighted
      */
     isHighlightableElement(element: HTMLElement | null | undefined): boolean;
+    /**
+     * Gate on the element's `data-source-file` when workspace roots are known: an
+     * **absolute** path outside every root is refused (the attacker-injected case).
+     * A relative path is allowed through — it can't escape, and the extension sink
+     * resolves it against a real root. No roots known ⇒ allow (defer to the sink).
+     */
+    private isSourceWithinWorkspace;
     /**
      * Find the nearest highlightable element by walking up the DOM tree
      * @param target - The target element

package/dist/runtime/interactions/componentMatcher.d.ts

@@ -8,7 +8,10 @@ export interface ComponentMatcherOptions {
 }
 export declare class ComponentMatcher {
     private allowlist;
+    private workspaceRoots;
     constructor(options?: ComponentMatcherOptions);
+    /** Set the trusted workspace roots used to gate highlight/select by source path. */
+    setWorkspaceRoots(roots: readonly string[]): void;
     /**
      * Check whether an element carries a *valid, complete* source location.
      * A bare `data-source-file` attribute is not enough — it must parse into a
@@ -33,6 +36,13 @@ export declare class ComponentMatcher {
      * @returns True if the element should be highlighted
      */
     isHighlightableElement(element: HTMLElement | null | undefined): boolean;
+    /**
+     * Gate on the element's `data-source-file` when workspace roots are known: an
+     * **absolute** path outside every root is refused (the attacker-injected case).
+     * A relative path is allowed through — it can't escape, and the extension sink
+     * resolves it against a real root. No roots known ⇒ allow (defer to the sink).
+     */
+    private isSourceWithinWorkspace;
     /**
      * Find the nearest highlightable element by walking up the DOM tree
      * @param target - The target element

package/dist/runtime/interactions/componentMatcher.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"componentMatcher.d.ts","sourceRoot":"","sources":["../../../src/runtime/interactions/componentMatcher.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAUH,MAAM,WAAW,uBAAuB;IAEvC,SAAS,CAAC,EAAE,MAAM,EAAE,CAAC;CACrB;AAED,qBAAa,gBAAgB;IAC5B,OAAO,CAAC,SAAS,CAAW;gBAEhB,OAAO,GAAE,uBAA4B;IAIjD;;;;;;;;OAQG;IACH,iBAAiB,CAAC,OAAO,EAAE,WAAW,GAAG,IAAI,GAAG,SAAS,GAAG,OAAO;IAOnE,OAAO,CAAC,WAAW;IAInB;;;;;OAKG;IACH,oBAAoB,CAAC,KAAK,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,OAAO;IAM7D;;;;OAIG;IACH,sBAAsB,CAAC,OAAO,EAAE,WAAW,GAAG,IAAI,GAAG,SAAS,GAAG,OAAO;IAgBxE;;;;OAIG;IACH,wBAAwB,CAAC,MAAM,EAAE,WAAW,GAAG,IAAI,GAAG,SAAS,GAAG,WAAW,GAAG,IAAI;CA+BpF"}
+{"version":3,"file":"componentMatcher.d.ts","sourceRoot":"","sources":["../../../src/runtime/interactions/componentMatcher.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAWH,MAAM,WAAW,uBAAuB;IAEvC,SAAS,CAAC,EAAE,MAAM,EAAE,CAAC;CACrB;AAED,qBAAa,gBAAgB;IAC5B,OAAO,CAAC,SAAS,CAAW;IAM5B,OAAO,CAAC,cAAc,CAAgB;gBAE1B,OAAO,GAAE,uBAA4B;IAIjD,oFAAoF;IACpF,iBAAiB,CAAC,KAAK,EAAE,SAAS,MAAM,EAAE,GAAG,IAAI;IAIjD;;;;;;;;OAQG;IACH,iBAAiB,CAAC,OAAO,EAAE,WAAW,GAAG,IAAI,GAAG,SAAS,GAAG,OAAO;IAOnE,OAAO,CAAC,WAAW;IAInB;;;;;OAKG;IACH,oBAAoB,CAAC,KAAK,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,OAAO;IAM7D;;;;OAIG;IACH,sBAAsB,CAAC,OAAO,EAAE,WAAW,GAAG,IAAI,GAAG,SAAS,GAAG,OAAO;IAoBxE;;;;;OAKG;IACH,OAAO,CAAC,uBAAuB;IAS/B;;;;OAIG;IACH,wBAAwB,CAAC,MAAM,EAAE,WAAW,GAAG,IAAI,GAAG,SAAS,GAAG,WAAW,GAAG,IAAI;CA+BpF"}

package/dist/runtime/interactions/interactionsController.d.cts

@@ -13,9 +13,11 @@ export declare class InteractionsController {
      */
     initialize(): void;
     /**
-     * Enable the design mode interactions
+     * Enable the design mode interactions. The host passes the trusted workspace
+     * roots so elements whose `data-source-file` is outside the workspace are not
+     * highlightable/selectable.
      */
-    enable(): void;
+    enable(workspaceRoots?: readonly string[]): void;
     /**
      * Disable the design mode interactions
      */

package/dist/runtime/interactions/interactionsController.d.ts

@@ -13,9 +13,11 @@ export declare class InteractionsController {
      */
     initialize(): void;
     /**
-     * Enable the design mode interactions
+     * Enable the design mode interactions. The host passes the trusted workspace
+     * roots so elements whose `data-source-file` is outside the workspace are not
+     * highlightable/selectable.
      */
-    enable(): void;
+    enable(workspaceRoots?: readonly string[]): void;
     /**
      * Disable the design mode interactions
      */

package/dist/runtime/interactions/interactionsController.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"interactionsController.d.ts","sourceRoot":"","sources":["../../../src/runtime/interactions/interactionsController.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAYH,OAAO,EAGN,KAAK,cAAc,EACnB,MAAM,qBAAqB,CAAC;AAuC7B,qBAAa,sBAAsB;IAClC,OAAO,CAAC,OAAO,CAAU;IACzB,OAAO,CAAC,QAAQ,CAAU;IAE1B,OAAO,CAAC,gBAAgB,CAAmB;IAC3C,OAAO,CAAC,cAAc,CAAiB;IACvC,OAAO,CAAC,oBAAoB,CAAuB;IACnD,OAAO,CAAC,eAAe,CAAkB;IACzC,OAAO,CAAC,aAAa,CAAgB;gBAEzB,OAAO,UAAO;IA0D1B;;OAEG;IACH,UAAU,IAAI,IAAI;IAoBlB;;OAEG;IACH,MAAM,IAAI,IAAI;IAKd;;OAEG;IACH,OAAO,IAAI,IAAI;IAMf,OAAO,CAAC,cAAc;IAWtB;;;;OAIG;IACH,gBAAgB,CAAC,QAAQ,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,cAAc,CAAC,EAAE,cAAc,GAAG,IAAI;IAOxF,eAAe,CAAC,IAAI,EAAE,MAAM,EAAE,cAAc,CAAC,EAAE,cAAc,GAAG,IAAI;IAOpE;;;;;;;;;;;;;;;OAeG;IACH,gBAAgB,CACf,GAAG,EAAE,MAAM,EACX,UAAU,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,GAAG,SAAS,CAAC,EAC9C,cAAc,CAAC,EAAE,cAAc,GAC7B,IAAI;IAWP;;OAEG;IACH,OAAO,IAAI,IAAI;CASf"}
+{"version":3,"file":"interactionsController.d.ts","sourceRoot":"","sources":["../../../src/runtime/interactions/interactionsController.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAYH,OAAO,EAGN,KAAK,cAAc,EACnB,MAAM,qBAAqB,CAAC;AAuC7B,qBAAa,sBAAsB;IAClC,OAAO,CAAC,OAAO,CAAU;IACzB,OAAO,CAAC,QAAQ,CAAU;IAE1B,OAAO,CAAC,gBAAgB,CAAmB;IAC3C,OAAO,CAAC,cAAc,CAAiB;IACvC,OAAO,CAAC,oBAAoB,CAAuB;IACnD,OAAO,CAAC,eAAe,CAAkB;IACzC,OAAO,CAAC,aAAa,CAAgB;gBAEzB,OAAO,UAAO;IA0D1B;;OAEG;IACH,UAAU,IAAI,IAAI;IAoBlB;;;;OAIG;IACH,MAAM,CAAC,cAAc,GAAE,SAAS,MAAM,EAAO,GAAG,IAAI;IAMpD;;OAEG;IACH,OAAO,IAAI,IAAI;IAMf,OAAO,CAAC,cAAc;IAWtB;;;;OAIG;IACH,gBAAgB,CAAC,QAAQ,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,cAAc,CAAC,EAAE,cAAc,GAAG,IAAI;IAOxF,eAAe,CAAC,IAAI,EAAE,MAAM,EAAE,cAAc,CAAC,EAAE,cAAc,GAAG,IAAI;IAOpE;;;;;;;;;;;;;;;OAeG;IACH,gBAAgB,CACf,GAAG,EAAE,MAAM,EACX,UAAU,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,GAAG,SAAS,CAAC,EAC9C,cAAc,CAAC,EAAE,cAAc,GAC7B,IAAI;IAWP;;OAEG;IACH,OAAO,IAAI,IAAI;CASf"}

package/dist/security/index.cjs

@@ -0,0 +1,4 @@
+"use strict";
+Object.defineProperty(exports, Symbol.toStringTag, { value: "Module" });
+const pathContainment = require("./pathContainment.cjs");
+exports.isPathContained = pathContainment.isPathContained;

package/dist/security/index.d.cts

@@ -0,0 +1,17 @@
+/**
+ * Copyright (c) 2026, Salesforce, Inc.,
+ * All rights reserved.
+ * For full license text, see the LICENSE.txt file
+ */
+/**
+ * `/security` entry: environment-neutral, pure helpers a design-mode surface
+ * uses to guard data that originates from the **untrusted preview iframe**.
+ * Shared so the logic is written and tested once and consumed by every surface —
+ * the iframe runtime (highlight/select gate), the VS Code extension (file-read
+ * sink), and Codey Studio. No `vscode`, no `node:fs`/`node:path`, no DOM.
+ *
+ * - `isPathContained`: string-containment half of the source-file path guard.
+ *   The extension additionally runs an `fs.stat`/symlink re-check at its sink.
+ */
+export { isPathContained } from './pathContainment.cjs';
+//# sourceMappingURL=index.d.ts.map

package/dist/security/index.d.ts

@@ -0,0 +1,17 @@
+/**
+ * Copyright (c) 2026, Salesforce, Inc.,
+ * All rights reserved.
+ * For full license text, see the LICENSE.txt file
+ */
+/**
+ * `/security` entry: environment-neutral, pure helpers a design-mode surface
+ * uses to guard data that originates from the **untrusted preview iframe**.
+ * Shared so the logic is written and tested once and consumed by every surface —
+ * the iframe runtime (highlight/select gate), the VS Code extension (file-read
+ * sink), and Codey Studio. No `vscode`, no `node:fs`/`node:path`, no DOM.
+ *
+ * - `isPathContained`: string-containment half of the source-file path guard.
+ *   The extension additionally runs an `fs.stat`/symlink re-check at its sink.
+ */
+export { isPathContained } from './pathContainment.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/security/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/security/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH;;;;;;;;;GASG;AAEH,OAAO,EAAE,eAAe,EAAE,MAAM,mBAAmB,CAAC"}

package/dist/security/index.js

@@ -0,0 +1,4 @@
+import { isPathContained } from "./pathContainment.js";
+export {
+  isPathContained
+};

package/dist/security/pathContainment.cjs

@@ -0,0 +1,37 @@
+"use strict";
+Object.defineProperty(exports, Symbol.toStringTag, { value: "Module" });
+const normalizeSeparators = (p) => p.replace(/\\/g, "/");
+const stripTrailingSlash = (p) => {
+  const s = p.replace(/\/+$/, "");
+  return s === "" && p.startsWith("/") ? "/" : s;
+};
+const normalizeDotSegments = (p) => {
+  const normalized = normalizeSeparators(p);
+  const isAbsolute = normalized.startsWith("/");
+  const out = [];
+  for (const seg of normalized.split("/")) {
+    if (seg === "" || seg === ".") continue;
+    if (seg === "..") {
+      if (out.length > 0 && out[out.length - 1] !== "..") out.pop();
+      else if (!isAbsolute) out.push("..");
+    } else {
+      out.push(seg);
+    }
+  }
+  return (isAbsolute ? "/" : "") + out.join("/");
+};
+const isPathContained = (candidate, roots) => {
+  if (typeof candidate !== "string" || candidate.trim() === "") return false;
+  if (!Array.isArray(roots) || roots.length === 0) return false;
+  const normalizedCandidate = stripTrailingSlash(normalizeDotSegments(candidate));
+  if (normalizedCandidate === "") return false;
+  return roots.some((root) => {
+    if (typeof root !== "string" || root.trim() === "") return false;
+    const normalizedRoot = stripTrailingSlash(normalizeDotSegments(root));
+    if (normalizedRoot === "") return false;
+    if (normalizedCandidate === normalizedRoot) return true;
+    const prefix = normalizedRoot === "/" ? "/" : `${normalizedRoot}/`;
+    return normalizedCandidate.startsWith(prefix);
+  });
+};
+exports.isPathContained = isPathContained;

package/dist/security/pathContainment.d.cts

@@ -0,0 +1,16 @@
+/**
+ * Copyright (c) 2026, Salesforce, Inc.,
+ * All rights reserved.
+ * For full license text, see the LICENSE.txt file
+ */
+/**
+ * True if the candidate is one of the roots or strictly inside one. Both sides
+ * are normalized (separators + `.`/`..` collapsing); matching is exact-segment so
+ * `/repo-secrets` is NOT inside `/repo`. Fail-closed: an empty candidate or empty
+ * `roots` yields `false`.
+ *
+ * String containment only — symlinks that escape a root are NOT defeated here;
+ * a caller with filesystem access (the extension sink) must re-check before reading.
+ */
+export declare const isPathContained: (candidate: string, roots: readonly string[]) => boolean;
+//# sourceMappingURL=pathContainment.d.ts.map

package/dist/security/pathContainment.d.ts

@@ -0,0 +1,16 @@
+/**
+ * Copyright (c) 2026, Salesforce, Inc.,
+ * All rights reserved.
+ * For full license text, see the LICENSE.txt file
+ */
+/**
+ * True if the candidate is one of the roots or strictly inside one. Both sides
+ * are normalized (separators + `.`/`..` collapsing); matching is exact-segment so
+ * `/repo-secrets` is NOT inside `/repo`. Fail-closed: an empty candidate or empty
+ * `roots` yields `false`.
+ *
+ * String containment only — symlinks that escape a root are NOT defeated here;
+ * a caller with filesystem access (the extension sink) must re-check before reading.
+ */
+export declare const isPathContained: (candidate: string, roots: readonly string[]) => boolean;
+//# sourceMappingURL=pathContainment.d.ts.map

package/dist/security/pathContainment.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"pathContainment.d.ts","sourceRoot":"","sources":["../../src/security/pathContainment.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AA6CH;;;;;;;;GAQG;AACH,eAAO,MAAM,eAAe,GAAI,WAAW,MAAM,EAAE,OAAO,SAAS,MAAM,EAAE,KAAG,OAe7E,CAAC"}

package/dist/security/pathContainment.js

@@ -0,0 +1,37 @@
+const normalizeSeparators = (p) => p.replace(/\\/g, "/");
+const stripTrailingSlash = (p) => {
+  const s = p.replace(/\/+$/, "");
+  return s === "" && p.startsWith("/") ? "/" : s;
+};
+const normalizeDotSegments = (p) => {
+  const normalized = normalizeSeparators(p);
+  const isAbsolute = normalized.startsWith("/");
+  const out = [];
+  for (const seg of normalized.split("/")) {
+    if (seg === "" || seg === ".") continue;
+    if (seg === "..") {
+      if (out.length > 0 && out[out.length - 1] !== "..") out.pop();
+      else if (!isAbsolute) out.push("..");
+    } else {
+      out.push(seg);
+    }
+  }
+  return (isAbsolute ? "/" : "") + out.join("/");
+};
+const isPathContained = (candidate, roots) => {
+  if (typeof candidate !== "string" || candidate.trim() === "") return false;
+  if (!Array.isArray(roots) || roots.length === 0) return false;
+  const normalizedCandidate = stripTrailingSlash(normalizeDotSegments(candidate));
+  if (normalizedCandidate === "") return false;
+  return roots.some((root) => {
+    if (typeof root !== "string" || root.trim() === "") return false;
+    const normalizedRoot = stripTrailingSlash(normalizeDotSegments(root));
+    if (normalizedRoot === "") return false;
+    if (normalizedCandidate === normalizedRoot) return true;
+    const prefix = normalizedRoot === "/" ? "/" : `${normalizedRoot}/`;
+    return normalizedCandidate.startsWith(prefix);
+  });
+};
+export {
+  isPathContained
+};

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@salesforce/ui-design-mode",
   "description": "Hybrid editor (design-mode) authoring UI, iframe runtime, source-locator, and protocol for Salesforce UI Bundles",
-  "version": "10.14.1",
+  "version": "10.15.1",
   "license": "SEE LICENSE IN LICENSE.txt",
   "type": "module",
   "exports": {
@@ -45,6 +45,16 @@
         "default": "./dist/authoring/host/index.cjs"
       }
     },
+    "./security": {
+      "import": {
+        "types": "./dist/security/index.d.ts",
+        "default": "./dist/security/index.js"
+      },
+      "require": {
+        "types": "./dist/security/index.d.cts",
+        "default": "./dist/security/index.cjs"
+      }
+    },
     "./authoring/react": {
       "types": "./dist/authoring/react/index.d.ts",
       "import": "./dist/authoring/react/index.js"