@skillsmith/core 0.1.0

package/dist/src/security/pathValidation.js

@@ -0,0 +1,216 @@
+/**
+ * SMI-898: Path Traversal Protection for Database Paths
+ *
+ * Provides secure path validation for database and file storage paths.
+ * Prevents path traversal attacks by:
+ * - Canonicalizing paths with path.resolve() and path.normalize()
+ * - Validating that resolved paths stay within allowed directories
+ * - Rejecting paths with ".." traversal attempts
+ * - Blocking absolute paths outside allowed directories
+ */
+import { resolve, normalize, dirname, isAbsolute } from 'path';
+import { homedir } from 'os';
+import { createLogger } from '../utils/logger.js';
+const logger = createLogger('PathValidation');
+/**
+ * Default allowed directories for database storage
+ */
+export const DEFAULT_ALLOWED_DIRS = [
+    resolve(homedir(), '.skillsmith'),
+    resolve(homedir(), '.claude'),
+];
+/**
+ * System temp directory for test databases
+ */
+const TEMP_DIRS = ['/tmp', '/var/tmp', '/private/tmp', process.env.TMPDIR].filter(Boolean);
+/**
+ * Validate and sanitize a database path to prevent path traversal attacks.
+ *
+ * Security measures:
+ * 1. Rejects null bytes and control characters
+ * 2. Canonicalizes path with resolve() and normalize()
+ * 3. Checks for ".." traversal attempts before resolution
+ * 4. Validates resolved path is within allowed directories
+ * 5. Handles both absolute and relative paths
+ *
+ * @param inputPath - The raw path to validate
+ * @param options - Validation configuration options
+ * @returns Validation result with resolved path or error
+ *
+ * @example
+ * ```typescript
+ * // Valid paths
+ * validateDbPath('/Users/me/.skillsmith/skills.db')
+ * // => { valid: true, resolvedPath: '/Users/me/.skillsmith/skills.db' }
+ *
+ * validateDbPath(':memory:')
+ * // => { valid: true, resolvedPath: ':memory:' }
+ *
+ * // Invalid paths - traversal attack
+ * validateDbPath('../../../etc/passwd')
+ * // => { valid: false, error: 'Path traversal detected' }
+ *
+ * validateDbPath('/etc/passwd')
+ * // => { valid: false, error: 'Path outside allowed directories' }
+ * ```
+ */
+export function validateDbPath(inputPath, options = {}) {
+    const { allowedDirs = DEFAULT_ALLOWED_DIRS, allowInMemory = true, allowTempDir = true, maxLength = 4096, } = options;
+    // Null/undefined check
+    if (!inputPath || typeof inputPath !== 'string') {
+        return { valid: false, error: 'Path is required' };
+    }
+    // Length check
+    if (inputPath.length > maxLength) {
+        logger.warn('Path exceeds maximum length', { length: inputPath.length, maxLength });
+        return { valid: false, error: `Path exceeds maximum length of ${maxLength}` };
+    }
+    // Allow in-memory database
+    if (inputPath === ':memory:') {
+        if (allowInMemory) {
+            return { valid: true, resolvedPath: ':memory:' };
+        }
+        return { valid: false, error: 'In-memory database not allowed' };
+    }
+    // Check for null bytes (path injection)
+    if (inputPath.includes('\0')) {
+        logger.warn('Null byte detected in path', { path: inputPath.substring(0, 50) });
+        return { valid: false, error: 'Invalid characters in path' };
+    }
+    // Check for control characters
+    // eslint-disable-next-line no-control-regex
+    if (/[\x00-\x1f\x7f]/.test(inputPath)) {
+        logger.warn('Control characters detected in path', { path: inputPath.substring(0, 50) });
+        return { valid: false, error: 'Invalid characters in path' };
+    }
+    // Check for obvious traversal attempts before normalization
+    // This catches encoded traversal and various bypass attempts
+    if (inputPath.includes('..')) {
+        // Check if the path segments contain ".."
+        const segments = inputPath.split(/[/\\]/);
+        const hasTraversal = segments.some((seg) => seg === '..' || seg === '...');
+        if (hasTraversal) {
+            logger.warn('Path traversal attempt detected', { path: inputPath.substring(0, 100) });
+            return { valid: false, error: 'Path traversal detected' };
+        }
+    }
+    // Normalize and resolve the path
+    let resolvedPath;
+    try {
+        // Normalize first to handle various path formats
+        const normalized = normalize(inputPath);
+        // If the path is absolute, use it directly
+        // If relative, resolve from home directory's .skillsmith
+        if (isAbsolute(normalized)) {
+            resolvedPath = resolve(normalized);
+        }
+        else {
+            // Relative paths are resolved from the first allowed directory
+            resolvedPath = resolve(allowedDirs[0] || homedir(), normalized);
+        }
+    }
+    catch (error) {
+        logger.warn('Path resolution failed', {
+            path: inputPath.substring(0, 100),
+            error: error instanceof Error ? error.message : 'Unknown error',
+        });
+        return { valid: false, error: 'Invalid path format' };
+    }
+    // After resolution, verify no traversal occurred by checking resolved path
+    // doesn't contain ".." (should be resolved away, but double-check)
+    if (resolvedPath.includes('..')) {
+        logger.warn('Path traversal after resolution', { path: resolvedPath.substring(0, 100) });
+        return { valid: false, error: 'Path traversal detected' };
+    }
+    // Build list of allowed directories including temp dirs if enabled
+    const effectiveAllowedDirs = [...allowedDirs];
+    if (allowTempDir) {
+        effectiveAllowedDirs.push(...TEMP_DIRS);
+    }
+    // Check if resolved path is within any allowed directory
+    const isAllowed = effectiveAllowedDirs.some((allowedDir) => {
+        const resolvedAllowed = resolve(allowedDir);
+        // Path must be exactly the allowed dir or start with allowed dir + separator
+        return (resolvedPath === resolvedAllowed ||
+            resolvedPath.startsWith(resolvedAllowed + '/') ||
+            resolvedPath.startsWith(resolvedAllowed + '\\'));
+    });
+    if (!isAllowed) {
+        logger.warn('Path outside allowed directories', {
+            path: resolvedPath.substring(0, 100),
+            allowedDirs: effectiveAllowedDirs,
+        });
+        return { valid: false, error: 'Path outside allowed directories' };
+    }
+    // Ensure parent directory path is also valid
+    const parentDir = dirname(resolvedPath);
+    const parentAllowed = effectiveAllowedDirs.some((allowedDir) => {
+        const resolvedAllowed = resolve(allowedDir);
+        return (parentDir === resolvedAllowed ||
+            parentDir.startsWith(resolvedAllowed + '/') ||
+            parentDir.startsWith(resolvedAllowed + '\\'));
+    });
+    if (!parentAllowed) {
+        logger.warn('Parent directory outside allowed directories', {
+            parentDir: parentDir.substring(0, 100),
+        });
+        return { valid: false, error: 'Parent directory outside allowed directories' };
+    }
+    logger.debug('Path validated successfully', {
+        input: inputPath.substring(0, 100),
+        resolved: resolvedPath,
+    });
+    return { valid: true, resolvedPath };
+}
+/**
+ * Validate a database path and throw an error if invalid.
+ * Convenience wrapper for validateDbPath that throws instead of returning error.
+ *
+ * @param inputPath - The raw path to validate
+ * @param options - Validation configuration options
+ * @returns The validated and resolved path
+ * @throws Error if path validation fails
+ *
+ * @example
+ * ```typescript
+ * const safePath = validateDbPathOrThrow(process.env.DB_PATH);
+ * // Either returns valid path or throws
+ * ```
+ */
+export function validateDbPathOrThrow(inputPath, options = {}) {
+    const result = validateDbPath(inputPath, options);
+    if (!result.valid) {
+        throw new Error(`Invalid database path: ${result.error}`);
+    }
+    return result.resolvedPath;
+}
+/**
+ * Check if a path is safe for database usage without modifying it.
+ * Quick check that doesn't resolve the path.
+ *
+ * @param inputPath - The path to check
+ * @returns True if the path appears safe (no obvious traversal)
+ */
+export function isPathSafe(inputPath) {
+    if (!inputPath || typeof inputPath !== 'string') {
+        return false;
+    }
+    // Allow in-memory
+    if (inputPath === ':memory:') {
+        return true;
+    }
+    // Quick checks for obvious attacks
+    if (inputPath.includes('\0'))
+        return false;
+    if (inputPath.includes('..')) {
+        const segments = inputPath.split(/[/\\]/);
+        if (segments.some((seg) => seg === '..' || seg === '...')) {
+            return false;
+        }
+    }
+    // eslint-disable-next-line no-control-regex
+    if (/[\x00-\x1f\x7f]/.test(inputPath))
+        return false;
+    return true;
+}
+//# sourceMappingURL=pathValidation.js.map

package/dist/src/security/pathValidation.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"pathValidation.js","sourceRoot":"","sources":["../../../src/security/pathValidation.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,EAAE,OAAO,EAAE,SAAS,EAAE,OAAO,EAAE,UAAU,EAAE,MAAM,MAAM,CAAA;AAC9D,OAAO,EAAE,OAAO,EAAE,MAAM,IAAI,CAAA;AAC5B,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAA;AAEjD,MAAM,MAAM,GAAG,YAAY,CAAC,gBAAgB,CAAC,CAAA;AA4B7C;;GAEG;AACH,MAAM,CAAC,MAAM,oBAAoB,GAAG;IAClC,OAAO,CAAC,OAAO,EAAE,EAAE,aAAa,CAAC;IACjC,OAAO,CAAC,OAAO,EAAE,EAAE,SAAS,CAAC;CAC9B,CAAA;AAED;;GAEG;AACH,MAAM,SAAS,GAAG,CAAC,MAAM,EAAE,UAAU,EAAE,cAAc,EAAE,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,MAAM,CAC/E,OAAO,CACI,CAAA;AAEb;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA8BG;AACH,MAAM,UAAU,cAAc,CAC5B,SAA6B,EAC7B,UAAiC,EAAE;IAEnC,MAAM,EACJ,WAAW,GAAG,oBAAoB,EAClC,aAAa,GAAG,IAAI,EACpB,YAAY,GAAG,IAAI,EACnB,SAAS,GAAG,IAAI,GACjB,GAAG,OAAO,CAAA;IAEX,uBAAuB;IACvB,IAAI,CAAC,SAAS,IAAI,OAAO,SAAS,KAAK,QAAQ,EAAE,CAAC;QAChD,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,kBAAkB,EAAE,CAAA;IACpD,CAAC;IAED,eAAe;IACf,IAAI,SAAS,CAAC,MAAM,GAAG,SAAS,EAAE,CAAC;QACjC,MAAM,CAAC,IAAI,CAAC,6BAA6B,EAAE,EAAE,MAAM,EAAE,SAAS,CAAC,MAAM,EAAE,SAAS,EAAE,CAAC,CAAA;QACnF,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,kCAAkC,SAAS,EAAE,EAAE,CAAA;IAC/E,CAAC;IAED,2BAA2B;IAC3B,IAAI,SAAS,KAAK,UAAU,EAAE,CAAC;QAC7B,IAAI,aAAa,EAAE,CAAC;YAClB,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,YAAY,EAAE,UAAU,EAAE,CAAA;QAClD,CAAC;QACD,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,gCAAgC,EAAE,CAAA;IAClE,CAAC;IAED,wCAAwC;IACxC,IAAI,SAAS,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QAC7B,MAAM,CAAC,IAAI,CAAC,4BAA4B,EAAE,EAAE,IAAI,EAAE,SAAS,CAAC,SAAS,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,CAAC,CAAA;QAC/E,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,4BAA4B,EAAE,CAAA;IAC9D,CAAC;IAED,+BAA+B;IAC/B,4CAA4C;IAC5C,IAAI,iBAAiB,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,CAAC;QACtC,MAAM,CAAC,IAAI,CAAC,qCAAqC,EAAE,EAAE,IAAI,EAAE,SAAS,CAAC,SAAS,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,CAAC,CAAA;QACxF,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,4BAA4B,EAAE,CAAA;IAC9D,CAAC;IAED,4DAA4D;IAC5D,6DAA6D;IAC7D,IAAI,SAAS,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QAC7B,0CAA0C;QAC1C,MAAM,QAAQ,GAAG,SAAS,CAAC,KAAK,CAAC,OAAO,CAAC,CAAA;QACzC,MAAM,YAAY,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,GAAG,KAAK,IAAI,IAAI,GAAG,KAAK,KAAK,CAAC,CAAA;QAC1E,IAAI,YAAY,EAAE,CAAC;YACjB,MAAM,CAAC,IAAI,CAAC,iCAAiC,EAAE,EAAE,IAAI,EAAE,SAAS,CAAC,SAAS,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,CAAC,CAAA;YACrF,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,yBAAyB,EAAE,CAAA;QAC3D,CAAC;IACH,CAAC;IAED,iCAAiC;IACjC,IAAI,YAAoB,CAAA;IACxB,IAAI,CAAC;QACH,iDAAiD;QACjD,MAAM,UAAU,GAAG,SAAS,CAAC,SAAS,CAAC,CAAA;QAEvC,2CAA2C;QAC3C,yDAAyD;QACzD,IAAI,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;YAC3B,YAAY,GAAG,OAAO,CAAC,UAAU,CAAC,CAAA;QACpC,CAAC;aAAM,CAAC;YACN,+DAA+D;YAC/D,YAAY,GAAG,OAAO,CAAC,WAAW,CAAC,CAAC,CAAC,IAAI,OAAO,EAAE,EAAE,UAAU,CAAC,CAAA;QACjE,CAAC;IACH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,CAAC,IAAI,CAAC,wBAAwB,EAAE;YACpC,IAAI,EAAE,SAAS,CAAC,SAAS,CAAC,CAAC,EAAE,GAAG,CAAC;YACjC,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe;SAChE,CAAC,CAAA;QACF,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,qBAAqB,EAAE,CAAA;IACvD,CAAC;IAED,2EAA2E;IAC3E,mEAAmE;IACnE,IAAI,YAAY,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QAChC,MAAM,CAAC,IAAI,CAAC,iCAAiC,EAAE,EAAE,IAAI,EAAE,YAAY,CAAC,SAAS,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,CAAC,CAAA;QACxF,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,yBAAyB,EAAE,CAAA;IAC3D,CAAC;IAED,mEAAmE;IACnE,MAAM,oBAAoB,GAAG,CAAC,GAAG,WAAW,CAAC,CAAA;IAC7C,IAAI,YAAY,EAAE,CAAC;QACjB,oBAAoB,CAAC,IAAI,CAAC,GAAG,SAAS,CAAC,CAAA;IACzC,CAAC;IAED,yDAAyD;IACzD,MAAM,SAAS,GAAG,oBAAoB,CAAC,IAAI,CAAC,CAAC,UAAU,EAAE,EAAE;QACzD,MAAM,eAAe,GAAG,OAAO,CAAC,UAAU,CAAC,CAAA;QAC3C,6EAA6E;QAC7E,OAAO,CACL,YAAY,KAAK,eAAe;YAChC,YAAY,CAAC,UAAU,CAAC,eAAe,GAAG,GAAG,CAAC;YAC9C,YAAY,CAAC,UAAU,CAAC,eAAe,GAAG,IAAI,CAAC,CAChD,CAAA;IACH,CAAC,CAAC,CAAA;IAEF,IAAI,CAAC,SAAS,EAAE,CAAC;QACf,MAAM,CAAC,IAAI,CAAC,kCAAkC,EAAE;YAC9C,IAAI,EAAE,YAAY,CAAC,SAAS,CAAC,CAAC,EAAE,GAAG,CAAC;YACpC,WAAW,EAAE,oBAAoB;SAClC,CAAC,CAAA;QACF,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,kCAAkC,EAAE,CAAA;IACpE,CAAC;IAED,6CAA6C;IAC7C,MAAM,SAAS,GAAG,OAAO,CAAC,YAAY,CAAC,CAAA;IACvC,MAAM,aAAa,GAAG,oBAAoB,CAAC,IAAI,CAAC,CAAC,UAAU,EAAE,EAAE;QAC7D,MAAM,eAAe,GAAG,OAAO,CAAC,UAAU,CAAC,CAAA;QAC3C,OAAO,CACL,SAAS,KAAK,eAAe;YAC7B,SAAS,CAAC,UAAU,CAAC,eAAe,GAAG,GAAG,CAAC;YAC3C,SAAS,CAAC,UAAU,CAAC,eAAe,GAAG,IAAI,CAAC,CAC7C,CAAA;IACH,CAAC,CAAC,CAAA;IAEF,IAAI,CAAC,aAAa,EAAE,CAAC;QACnB,MAAM,CAAC,IAAI,CAAC,8CAA8C,EAAE;YAC1D,SAAS,EAAE,SAAS,CAAC,SAAS,CAAC,CAAC,EAAE,GAAG,CAAC;SACvC,CAAC,CAAA;QACF,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,8CAA8C,EAAE,CAAA;IAChF,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,6BAA6B,EAAE;QAC1C,KAAK,EAAE,SAAS,CAAC,SAAS,CAAC,CAAC,EAAE,GAAG,CAAC;QAClC,QAAQ,EAAE,YAAY;KACvB,CAAC,CAAA;IAEF,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,YAAY,EAAE,CAAA;AACtC,CAAC;AAED;;;;;;;;;;;;;;GAcG;AACH,MAAM,UAAU,qBAAqB,CACnC,SAA6B,EAC7B,UAAiC,EAAE;IAEnC,MAAM,MAAM,GAAG,cAAc,CAAC,SAAS,EAAE,OAAO,CAAC,CAAA;IACjD,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC;QAClB,MAAM,IAAI,KAAK,CAAC,0BAA0B,MAAM,CAAC,KAAK,EAAE,CAAC,CAAA;IAC3D,CAAC;IACD,OAAO,MAAM,CAAC,YAAa,CAAA;AAC7B,CAAC;AAED;;;;;;GAMG;AACH,MAAM,UAAU,UAAU,CAAC,SAAiB;IAC1C,IAAI,CAAC,SAAS,IAAI,OAAO,SAAS,KAAK,QAAQ,EAAE,CAAC;QAChD,OAAO,KAAK,CAAA;IACd,CAAC;IAED,kBAAkB;IAClB,IAAI,SAAS,KAAK,UAAU,EAAE,CAAC;QAC7B,OAAO,IAAI,CAAA;IACb,CAAC;IAED,mCAAmC;IACnC,IAAI,SAAS,CAAC,QAAQ,CAAC,IAAI,CAAC;QAAE,OAAO,KAAK,CAAA;IAC1C,IAAI,SAAS,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QAC7B,MAAM,QAAQ,GAAG,SAAS,CAAC,KAAK,CAAC,OAAO,CAAC,CAAA;QACzC,IAAI,QAAQ,CAAC,IAAI,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,GAAG,KAAK,IAAI,IAAI,GAAG,KAAK,KAAK,CAAC,EAAE,CAAC;YAC1D,OAAO,KAAK,CAAA;QACd,CAAC;IACH,CAAC;IAED,4CAA4C;IAC5C,IAAI,iBAAiB,CAAC,IAAI,CAAC,SAAS,CAAC;QAAE,OAAO,KAAK,CAAA;IAEnD,OAAO,IAAI,CAAA;AACb,CAAC"}

package/dist/src/security/sanitization.d.ts

@@ -0,0 +1,123 @@
+/**
+ * SMI-732: Input Sanitization Library
+ * SMI-750: Added input length limits to prevent ReDoS attacks
+ *
+ * Provides comprehensive input sanitization functions for:
+ * - HTML content (XSS prevention)
+ * - File names (path traversal prevention)
+ * - File paths (directory traversal prevention)
+ * - URLs (injection prevention)
+ *
+ * All functions are defensive and return safe defaults on invalid input.
+ * All functions accept maxLength parameter to prevent ReDoS attacks.
+ */
+/** Default maximum input length for sanitization functions to prevent ReDoS */
+export declare const DEFAULT_MAX_LENGTH = 100000;
+/**
+ * Sanitize HTML content to prevent XSS attacks
+ *
+ * Removes dangerous tags, attributes, and JavaScript while preserving safe HTML.
+ * Uses a whitelist approach for maximum security.
+ *
+ * @param input - Raw HTML string
+ * @param maxLength - Maximum allowed input length (default: 100000)
+ * @returns Sanitized HTML safe for rendering
+ *
+ * @example
+ * ```typescript
+ * sanitizeHtml('<script>alert("XSS")</script><p>Hello</p>')
+ * // Returns: '<p>Hello</p>'
+ * ```
+ */
+export declare function sanitizeHtml(input: string, maxLength?: number): string;
+/**
+ * Sanitize file name to prevent path traversal and invalid characters
+ *
+ * Removes:
+ * - Path separators (/, \)
+ * - Parent directory references (..)
+ * - Hidden file markers (leading .)
+ * - Special characters that are invalid in file names
+ * - Control characters
+ *
+ * @param name - Raw file name
+ * @param maxLength - Maximum allowed input length (default: 100000)
+ * @returns Safe file name or empty string if invalid
+ *
+ * @example
+ * ```typescript
+ * sanitizeFileName('../../../etc/passwd')
+ * // Returns: 'etcpasswd'
+ *
+ * sanitizeFileName('my-file.txt')
+ * // Returns: 'my-file.txt'
+ * ```
+ */
+export declare function sanitizeFileName(name: string, maxLength?: number): string;
+/**
+ * Sanitize file path to prevent directory traversal attacks
+ *
+ * Ensures the path:
+ * - Does not escape the root directory
+ * - Contains no parent directory references
+ * - Uses forward slashes consistently
+ * - Is normalized
+ *
+ * @param path - Raw file path
+ * @param rootDir - Root directory to constrain path to (optional)
+ * @param maxLength - Maximum allowed input length (default: 100000)
+ * @returns Safe path or empty string if invalid
+ *
+ * @example
+ * ```typescript
+ * sanitizePath('../../../etc/passwd', '/app/data')
+ * // Returns: ''
+ *
+ * sanitizePath('user/files/doc.txt', '/app/data')
+ * // Returns: 'user/files/doc.txt'
+ * ```
+ */
+export declare function sanitizePath(path: string, rootDir?: string, maxLength?: number): string;
+/**
+ * Sanitize URL to prevent injection attacks
+ *
+ * Validates:
+ * - Protocol is http or https
+ * - No javascript:, data:, or vbscript: protocols
+ * - No embedded credentials
+ * - Valid URL structure
+ *
+ * @param url - Raw URL string
+ * @param maxLength - Maximum allowed input length (default: 100000)
+ * @returns Sanitized URL or empty string if invalid
+ *
+ * @example
+ * ```typescript
+ * sanitizeUrl('javascript:alert(1)')
+ * // Returns: ''
+ *
+ * sanitizeUrl('https://example.com/page')
+ * // Returns: 'https://example.com/page'
+ * ```
+ */
+export declare function sanitizeUrl(url: string, maxLength?: number): string;
+/**
+ * Sanitize arbitrary text input for safe storage and display
+ *
+ * Removes:
+ * - Control characters
+ * - Zero-width characters
+ * - Invalid Unicode
+ *
+ * @param input - Raw text input
+ * @param maxLength - Maximum allowed input length (default: 100000)
+ * @returns Sanitized text
+ *
+ * @example
+ * ```typescript
+ * sanitizeText('Hello\x00World\u200B')
+ * // Returns: 'HelloWorld'
+ * ```
+ */
+export declare function sanitizeText(input: string, maxLength?: number): string;
+//# sourceMappingURL=sanitization.d.ts.map

package/dist/src/security/sanitization.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"sanitization.d.ts","sourceRoot":"","sources":["../../../src/security/sanitization.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAMH,+EAA+E;AAC/E,eAAO,MAAM,kBAAkB,SAAS,CAAA;AAExC;;;;;;;;;;;;;;;GAeG;AACH,wBAAgB,YAAY,CAAC,KAAK,EAAE,MAAM,EAAE,SAAS,SAAqB,GAAG,MAAM,CAgDlF;AAED;;;;;;;;;;;;;;;;;;;;;;GAsBG;AACH,wBAAgB,gBAAgB,CAAC,IAAI,EAAE,MAAM,EAAE,SAAS,SAAqB,GAAG,MAAM,CAmFrF;AAED;;;;;;;;;;;;;;;;;;;;;;GAsBG;AACH,wBAAgB,YAAY,CAC1B,IAAI,EAAE,MAAM,EACZ,OAAO,CAAC,EAAE,MAAM,EAChB,SAAS,SAAqB,GAC7B,MAAM,CAkGR;AAED;;;;;;;;;;;;;;;;;;;;;GAqBG;AACH,wBAAgB,WAAW,CAAC,GAAG,EAAE,MAAM,EAAE,SAAS,SAAqB,GAAG,MAAM,CAiD/E;AAED;;;;;;;;;;;;;;;;;GAiBG;AACH,wBAAgB,YAAY,CAAC,KAAK,EAAE,MAAM,EAAE,SAAS,SAAqB,GAAG,MAAM,CA8BlF"}