npm - @wraps.dev/cli - Versions diffs - 2.17.15 → 2.17.17 - Mend

@wraps.dev/cli 2.17.15 → 2.17.17

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (9) hide show

package/dist/cli.js +39 -12
package/dist/cli.js.map +1 -1
package/dist/console/assets/{index-CNn3fWLq.js → index-41T2hONy.js} +45 -45
package/dist/console/index.html +1 -1
package/dist/lambda/event-processor/.bundled +1 -1
package/dist/lambda/inbound-processor/.bundled +1 -1
package/dist/lambda/inbound-processor/index.js +37 -37
package/dist/lambda/sms-event-processor/.bundled +1 -1
package/package.json +18 -6

package/dist/cli.js CHANGED Viewed

@@ -83,6 +83,13 @@ __export(s3_state_exports, {
 import { existsSync, statSync } from "fs";
 import { readdir, writeFile } from "fs/promises";
 import { join } from "path";
+function has404StatusCode(error) {
+  if (!(error instanceof Error)) {
+    return false;
+  }
+  const metadataError = error;
+  return metadataError.$metadata?.httpStatusCode === 404;
+}
 function getStateBucketName(accountId, region) {
   return `wraps-state-${accountId}-${region}`;
 }
@@ -97,7 +104,7 @@ async function stateBucketExists(accountId, region) {
     await client.send(new HeadBucketCommand({ Bucket: bucketName }));
     return true;
   } catch (error) {
-    if (error instanceof Error && (error.name === "NotFound" || error.name === "NoSuchBucket" || error.$metadata?.httpStatusCode === 404)) {
+    if (error instanceof Error && (error.name === "NotFound" || error.name === "NoSuchBucket" || has404StatusCode(error))) {
       return false;
     }
     throw error;
@@ -119,7 +126,7 @@ async function ensureStateBucket(accountId, region) {
     await client.send(new HeadBucketCommand({ Bucket: bucketName }));
     return bucketName;
   } catch (error) {
-    const isNotFound = error instanceof Error && (error.name === "NotFound" || error.name === "NoSuchBucket" || error.$metadata?.httpStatusCode === 404);
+    const isNotFound = error instanceof Error && (error.name === "NotFound" || error.name === "NoSuchBucket" || has404StatusCode(error));
     if (!isNotFound) {
       throw error;
     }
@@ -239,7 +246,7 @@ async function downloadMetadata(bucketName, accountId, region) {
     }
     return JSON.parse(body);
   } catch (error) {
-    if (error instanceof Error && (error.name === "NoSuchKey" || error.$metadata?.httpStatusCode === 404)) {
+    if (error instanceof Error && (error.name === "NoSuchKey" || has404StatusCode(error))) {
       return null;
     }
     throw error;
@@ -1291,7 +1298,8 @@ function classifyDNSError(error) {
 }
 function isAWSNotFoundError(error) {
   if (!(error instanceof Error)) return false;
-  return error.name === "NotFoundException" || error.name === "NoSuchEntityException" || error.name === "NoSuchEntity" || error.name === "ResourceNotFoundException" || error.$metadata?.httpStatusCode === 404;
+  const awsError = error;
+  return error.name === "NotFoundException" || error.name === "NoSuchEntityException" || error.name === "NoSuchEntity" || error.name === "ResourceNotFoundException" || awsError.$metadata?.httpStatusCode === 404;
 }
 function isPulumiError(error) {
   if (!(error instanceof Error)) {
@@ -4416,9 +4424,13 @@ function createConnectionMetadata(accountId, region, provider, emailConfig, pres
     }
   };
 }
+function setConfigValue(config2, key, value) {
+  config2[key] = value;
+}
 function applyConfigUpdates(existingConfig, updates) {
   const result = { ...existingConfig };
-  for (const [key, value] of Object.entries(updates)) {
+  for (const key of Object.keys(updates)) {
+    const value = updates[key];
     if (value === void 0) {
       continue;
     }
@@ -4472,7 +4484,7 @@ function applyConfigUpdates(existingConfig, updates) {
         ...value
       };
     } else {
-      result[key] = value;
+      setConfigValue(result, key, value);
     }
   }
   return result;
@@ -17077,7 +17089,8 @@ async function userExists(userName) {
     await iam10.send(new GetUserCommand({ UserName: userName }));
     return true;
   } catch (error) {
-    if (error instanceof Error && (error.name === "NoSuchEntityException" || error.Code === "NoSuchEntity")) {
+    const iamError = error;
+    if (error instanceof Error && (iamError.name === "NoSuchEntityException" || iamError.Code === "NoSuchEntity")) {
       return false;
     }
     return false;
@@ -28143,6 +28156,7 @@ import pc36 from "picocolors";
 init_events();
 init_aws();
 init_config();
+init_errors();
 init_fs();
 init_json_output();
 init_metadata();
@@ -28668,7 +28682,7 @@ You can try the manual flow: ${pc36.cyan("wraps auth logout")} then ${pc36.cyan(
     const duration = Date.now() - startTime;
     const errorCode = error instanceof Error ? error.name : "UNKNOWN_ERROR";
     trackError(errorCode, "platform:connect", {
-      message: error instanceof Error ? error.message : String(error)
+      message: sanitizeErrorMessage(error)
     });
     trackCommand("platform:connect", {
       success: false,
@@ -28946,7 +28960,7 @@ ${pc36.bold("Next Steps:")}`);
     const duration = Date.now() - startTime;
     const errorCode = error instanceof Error ? error.name : "UNKNOWN_ERROR";
     trackError(errorCode, "platform:connect", {
-      message: error instanceof Error ? error.message : String(error)
+      message: sanitizeErrorMessage(error)
     });
     trackCommand("platform:connect", {
       success: false,
@@ -29418,10 +29432,16 @@ import { createHttpTerminator } from "http-terminator";
 // src/console/middleware/auth.ts
 init_esm_shims();
+import { timingSafeEqual } from "crypto";
 function authenticateToken(expectedToken) {
   return (req, res, next) => {
     const token = req.query.token || req.headers["x-auth-token"];
-    if (!token || token !== expectedToken) {
+    if (!token) {
+      return res.status(401).json({ error: "Unauthorized" });
+    }
+    const expectedBuf = Buffer.from(expectedToken);
+    const tokenBuf = Buffer.from(token);
+    if (expectedBuf.length !== tokenBuf.length || !timingSafeEqual(expectedBuf, tokenBuf)) {
       return res.status(401).json({ error: "Unauthorized" });
     }
     next();
@@ -30815,6 +30835,13 @@ async function fetchEmailSettings(roleArn, region, configSetName, domain) {
 }
 // src/console/routes/settings.ts
+function isMissingDnsRecordError(error) {
+  if (!(error instanceof Error)) {
+    return false;
+  }
+  const dnsError = error;
+  return dnsError.code === "ENODATA" || dnsError.code === "ENOTFOUND";
+}
 function createSettingsRouter(config2) {
   const router = createRouter6();
   router.get("/deployment", async (_req, res) => {
@@ -30883,7 +30910,7 @@ function createSettingsRouter(config2) {
       });
     } catch (error) {
       console.error("[Verify] Error verifying tracking domain:", error);
-      if (error instanceof Error && (error.code === "ENODATA" || error.code === "ENOTFOUND")) {
+      if (isMissingDnsRecordError(error)) {
         return res.json({
           verified: false,
           error: "No CNAME record found for this domain"
@@ -30917,7 +30944,7 @@ function createSettingsRouter(config2) {
       });
     } catch (error) {
       console.error("[Verify] Error verifying DMARC:", error);
-      if (error instanceof Error && (error.code === "ENODATA" || error.code === "ENOTFOUND")) {
+      if (isMissingDnsRecordError(error)) {
         return res.json({
           verified: false,
           error: "No DMARC record found for this domain"