marhup 0.1.7 → 0.1.9

package/dist/utils/path-validation.js

@@ -0,0 +1,39 @@
+/**
+ * Path validation utilities to prevent directory traversal attacks
+ */
+import * as path from 'path';
+/**
+ * Check if a resolved path is within the allowed directory
+ * @param resolvedPath - The absolute path to check
+ * @param allowedDir - The absolute path of the allowed directory
+ * @returns true if the path is safe (within allowedDir or subdirectories)
+ */
+export function isPathWithinDirectory(resolvedPath, allowedDir) {
+    const normalizedPath = path.normalize(resolvedPath);
+    const normalizedAllowed = path.normalize(allowedDir);
+    // Ensure allowedDir ends with separator for proper prefix check
+    const allowedWithSep = normalizedAllowed.endsWith(path.sep) ? normalizedAllowed : normalizedAllowed + path.sep;
+    return normalizedPath.startsWith(allowedWithSep) || normalizedPath === normalizedAllowed;
+}
+/**
+ * Validate and resolve a file path, ensuring it's within the allowed directory
+ * @param inputPath - The input path (can be relative or absolute)
+ * @param allowedDir - The absolute path of the allowed directory
+ * @param basePath - Optional base path for relative resolution
+ * @returns The resolved absolute path if valid
+ * @throws Error if the path is outside the allowed directory
+ */
+export function validateAndResolvePath(inputPath, allowedDir, basePath) {
+    let resolvedPath;
+    if (basePath && !path.isAbsolute(inputPath)) {
+        resolvedPath = path.resolve(basePath, inputPath);
+    }
+    else {
+        resolvedPath = path.resolve(inputPath);
+    }
+    if (!isPathWithinDirectory(resolvedPath, allowedDir)) {
+        throw new Error(`Path traversal detected: ${inputPath} resolves to ${resolvedPath} which is outside allowed directory ${allowedDir}`);
+    }
+    return resolvedPath;
+}
+//# sourceMappingURL=path-validation.js.map

package/dist/utils/path-validation.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"path-validation.js","sourceRoot":"","sources":["../../src/utils/path-validation.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,KAAK,IAAI,MAAM,MAAM,CAAC;AAE7B;;;;;GAKG;AACH,MAAM,UAAU,qBAAqB,CAAC,YAAoB,EAAE,UAAkB;IAC5E,MAAM,cAAc,GAAG,IAAI,CAAC,SAAS,CAAC,YAAY,CAAC,CAAC;IACpD,MAAM,iBAAiB,GAAG,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC;IAErD,gEAAgE;IAChE,MAAM,cAAc,GAAG,iBAAiB,CAAC,QAAQ,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,iBAAiB,CAAC,CAAC,CAAC,iBAAiB,GAAG,IAAI,CAAC,GAAG,CAAC;IAE/G,OAAO,cAAc,CAAC,UAAU,CAAC,cAAc,CAAC,IAAI,cAAc,KAAK,iBAAiB,CAAC;AAC3F,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,UAAU,sBAAsB,CAAC,SAAiB,EAAE,UAAkB,EAAE,QAAiB;IAC7F,IAAI,YAAoB,CAAC;IAEzB,IAAI,QAAQ,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;QAC5C,YAAY,GAAG,IAAI,CAAC,OAAO,CAAC,QAAQ,EAAE,SAAS,CAAC,CAAC;IACnD,CAAC;SAAM,CAAC;QACN,YAAY,GAAG,IAAI,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;IACzC,CAAC;IAED,IAAI,CAAC,qBAAqB,CAAC,YAAY,EAAE,UAAU,CAAC,EAAE,CAAC;QACrD,MAAM,IAAI,KAAK,CAAC,4BAA4B,SAAS,gBAAgB,YAAY,uCAAuC,UAAU,EAAE,CAAC,CAAC;IACxI,CAAC;IAED,OAAO,YAAY,CAAC;AACtB,CAAC"}

package/dist/utils/plugin-manager.d.ts

@@ -0,0 +1,18 @@
+/**
+ * Plugin Manager
+ */
+import type { PluginManager as IPluginManager, PluginContext, ElementParser, ElementGenerator, PluginHooks } from '../types/plugin.js';
+declare class PluginManagerImpl implements IPluginManager {
+    private plugins;
+    private elementParsers;
+    private elementGenerators;
+    loadPlugins(pluginDir: string): Promise<void>;
+    private validatePlugin;
+    getElementParser(type: string): ElementParser | undefined;
+    getElementGenerator(type: string): ElementGenerator | undefined;
+    executeHook<K extends keyof PluginHooks>(hook: K, ...args: Parameters<NonNullable<PluginHooks[K]>>): Promise<void>;
+    init(context: PluginContext): Promise<void>;
+}
+export declare const pluginManager: PluginManagerImpl;
+export { PluginManagerImpl as PluginManager };
+//# sourceMappingURL=plugin-manager.d.ts.map

package/dist/utils/plugin-manager.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"plugin-manager.d.ts","sourceRoot":"","sources":["../../src/utils/plugin-manager.ts"],"names":[],"mappings":"AAAA;;GAEG;AAKH,OAAO,KAAK,EAAU,aAAa,IAAI,cAAc,EAAE,aAAa,EAAE,aAAa,EAAE,gBAAgB,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAC;AAG/I,cAAM,iBAAkB,YAAW,cAAc;IAC/C,OAAO,CAAC,OAAO,CAAgB;IAC/B,OAAO,CAAC,cAAc,CAAyC;IAC/D,OAAO,CAAC,iBAAiB,CAA4C;IAE/D,WAAW,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IA+DnD,OAAO,CAAC,cAAc;IAItB,gBAAgB,CAAC,IAAI,EAAE,MAAM,GAAG,aAAa,GAAG,SAAS;IAIzD,mBAAmB,CAAC,IAAI,EAAE,MAAM,GAAG,gBAAgB,GAAG,SAAS;IAIzD,WAAW,CAAC,CAAC,SAAS,MAAM,WAAW,EAAE,IAAI,EAAE,CAAC,EAAE,GAAG,IAAI,EAAE,UAAU,CAAC,WAAW,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,OAAO,CAAC,IAAI,CAAC;IAYlH,IAAI,CAAC,OAAO,EAAE,aAAa,GAAG,OAAO,CAAC,IAAI,CAAC;CAWlD;AAED,eAAO,MAAM,aAAa,mBAA0B,CAAC;AACrD,OAAO,EAAE,iBAAiB,IAAI,aAAa,EAAE,CAAC"}

package/dist/utils/plugin-manager.js

@@ -0,0 +1,108 @@
+/**
+ * Plugin Manager
+ */
+import * as fs from 'fs';
+import * as path from 'path';
+import { NodeVM } from 'vm2';
+import logger from './logger.js';
+class PluginManagerImpl {
+    plugins = [];
+    elementParsers = new Map();
+    elementGenerators = new Map();
+    async loadPlugins(pluginDir) {
+        if (!fs.existsSync(pluginDir)) {
+            logger.debug('Plugin directory does not exist', { pluginDir });
+            return;
+        }
+        const files = fs.readdirSync(pluginDir).filter(file => file.endsWith('.js'));
+        for (const file of files) {
+            try {
+                const pluginPath = path.join(pluginDir, file);
+                const code = fs.readFileSync(pluginPath, 'utf8');
+                const vm = new NodeVM({
+                    console: 'inherit',
+                    sandbox: {
+                        console,
+                        RegExp,
+                        String,
+                        Array,
+                        Object,
+                        Math,
+                        Date,
+                        JSON,
+                        Error,
+                        parseInt,
+                        parseFloat,
+                        isNaN,
+                        isFinite,
+                        encodeURIComponent,
+                        decodeURIComponent,
+                    },
+                    require: {
+                        external: false,
+                        builtin: [],
+                    },
+                });
+                const pluginModule = vm.run(code);
+                const plugin = pluginModule;
+                if (this.validatePlugin(plugin)) {
+                    this.plugins.push(plugin);
+                    logger.info(`Loaded plugin: ${plugin.name}`);
+                    // Register parsers and generators
+                    if (plugin.elementParsers) {
+                        for (const [type, parser] of Object.entries(plugin.elementParsers)) {
+                            this.elementParsers.set(type, parser);
+                        }
+                    }
+                    if (plugin.elementGenerators) {
+                        for (const [type, generator] of Object.entries(plugin.elementGenerators)) {
+                            this.elementGenerators.set(type, generator);
+                        }
+                    }
+                }
+                else {
+                    logger.warn(`Invalid plugin: ${file}`);
+                }
+            }
+            catch (error) {
+                logger.error(`Failed to load plugin ${file}`, { error: error instanceof Error ? error.message : String(error) });
+            }
+        }
+    }
+    validatePlugin(plugin) {
+        return typeof plugin === 'object' && plugin !== null && typeof plugin.name === 'string';
+    }
+    getElementParser(type) {
+        return this.elementParsers.get(type);
+    }
+    getElementGenerator(type) {
+        return this.elementGenerators.get(type);
+    }
+    async executeHook(hook, ...args) {
+        for (const plugin of this.plugins) {
+            if (plugin.hooks && plugin.hooks[hook]) {
+                try {
+                    await plugin.hooks[hook](...args);
+                }
+                catch (error) {
+                    logger.error(`Plugin ${plugin.name} hook ${hook} failed`, { error: error instanceof Error ? error.message : String(error) });
+                }
+            }
+        }
+    }
+    async init(context) {
+        for (const plugin of this.plugins) {
+            if (plugin.hooks?.onInit) {
+                try {
+                    await plugin.hooks.onInit(context);
+                }
+                catch (error) {
+                    logger.error(`Plugin ${plugin.name} init failed`, { error: error instanceof Error ? error.message : String(error) });
+                }
+            }
+        }
+    }
+}
+export const pluginManager = new PluginManagerImpl();
+export { PluginManagerImpl as PluginManager };
+//# sourceMappingURL=plugin-manager.js.map

package/dist/utils/plugin-manager.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"plugin-manager.js","sourceRoot":"","sources":["../../src/utils/plugin-manager.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,KAAK,EAAE,MAAM,IAAI,CAAC;AACzB,OAAO,KAAK,IAAI,MAAM,MAAM,CAAC;AAC7B,OAAO,EAAE,MAAM,EAAE,MAAM,KAAK,CAAC;AAE7B,OAAO,MAAM,MAAM,aAAa,CAAC;AAEjC,MAAM,iBAAiB;IACb,OAAO,GAAa,EAAE,CAAC;IACvB,cAAc,GAA+B,IAAI,GAAG,EAAE,CAAC;IACvD,iBAAiB,GAAkC,IAAI,GAAG,EAAE,CAAC;IAErE,KAAK,CAAC,WAAW,CAAC,SAAiB;QACjC,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;YAC9B,MAAM,CAAC,KAAK,CAAC,iCAAiC,EAAE,EAAE,SAAS,EAAE,CAAC,CAAC;YAC/D,OAAO;QACT,CAAC;QAED,MAAM,KAAK,GAAG,EAAE,CAAC,WAAW,CAAC,SAAS,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC;QAE7E,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;YACzB,IAAI,CAAC;gBACH,MAAM,UAAU,GAAG,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,IAAI,CAAC,CAAC;gBAC9C,MAAM,IAAI,GAAG,EAAE,CAAC,YAAY,CAAC,UAAU,EAAE,MAAM,CAAC,CAAC;gBACjD,MAAM,EAAE,GAAG,IAAI,MAAM,CAAC;oBACpB,OAAO,EAAE,SAAS;oBAClB,OAAO,EAAE;wBACP,OAAO;wBACP,MAAM;wBACN,MAAM;wBACN,KAAK;wBACL,MAAM;wBACN,IAAI;wBACJ,IAAI;wBACJ,IAAI;wBACJ,KAAK;wBACL,QAAQ;wBACR,UAAU;wBACV,KAAK;wBACL,QAAQ;wBACR,kBAAkB;wBAClB,kBAAkB;qBACnB;oBACD,OAAO,EAAE;wBACP,QAAQ,EAAE,KAAK;wBACf,OAAO,EAAE,EAAE;qBACZ;iBACF,CAAC,CAAC;gBACH,MAAM,YAAY,GAAG,EAAE,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;gBAClC,MAAM,MAAM,GAAW,YAAY,CAAC;gBAEpC,IAAI,IAAI,CAAC,cAAc,CAAC,MAAM,CAAC,EAAE,CAAC;oBAChC,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;oBAC1B,MAAM,CAAC,IAAI,CAAC,kBAAkB,MAAM,CAAC,IAAI,EAAE,CAAC,CAAC;oBAE7C,kCAAkC;oBAClC,IAAI,MAAM,CAAC,cAAc,EAAE,CAAC;wBAC1B,KAAK,MAAM,CAAC,IAAI,EAAE,MAAM,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,cAAc,CAAC,EAAE,CAAC;4BACnE,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;wBACxC,CAAC;oBACH,CAAC;oBACD,IAAI,MAAM,CAAC,iBAAiB,EAAE,CAAC;wBAC7B,KAAK,MAAM,CAAC,IAAI,EAAE,SAAS,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,iBAAiB,CAAC,EAAE,CAAC;4BACzE,IAAI,CAAC,iBAAiB,CAAC,GAAG,CAAC,IAAI,EAAE,SAAS,CAAC,CAAC;wBAC9C,CAAC;oBACH,CAAC;gBACH,CAAC;qBAAM,CAAC;oBACN,MAAM,CAAC,IAAI,CAAC,mBAAmB,IAAI,EAAE,CAAC,CAAC;gBACzC,CAAC;YACH,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,MAAM,CAAC,KAAK,CAAC,yBAAyB,IAAI,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;YACnH,CAAC;QACH,CAAC;IACH,CAAC;IAEO,cAAc,CAAC,MAAe;QACpC,OAAO,OAAO,MAAM,KAAK,QAAQ,IAAI,MAAM,KAAK,IAAI,IAAI,OAAQ,MAAiB,CAAC,IAAI,KAAK,QAAQ,CAAC;IACtG,CAAC;IAED,gBAAgB,CAAC,IAAY;QAC3B,OAAO,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;IACvC,CAAC;IAED,mBAAmB,CAAC,IAAY;QAC9B,OAAO,IAAI,CAAC,iBAAiB,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;IAC1C,CAAC;IAED,KAAK,CAAC,WAAW,CAA8B,IAAO,EAAE,GAAG,IAA6C;QACtG,KAAK,MAAM,MAAM,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;YAClC,IAAI,MAAM,CAAC,KAAK,IAAI,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC;gBACvC,IAAI,CAAC;oBACH,MAAO,MAAM,CAAC,KAAK,CAAC,IAAI,CAAS,CAAC,GAAG,IAAI,CAAC,CAAC;gBAC7C,CAAC;gBAAC,OAAO,KAAK,EAAE,CAAC;oBACf,MAAM,CAAC,KAAK,CAAC,UAAU,MAAM,CAAC,IAAI,SAAS,IAAI,SAAS,EAAE,EAAE,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;gBAC/H,CAAC;YACH,CAAC;QACH,CAAC;IACH,CAAC;IAED,KAAK,CAAC,IAAI,CAAC,OAAsB;QAC/B,KAAK,MAAM,MAAM,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;YAClC,IAAI,MAAM,CAAC,KAAK,EAAE,MAAM,EAAE,CAAC;gBACzB,IAAI,CAAC;oBACH,MAAM,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;gBACrC,CAAC;gBAAC,OAAO,KAAK,EAAE,CAAC;oBACf,MAAM,CAAC,KAAK,CAAC,UAAU,MAAM,CAAC,IAAI,cAAc,EAAE,EAAE,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;gBACvH,CAAC;YACH,CAAC;QACH,CAAC;IACH,CAAC;CACF;AAED,MAAM,CAAC,MAAM,aAAa,GAAG,IAAI,iBAAiB,EAAE,CAAC;AACrD,OAAO,EAAE,iBAAiB,IAAI,aAAa,EAAE,CAAC"}

package/dist/utils/sanitizer.d.ts

@@ -0,0 +1,14 @@
+import type { SlideElement } from '../types/index.js';
+/**
+ * テキストコンテンツをサニタイズ
+ */
+export declare function sanitizeText(text: string): string;
+/**
+ * SVGコンテンツをサニタイズ
+ */
+export declare function sanitizeSvg(svgContent: string): string;
+/**
+ * SlideElementのcontentをサニタイズ
+ */
+export declare function sanitizeElement(element: SlideElement): void;
+//# sourceMappingURL=sanitizer.d.ts.map

package/dist/utils/sanitizer.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"sanitizer.d.ts","sourceRoot":"","sources":["../../src/utils/sanitizer.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AAMtD;;GAEG;AACH,wBAAgB,YAAY,CAAC,IAAI,EAAE,MAAM,GAAG,MAAM,CAGjD;AAED;;GAEG;AACH,wBAAgB,WAAW,CAAC,UAAU,EAAE,MAAM,GAAG,MAAM,CActD;AAED;;GAEG;AACH,wBAAgB,eAAe,CAAC,OAAO,EAAE,YAAY,GAAG,IAAI,CAsC3D"}

package/dist/utils/sanitizer.js

@@ -0,0 +1,73 @@
+import DOMPurify from 'dompurify';
+import { JSDOM } from 'jsdom';
+// DOMPurifyのセットアップ
+const window = new JSDOM('').window;
+const DOMPurifyInstance = DOMPurify(window);
+/**
+ * テキストコンテンツをサニタイズ
+ */
+export function sanitizeText(text) {
+    // HTMLタグを除去し、テキストのみを返す
+    return DOMPurifyInstance.sanitize(text, { ALLOWED_TAGS: [] });
+}
+/**
+ * SVGコンテンツをサニタイズ
+ */
+export function sanitizeSvg(svgContent) {
+    // SVGの安全なタグのみを許可
+    return DOMPurifyInstance.sanitize(svgContent, {
+        ALLOWED_TAGS: [
+            'svg', 'g', 'path', 'circle', 'rect', 'text', 'line', 'polyline', 'polygon', 'ellipse',
+            'defs', 'linearGradient', 'radialGradient', 'stop', 'use', 'symbol', 'clipPath', 'mask'
+        ],
+        ALLOWED_ATTR: [
+            'd', 'cx', 'cy', 'r', 'x', 'y', 'x1', 'y1', 'x2', 'y2', 'width', 'height', 'fill', 'stroke',
+            'stroke-width', 'stroke-linecap', 'stroke-linejoin', 'transform', 'viewBox', 'xmlns',
+            'version', 'id', 'class', 'points', 'rx', 'ry', 'offset', 'stop-color', 'stop-opacity',
+            'gradientUnits', 'gradientTransform', 'href', 'clip-path', 'mask'
+        ],
+    });
+}
+/**
+ * SlideElementのcontentをサニタイズ
+ */
+export function sanitizeElement(element) {
+    switch (element.type) {
+        case 'heading':
+        case 'paragraph':
+        case 'code':
+        case 'blockquote':
+        case 'mermaid':
+        case 'image':
+        case 'video':
+            if (typeof element.content === 'string') {
+                element.content = sanitizeText(element.content);
+            }
+            break;
+        case 'list':
+            if (Array.isArray(element.content)) {
+                element.content.forEach(item => {
+                    item.content = sanitizeText(item.content);
+                    if (item.children) {
+                        item.children.forEach(child => {
+                            child.content = sanitizeText(child.content);
+                        });
+                    }
+                });
+            }
+            break;
+        case 'table':
+            if (element.content && typeof element.content === 'object' && 'headers' in element.content && 'rows' in element.content) {
+                element.content.headers = element.content.headers.map(sanitizeText);
+                element.content.rows = element.content.rows.map(row => row.map(sanitizeText));
+            }
+            break;
+        default:
+            // プラグインなどのカスタム要素もcontentがstringならサニタイズ
+            if (typeof element.content === 'string') {
+                element.content = sanitizeText(element.content);
+            }
+            break;
+    }
+}
+//# sourceMappingURL=sanitizer.js.map

package/dist/utils/sanitizer.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"sanitizer.js","sourceRoot":"","sources":["../../src/utils/sanitizer.ts"],"names":[],"mappings":"AAAA,OAAO,SAAS,MAAM,WAAW,CAAC;AAClC,OAAO,EAAE,KAAK,EAAE,MAAM,OAAO,CAAC;AAG9B,mBAAmB;AACnB,MAAM,MAAM,GAAG,IAAI,KAAK,CAAC,EAAE,CAAC,CAAC,MAAM,CAAC;AACpC,MAAM,iBAAiB,GAAG,SAAS,CAAC,MAAM,CAAC,CAAC;AAE5C;;GAEG;AACH,MAAM,UAAU,YAAY,CAAC,IAAY;IACvC,uBAAuB;IACvB,OAAO,iBAAiB,CAAC,QAAQ,CAAC,IAAI,EAAE,EAAE,YAAY,EAAE,EAAE,EAAE,CAAC,CAAC;AAChE,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,WAAW,CAAC,UAAkB;IAC5C,iBAAiB;IACjB,OAAO,iBAAiB,CAAC,QAAQ,CAAC,UAAU,EAAE;QAC5C,YAAY,EAAE;YACZ,KAAK,EAAE,GAAG,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,UAAU,EAAE,SAAS,EAAE,SAAS;YACtF,MAAM,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,MAAM,EAAE,KAAK,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM;SACxF;QACD,YAAY,EAAE;YACZ,GAAG,EAAE,IAAI,EAAE,IAAI,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,QAAQ;YAC3F,cAAc,EAAE,gBAAgB,EAAE,iBAAiB,EAAE,WAAW,EAAE,SAAS,EAAE,OAAO;YACpF,SAAS,EAAE,IAAI,EAAE,OAAO,EAAE,QAAQ,EAAE,IAAI,EAAE,IAAI,EAAE,QAAQ,EAAE,YAAY,EAAE,cAAc;YACtF,eAAe,EAAE,mBAAmB,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM;SAClE;KACF,CAAC,CAAC;AACL,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,eAAe,CAAC,OAAqB;IACnD,QAAQ,OAAO,CAAC,IAAI,EAAE,CAAC;QACrB,KAAK,SAAS,CAAC;QACf,KAAK,WAAW,CAAC;QACjB,KAAK,MAAM,CAAC;QACZ,KAAK,YAAY,CAAC;QAClB,KAAK,SAAS,CAAC;QACf,KAAK,OAAO,CAAC;QACb,KAAK,OAAO;YACV,IAAI,OAAO,OAAO,CAAC,OAAO,KAAK,QAAQ,EAAE,CAAC;gBACxC,OAAO,CAAC,OAAO,GAAG,YAAY,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;YAClD,CAAC;YACD,MAAM;QACR,KAAK,MAAM;YACT,IAAI,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC;gBACnC,OAAO,CAAC,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE;oBAC7B,IAAI,CAAC,OAAO,GAAG,YAAY,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;oBAC1C,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;wBAClB,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE;4BAC5B,KAAK,CAAC,OAAO,GAAG,YAAY,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;wBAC9C,CAAC,CAAC,CAAC;oBACL,CAAC;gBACH,CAAC,CAAC,CAAC;YACL,CAAC;YACD,MAAM;QACR,KAAK,OAAO;YACV,IAAI,OAAO,CAAC,OAAO,IAAI,OAAO,OAAO,CAAC,OAAO,KAAK,QAAQ,IAAI,SAAS,IAAI,OAAO,CAAC,OAAO,IAAI,MAAM,IAAI,OAAO,CAAC,OAAO,EAAE,CAAC;gBACxH,OAAO,CAAC,OAAO,CAAC,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;gBACpE,OAAO,CAAC,OAAO,CAAC,IAAI,GAAG,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC,CAAC;YAChF,CAAC;YACD,MAAM;QACR;YACE,uCAAuC;YACvC,IAAI,OAAO,OAAO,CAAC,OAAO,KAAK,QAAQ,EAAE,CAAC;gBACxC,OAAO,CAAC,OAAO,GAAG,YAAY,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;YAClD,CAAC;YACD,MAAM;IACV,CAAC;AACH,CAAC"}

package/package.json

@@ -1,7 +1,8 @@
 {
   "name": "marhup",
-  "version": "0.1.7",
+  "version": "0.1.9",
   "description": "Markdownからグリッドベースのレイアウトで PowerPoint (PPTX) を生成するCLIツール",
+  "type": "module",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
   "bin": {
@@ -40,24 +41,38 @@
   "dependencies": {
     "@mermaid-js/mermaid-cli": "^11.12.0",
     "@modelcontextprotocol/sdk": "^1.0.0",
+    "@types/chokidar": "^2.1.7",
+    "@types/dompurify": "^3.2.0",
+    "chokidar": "^5.0.0",
     "commander": "^12.1.0",
+    "dompurify": "^3.3.1",
+    "i18next": "^25.8.0",
+    "i18next-fs-backend": "^2.6.1",
     "image-size": "^2.0.2",
+    "jsdom": "^27.4.0",
     "marked": "^11.2.0",
-    "pptxgenjs": "^3.12.0",
+    "pptxgenjs": "^4.0.1",
+    "vm2": "^3.10.3",
+    "winston": "^3.19.0",
     "yaml": "^2.3.4"
   },
   "devDependencies": {
-    "@types/node": "^20.11.0",
-    "@typescript-eslint/eslint-plugin": "^6.19.0",
-    "@typescript-eslint/parser": "^6.19.0",
-    "eslint": "^8.56.0",
+    "@types/jsdom": "^27.0.0",
+    "@types/node": "^22.0.0",
+    "@typescript-eslint/eslint-plugin": "^8.0.0",
+    "@typescript-eslint/parser": "^8.0.0",
+    "@vitest/coverage-v8": "^4.0.18",
+    "eslint": "^9.0.0",
     "npm-run-all": "^4.1.5",
     "prettier": "^3.2.0",
     "typescript": "^5.3.3",
-    "vitest": "^1.2.0"
+    "vitest": "^4.0.0"
   },
   "engines": {
-    "node": ">=18.0.0"
+    "node": ">=20.0.0"
+  },
+  "overrides": {
+    "lodash-es": "^4.17.23"
   },
   "files": [
     "dist",