npm - mcp-sanitizer - Versions diffs - 1.3.0 → 1.3.2 - Mend

mcp-sanitizer 1.3.0 → 1.3.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/README.md +21 -22
package/package.json +6 -2
package/src/patterns/index.js +64 -62
package/src/patterns/prototype-pollution.js +1 -0
package/src/patterns/sql-injection.js +1 -1

package/README.md CHANGED Viewed

@@ -4,7 +4,7 @@ A comprehensive security sanitization library for Model Context Protocol (MCP) s
 [![npm version](https://badge.fury.io/js/mcp-sanitizer.svg)](https://badge.fury.io/js/mcp-sanitizer)
 [![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT)
-[![Security Tests](https://img.shields.io/badge/Security%20Tests-600%2B-brightgreen)](./test)
+[![Security Tests](https://img.shields.io/badge/Security%20Tests-1100%2B-brightgreen)](./test)
 ## 🔒 Security Features
@@ -17,7 +17,7 @@ MCP Sanitizer provides comprehensive, defense-in-depth protection:
 - ✅ **Framework Integration**: Express, Fastify, and Koa middleware with `skipPaths` support
 - ✅ **Security Policies**: Pre-configured policies (STRICT, MODERATE, PERMISSIVE, DEVELOPMENT, PRODUCTION)
 - ✅ **Comprehensive Validation**: Checking 42+ attack vectors across 12 validation layers in <1ms
-- ✅ **Comprehensive Testing**: 670 tests with 78% coverage, zero false negatives, sub-millisecond performance
+- ✅ **Comprehensive Testing**: 1114 tests with 93% code coverage, sub-millisecond performance
 ### Security Philosophy
 While we maintain rigorous security standards and comprehensive test coverage, we acknowledge that:
@@ -82,7 +82,7 @@ const customSanitizer = new MCPSanitizer({
   policy: 'MODERATE',
   maxStringLength: 15000,
   allowedProtocols: ['https', 'mcp'],
-  blockSeverity: 'MEDIUM'  // Block medium severity and above
+  blockOnSeverity: 'medium'  // Block medium severity and above
 });
 ```
 ## Framework Middleware
@@ -91,16 +91,16 @@ const customSanitizer = new MCPSanitizer({
 ```javascript
 const express = require('express');
-const { createMCPMiddleware } = require('mcp-sanitizer');
+const { createExpressMiddleware } = require('mcp-sanitizer/middleware/express');
 const app = express();
 app.use(express.json());
-// Auto-detect framework and apply middleware
-app.use(createMCPMiddleware());
+// Apply middleware with defaults
+app.use(createExpressMiddleware());
 // Or specify configuration
-app.use(createMCPMiddleware({
+app.use(createExpressMiddleware({
   policy: 'PRODUCTION',
   mode: 'sanitize', // or 'block'
   skipPaths: ['/health', '/metrics']  // Skip sanitization for these paths
@@ -116,19 +116,19 @@ app.post('/tools/:toolName/execute', (req, res) => {
 ```javascript
 const fastify = require('fastify')();
-const { createFastifyPlugin } = require('mcp-sanitizer');
+const mcpSanitizerPlugin = require('mcp-sanitizer/middleware/fastify');
 // Register as plugin
-fastify.register(createFastifyPlugin({
+fastify.register(mcpSanitizerPlugin, {
   policy: 'MODERATE'
-}));
+});
 ```
 ### Koa
 ```javascript
 const Koa = require('koa');
-const { createKoaMiddleware } = require('mcp-sanitizer');
+const { createKoaMiddleware } = require('mcp-sanitizer/middleware/koa');
 const app = new Koa();
 app.use(createKoaMiddleware({
@@ -405,15 +405,15 @@ node benchmark/skip-paths-performance.js
 ### 🔒 Security Testing Coverage
-| Category | Test Cases | Coverage |
-|----------|------------|----------|
-| **XSS Vectors** | 13 | DOM-based, attribute injection, polyglots |
-| **SQL Injection** | 10 | All major databases, blind/time-based |
-| **Command Injection** | 10 | Shell commands, environment vars, process substitution |
-| **Path Traversal** | 9 | Directory traversal, absolute paths, UNC |
-| **ReDoS Protection** | 22 | Polynomial backtracking, timeout guards |
-| **Prototype Pollution** | 3 | `__proto__`, constructor, prototype |
-| **Memory Safety** | 3 | Bounded memory usage under attack |
+| Category | Coverage |
+|----------|----------|
+| **XSS Vectors** | DOM-based, attribute injection, polyglots |
+| **SQL Injection** | All major databases, blind/time-based, bypass techniques |
+| **Command Injection** | Shell metacharacters, environment vars, process substitution |
+| **Path Traversal** | Directory traversal, absolute paths, UNC |
+| **ReDoS Protection** | Polynomial backtracking, timeout guards |
+| **Prototype Pollution** | `__proto__`, constructor, prototype, encoding bypass |
+| **Memory Safety** | Bounded memory usage under attack |
 ### 🎯 Security Best Practices
@@ -422,8 +422,7 @@ node benchmark/skip-paths-performance.js
 3. ✅ **Monitor blocked attempts** in production for security insights
 4. ✅ **Implement defense-in-depth** - multiple security layers
 5. ✅ **Test with your attack vectors** using provided benchmarks
-6. ✅ **Use crypto.timingSafeEqual()** for secret comparison
-7. ✅ **Enable rate limiting** at infrastructure layer
+6. ✅ **Enable rate limiting** at infrastructure layer
 ### 📝 Security Resources

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "mcp-sanitizer",
-  "version": "1.3.0",
+  "version": "1.3.2",
   "description": "Comprehensive security sanitization library for Model Context Protocol (MCP) servers with trusted security libraries",
   "main": "src/index.js",
   "files": [
@@ -62,5 +62,9 @@
   "bugs": {
     "url": "https://github.com/starman69/mcp-sanitizer/issues"
   },
-  "homepage": "https://github.com/starman69/mcp-sanitizer#readme"
+  "homepage": "https://github.com/starman69/mcp-sanitizer#readme",
+  "overrides": {
+    "qs": ">=6.14.2",
+    "flatted": ">=3.4.2"
+  }
 }

package/src/patterns/index.js CHANGED Viewed

@@ -227,81 +227,83 @@ function createPatternDetector (config = {}) {
     customPatterns = []
   } = config;
-  return {
-    detect: (input, options = {}) => {
-      const mergedOptions = { ...options, strictMode, customPatterns };
-      if (!enableCommandInjection &&
-          !enableSQLInjection &&
-          !enablePrototypePollution &&
-          !enableTemplateInjection &&
-          !enableNoSQLInjection) {
-        return { detected: false, severity: null, patterns: [] };
-      }
+  const detect = (input, options = {}) => {
+    const mergedOptions = { ...options, strictMode, customPatterns };
+    if (!enableCommandInjection &&
+        !enableSQLInjection &&
+        !enablePrototypePollution &&
+        !enableTemplateInjection &&
+        !enableNoSQLInjection) {
+      return { detected: false, severity: null, patterns: [] };
+    }
-      // Run only enabled detectors
-      const results = {
-        detected: false,
-        severity: null,
-        patterns: [],
-        detectionResults: {}
-      };
-      if (enableCommandInjection) {
-        const result = commandInjection.detectCommandInjection(input, mergedOptions);
-        if (result.detected) {
-          results.detected = true;
-          results.patterns.push(...result.patterns);
-          results.severity = getHigherSeverity(results.severity, result.severity);
-        }
-        results.detectionResults.commandInjection = result;
+    // Run only enabled detectors
+    const results = {
+      detected: false,
+      severity: null,
+      patterns: [],
+      detectionResults: {}
+    };
+    if (enableCommandInjection) {
+      const result = commandInjection.detectCommandInjection(input, mergedOptions);
+      if (result.detected) {
+        results.detected = true;
+        results.patterns.push(...result.patterns);
+        results.severity = getHigherSeverity(results.severity, result.severity);
       }
+      results.detectionResults.commandInjection = result;
+    }
-      if (enableSQLInjection) {
-        const result = sqlInjection.detectSQLInjection(input, mergedOptions);
-        if (result.detected) {
-          results.detected = true;
-          results.patterns.push(...result.patterns);
-          results.severity = getHigherSeverity(results.severity, result.severity);
-        }
-        results.detectionResults.sqlInjection = result;
+    if (enableSQLInjection) {
+      const result = sqlInjection.detectSQLInjection(input, mergedOptions);
+      if (result.detected) {
+        results.detected = true;
+        results.patterns.push(...result.patterns);
+        results.severity = getHigherSeverity(results.severity, result.severity);
       }
+      results.detectionResults.sqlInjection = result;
+    }
-      if (enablePrototypePollution) {
-        const result = prototypePollution.detectPrototypePollution(input, mergedOptions);
-        if (result.detected) {
-          results.detected = true;
-          results.patterns.push(...result.patterns);
-          results.severity = getHigherSeverity(results.severity, result.severity);
-        }
-        results.detectionResults.prototypePollution = result;
+    if (enablePrototypePollution) {
+      const result = prototypePollution.detectPrototypePollution(input, mergedOptions);
+      if (result.detected) {
+        results.detected = true;
+        results.patterns.push(...result.patterns);
+        results.severity = getHigherSeverity(results.severity, result.severity);
       }
+      results.detectionResults.prototypePollution = result;
+    }
-      if (enableTemplateInjection) {
-        const result = templateInjection.detectTemplateInjection(input, mergedOptions);
-        if (result.detected) {
-          results.detected = true;
-          results.patterns.push(...result.patterns);
-          results.severity = getHigherSeverity(results.severity, result.severity);
-        }
-        results.detectionResults.templateInjection = result;
+    if (enableTemplateInjection) {
+      const result = templateInjection.detectTemplateInjection(input, mergedOptions);
+      if (result.detected) {
+        results.detected = true;
+        results.patterns.push(...result.patterns);
+        results.severity = getHigherSeverity(results.severity, result.severity);
       }
+      results.detectionResults.templateInjection = result;
+    }
-      if (enableNoSQLInjection) {
-        const result = nosqlInjection.detectNoSQLInjection(input, mergedOptions);
-        if (result.detected) {
-          results.detected = true;
-          results.patterns.push(...result.patterns);
-          results.severity = getHigherSeverity(results.severity, result.severity);
-        }
-        results.detectionResults.nosqlInjection = result;
+    if (enableNoSQLInjection) {
+      const result = nosqlInjection.detectNoSQLInjection(input, mergedOptions);
+      if (result.detected) {
+        results.detected = true;
+        results.patterns.push(...result.patterns);
+        results.severity = getHigherSeverity(results.severity, result.severity);
       }
+      results.detectionResults.nosqlInjection = result;
+    }
-      return results;
-    },
+    return results;
+  };
+  return {
+    detect,
     isSecure: (input, options = {}) => {
-      return !this.detect(input, options).detected;
+      return !detect(input, options).detected;
     }
   };
 }

package/src/patterns/prototype-pollution.js CHANGED Viewed

@@ -364,6 +364,7 @@ function checkEncodingBypassPatterns (input) {
   const detected = [];
   for (const pattern of ENCODING_BYPASS_PATTERNS) {
+    pattern.lastIndex = 0;
     if (pattern.test(input)) {
       detected.push(`encoding_bypass:${pattern.source}`);
     }

package/src/patterns/sql-injection.js CHANGED Viewed

@@ -153,7 +153,7 @@ const ENCODED_PATTERNS = [
  * Bypass techniques
  */
 const BYPASS_PATTERNS = [
-  /\s+/g, // Multiple spaces
+  /\s{2,}/g, // Multiple consecutive spaces (bypass technique)
   /\/\*(?:[^*]|\*(?!\/))*\*\//g, // Inline comments (optimized)
   /\bunion\s*\/\*[^*]{0,50}\*\//gi, // Comment-separated keywords (bounded)
   /\bselect\s*\/\*[^*]{0,50}\*\//gi, // Bounded to prevent backtracking