observability-toolkit 1.8.0 → 1.8.4

package/dist/lib/input-validator.test.js

@@ -0,0 +1,287 @@
+import { describe, it } from 'node:test';
+import assert from 'node:assert';
+import { validateLimit, validateDuration, validateDateRange, validateRegexPattern, InputValidationError, isInputValidationError, MAX_LIMIT, MAX_DATE_RANGE_DAYS, MAX_REGEX_LENGTH, MAX_REGEX_GROUPS, DEFAULT_LIMIT, MAX_DURATION_MS, } from './input-validator.js';
+describe('input-validator', () => {
+    describe('validateLimit', () => {
+        it('should return default limit when undefined', () => {
+            const result = validateLimit(undefined);
+            assert.strictEqual(result, DEFAULT_LIMIT);
+        });
+        it('should return default limit when null', () => {
+            // eslint-disable-next-line @typescript-eslint/no-explicit-any
+            const result = validateLimit(null);
+            assert.strictEqual(result, DEFAULT_LIMIT);
+        });
+        it('should return value when within valid range', () => {
+            assert.strictEqual(validateLimit(100), 100);
+            assert.strictEqual(validateLimit(500), 500);
+            assert.strictEqual(validateLimit(1), 1);
+        });
+        it('should clamp to MAX_LIMIT when value exceeds maximum', () => {
+            assert.strictEqual(validateLimit(5000), MAX_LIMIT);
+            assert.strictEqual(validateLimit(1001), MAX_LIMIT);
+            assert.strictEqual(validateLimit(Number.MAX_SAFE_INTEGER), MAX_LIMIT);
+        });
+        it('should clamp to 1 when value is zero or negative', () => {
+            assert.strictEqual(validateLimit(0), 1);
+            assert.strictEqual(validateLimit(-1), 1);
+            assert.strictEqual(validateLimit(-100), 1);
+        });
+        it('should handle edge cases', () => {
+            assert.strictEqual(validateLimit(MAX_LIMIT), MAX_LIMIT);
+            assert.strictEqual(validateLimit(1), 1);
+        });
+    });
+    describe('validateDuration', () => {
+        it('should return undefined when undefined', () => {
+            const result = validateDuration(undefined, 'minDurationMs');
+            assert.strictEqual(result, undefined);
+        });
+        it('should return undefined when null', () => {
+            // eslint-disable-next-line @typescript-eslint/no-explicit-any
+            const result = validateDuration(null, 'minDurationMs');
+            assert.strictEqual(result, undefined);
+        });
+        it('should return value when within valid range', () => {
+            assert.strictEqual(validateDuration(0, 'minDurationMs'), 0);
+            assert.strictEqual(validateDuration(1000, 'minDurationMs'), 1000);
+            assert.strictEqual(validateDuration(5000, 'maxDurationMs'), 5000);
+            assert.strictEqual(validateDuration(MAX_DURATION_MS, 'maxDurationMs'), MAX_DURATION_MS);
+        });
+        it('should clamp to MAX_DURATION_MS when value exceeds maximum', () => {
+            assert.strictEqual(validateDuration(MAX_DURATION_MS + 1, 'minDurationMs'), MAX_DURATION_MS);
+            assert.strictEqual(validateDuration(100000000, 'maxDurationMs'), MAX_DURATION_MS);
+            assert.strictEqual(validateDuration(Number.MAX_SAFE_INTEGER, 'minDurationMs'), MAX_DURATION_MS);
+        });
+        it('should throw when value is negative', () => {
+            assert.throws(() => validateDuration(-1, 'minDurationMs'), (err) => {
+                assert.strictEqual(err.field, 'minDurationMs');
+                assert.strictEqual(err.constraint, 'range');
+                assert.ok(err.message.includes('cannot be negative'));
+                return true;
+            });
+            assert.throws(() => validateDuration(-100, 'maxDurationMs'), (err) => {
+                assert.strictEqual(err.field, 'maxDurationMs');
+                assert.strictEqual(err.constraint, 'range');
+                return true;
+            });
+        });
+        it('should handle edge cases', () => {
+            assert.strictEqual(validateDuration(0, 'minDurationMs'), 0);
+            assert.strictEqual(validateDuration(MAX_DURATION_MS, 'maxDurationMs'), MAX_DURATION_MS);
+        });
+    });
+    describe('validateDateRange', () => {
+        it('should parse valid date strings', () => {
+            const result = validateDateRange('2024-01-01', '2024-01-31');
+            assert.strictEqual(result.start.getFullYear(), 2024);
+            assert.strictEqual(result.start.getMonth(), 0); // January
+            assert.strictEqual(result.start.getDate(), 1);
+            assert.strictEqual(result.end.getFullYear(), 2024);
+            assert.strictEqual(result.end.getMonth(), 0);
+            assert.strictEqual(result.end.getDate(), 31);
+        });
+        it('should return defaults when both dates undefined', () => {
+            const result = validateDateRange(undefined, undefined);
+            const today = new Date();
+            // End should be today
+            assert.strictEqual(result.end.getFullYear(), today.getFullYear());
+            assert.strictEqual(result.end.getMonth(), today.getMonth());
+            assert.strictEqual(result.end.getDate(), today.getDate());
+            // Start should be MAX_DATE_RANGE_DAYS ago
+            const expectedStart = new Date(today.getTime() - MAX_DATE_RANGE_DAYS * 24 * 60 * 60 * 1000);
+            assert.strictEqual(result.start.getFullYear(), expectedStart.getFullYear());
+            assert.strictEqual(result.start.getMonth(), expectedStart.getMonth());
+            assert.strictEqual(result.start.getDate(), expectedStart.getDate());
+        });
+        it('should throw on invalid startDate format', () => {
+            assert.throws(() => validateDateRange('invalid', '2024-01-31'), (err) => {
+                assert.strictEqual(err.field, 'startDate');
+                assert.strictEqual(err.constraint, 'format');
+                assert.ok(err.message.includes('Invalid startDate format'));
+                return true;
+            });
+        });
+        it('should throw on invalid endDate format', () => {
+            assert.throws(() => validateDateRange('2024-01-01', 'not-a-date'), (err) => {
+                assert.strictEqual(err.field, 'endDate');
+                assert.strictEqual(err.constraint, 'format');
+                assert.ok(err.message.includes('Invalid endDate format'));
+                return true;
+            });
+        });
+        it('should throw on partial date format', () => {
+            assert.throws(() => validateDateRange('2024-01', '2024-01-31'), (err) => {
+                assert.strictEqual(err.field, 'startDate');
+                assert.strictEqual(err.constraint, 'format');
+                return true;
+            });
+        });
+        it('should throw on invalid date like Feb 30', () => {
+            assert.throws(() => validateDateRange('2024-02-30', '2024-03-01'), (err) => {
+                assert.strictEqual(err.field, 'startDate');
+                assert.strictEqual(err.constraint, 'format');
+                return true;
+            });
+        });
+        it('should throw on invalid month', () => {
+            assert.throws(() => validateDateRange('2024-13-01', '2024-12-31'), (err) => {
+                assert.strictEqual(err.field, 'startDate');
+                assert.strictEqual(err.constraint, 'format');
+                return true;
+            });
+        });
+        it('should throw when startDate is after endDate', () => {
+            assert.throws(() => validateDateRange('2024-12-31', '2024-01-01'), (err) => {
+                assert.strictEqual(err.field, 'startDate');
+                assert.strictEqual(err.constraint, 'range');
+                assert.ok(err.message.includes('cannot be after'));
+                return true;
+            });
+        });
+        it('should throw when date range exceeds maximum', () => {
+            // Calculate dates that exceed MAX_DATE_RANGE_DAYS
+            const start = '2022-01-01';
+            const end = '2024-01-01'; // ~730 days
+            assert.throws(() => validateDateRange(start, end), (err) => {
+                assert.strictEqual(err.field, 'dateRange');
+                assert.strictEqual(err.constraint, 'maxRange');
+                assert.ok(err.message.includes(`exceeds maximum of ${MAX_DATE_RANGE_DAYS}`));
+                return true;
+            });
+        });
+        it('should allow range exactly at maximum', () => {
+            const start = new Date();
+            start.setDate(start.getDate() - MAX_DATE_RANGE_DAYS);
+            const startStr = start.toISOString().split('T')[0];
+            const endStr = new Date().toISOString().split('T')[0];
+            // Should not throw
+            const result = validateDateRange(startStr, endStr);
+            assert.ok(result.start);
+            assert.ok(result.end);
+        });
+        it('should handle same start and end date', () => {
+            const result = validateDateRange('2024-06-15', '2024-06-15');
+            assert.strictEqual(result.start.getTime(), result.end.getTime());
+        });
+    });
+    describe('validateRegexPattern', () => {
+        it('should accept valid simple patterns', () => {
+            assert.doesNotThrow(() => validateRegexPattern('error'));
+            assert.doesNotThrow(() => validateRegexPattern('error.*timeout'));
+            assert.doesNotThrow(() => validateRegexPattern('^start'));
+            assert.doesNotThrow(() => validateRegexPattern('end$'));
+        });
+        it('should accept patterns with allowed capture groups', () => {
+            assert.doesNotThrow(() => validateRegexPattern('(foo)'));
+            assert.doesNotThrow(() => validateRegexPattern('(a)(b)(c)'));
+            // 10 groups is the max
+            assert.doesNotThrow(() => validateRegexPattern('(1)(2)(3)(4)(5)(6)(7)(8)(9)(10)'));
+        });
+        it('should accept non-capturing groups without counting', () => {
+            // Non-capturing groups don't count toward limit
+            assert.doesNotThrow(() => validateRegexPattern('(?:foo)'));
+            assert.doesNotThrow(() => validateRegexPattern('(?:a)(?:b)(?:c)(?:d)(?:e)(?:f)(?:g)(?:h)(?:i)(?:j)(?:k)'));
+        });
+        it('should accept lookahead/lookbehind without counting', () => {
+            assert.doesNotThrow(() => validateRegexPattern('(?=foo)'));
+            assert.doesNotThrow(() => validateRegexPattern('(?!foo)'));
+            assert.doesNotThrow(() => validateRegexPattern('(?<=foo)'));
+            assert.doesNotThrow(() => validateRegexPattern('(?<!foo)'));
+        });
+        it('should throw when pattern exceeds max length', () => {
+            const longPattern = 'a'.repeat(MAX_REGEX_LENGTH + 1);
+            assert.throws(() => validateRegexPattern(longPattern), (err) => {
+                assert.strictEqual(err.field, 'pattern');
+                assert.strictEqual(err.constraint, 'maxLength');
+                assert.ok(err.message.includes(`exceeds maximum of ${MAX_REGEX_LENGTH}`));
+                return true;
+            });
+        });
+        it('should throw when pattern has too many capture groups', () => {
+            // 11 groups exceeds the limit of 10
+            const manyGroups = '(1)(2)(3)(4)(5)(6)(7)(8)(9)(10)(11)';
+            assert.throws(() => validateRegexPattern(manyGroups), (err) => {
+                assert.strictEqual(err.field, 'pattern');
+                assert.strictEqual(err.constraint, 'maxGroups');
+                assert.ok(err.message.includes(`exceeding maximum of ${MAX_REGEX_GROUPS}`));
+                return true;
+            });
+        });
+        it('should throw on invalid regex syntax', () => {
+            assert.throws(() => validateRegexPattern('[invalid'), (err) => {
+                assert.strictEqual(err.field, 'pattern');
+                assert.strictEqual(err.constraint, 'syntax');
+                assert.ok(err.message.includes('Invalid regex pattern'));
+                return true;
+            });
+        });
+        it('should throw on unclosed parenthesis', () => {
+            assert.throws(() => validateRegexPattern('(unclosed'), (err) => {
+                assert.strictEqual(err.field, 'pattern');
+                assert.strictEqual(err.constraint, 'syntax');
+                return true;
+            });
+        });
+        it('should handle escaped parentheses', () => {
+            // Escaped parens don't count as groups
+            assert.doesNotThrow(() => validateRegexPattern('\\(not a group\\)'));
+            assert.doesNotThrow(() => validateRegexPattern('\\(\\)\\(\\)\\(\\)\\(\\)\\(\\)\\(\\)\\(\\)\\(\\)\\(\\)\\(\\)\\(\\)'));
+        });
+        it('should handle parentheses inside character classes', () => {
+            // Parens inside [] don't count as groups
+            assert.doesNotThrow(() => validateRegexPattern('[(]'));
+            assert.doesNotThrow(() => validateRegexPattern('[()]'));
+        });
+        it('should handle complex patterns', () => {
+            // Mix of real groups, non-capturing, and escaped
+            assert.doesNotThrow(() => validateRegexPattern('(a)(?:b)\\(c\\)[d]'));
+        });
+    });
+    describe('InputValidationError', () => {
+        it('should have correct properties', () => {
+            const error = new InputValidationError('Test message', 'testField', 'testConstraint');
+            assert.strictEqual(error.message, 'Test message');
+            assert.strictEqual(error.field, 'testField');
+            assert.strictEqual(error.constraint, 'testConstraint');
+            assert.strictEqual(error.name, 'InputValidationError');
+        });
+        it('should be instanceof Error', () => {
+            const error = new InputValidationError('Test', 'field', 'constraint');
+            assert.ok(error instanceof Error);
+            assert.ok(error instanceof InputValidationError);
+        });
+        it('should have stack trace', () => {
+            const error = new InputValidationError('Test', 'field', 'constraint');
+            assert.ok(error.stack);
+            assert.ok(error.stack.includes('InputValidationError'));
+        });
+    });
+    describe('isInputValidationError', () => {
+        it('should return true for InputValidationError', () => {
+            const error = new InputValidationError('Test', 'field', 'constraint');
+            assert.strictEqual(isInputValidationError(error), true);
+        });
+        it('should return false for regular Error', () => {
+            const error = new Error('Test');
+            assert.strictEqual(isInputValidationError(error), false);
+        });
+        it('should return false for non-error objects', () => {
+            assert.strictEqual(isInputValidationError({ message: 'fake' }), false);
+            assert.strictEqual(isInputValidationError(null), false);
+            assert.strictEqual(isInputValidationError(undefined), false);
+            assert.strictEqual(isInputValidationError('string'), false);
+        });
+    });
+    describe('constants', () => {
+        it('should export expected constant values', () => {
+            assert.strictEqual(MAX_LIMIT, 1000);
+            assert.strictEqual(MAX_DATE_RANGE_DAYS, 365);
+            assert.strictEqual(MAX_REGEX_LENGTH, 200);
+            assert.strictEqual(MAX_REGEX_GROUPS, 10);
+            assert.strictEqual(DEFAULT_LIMIT, 50);
+            assert.strictEqual(MAX_DURATION_MS, 86400000); // 24 hours
+        });
+    });
+});
+//# sourceMappingURL=input-validator.test.js.map

package/dist/lib/input-validator.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"input-validator.test.js","sourceRoot":"","sources":["../../src/lib/input-validator.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,WAAW,CAAC;AACzC,OAAO,MAAM,MAAM,aAAa,CAAC;AACjC,OAAO,EACL,aAAa,EACb,gBAAgB,EAChB,iBAAiB,EACjB,oBAAoB,EACpB,oBAAoB,EACpB,sBAAsB,EACtB,SAAS,EACT,mBAAmB,EACnB,gBAAgB,EAChB,gBAAgB,EAChB,aAAa,EACb,eAAe,GAChB,MAAM,sBAAsB,CAAC;AAE9B,QAAQ,CAAC,iBAAiB,EAAE,GAAG,EAAE;IAC/B,QAAQ,CAAC,eAAe,EAAE,GAAG,EAAE;QAC7B,EAAE,CAAC,4CAA4C,EAAE,GAAG,EAAE;YACpD,MAAM,MAAM,GAAG,aAAa,CAAC,SAAS,CAAC,CAAC;YACxC,MAAM,CAAC,WAAW,CAAC,MAAM,EAAE,aAAa,CAAC,CAAC;QAC5C,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,uCAAuC,EAAE,GAAG,EAAE;YAC/C,8DAA8D;YAC9D,MAAM,MAAM,GAAG,aAAa,CAAC,IAAW,CAAC,CAAC;YAC1C,MAAM,CAAC,WAAW,CAAC,MAAM,EAAE,aAAa,CAAC,CAAC;QAC5C,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,6CAA6C,EAAE,GAAG,EAAE;YACrD,MAAM,CAAC,WAAW,CAAC,aAAa,CAAC,GAAG,CAAC,EAAE,GAAG,CAAC,CAAC;YAC5C,MAAM,CAAC,WAAW,CAAC,aAAa,CAAC,GAAG,CAAC,EAAE,GAAG,CAAC,CAAC;YAC5C,MAAM,CAAC,WAAW,CAAC,aAAa,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;QAC1C,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,sDAAsD,EAAE,GAAG,EAAE;YAC9D,MAAM,CAAC,WAAW,CAAC,aAAa,CAAC,IAAI,CAAC,EAAE,SAAS,CAAC,CAAC;YACnD,MAAM,CAAC,WAAW,CAAC,aAAa,CAAC,IAAI,CAAC,EAAE,SAAS,CAAC,CAAC;YACnD,MAAM,CAAC,WAAW,CAAC,aAAa,CAAC,MAAM,CAAC,gBAAgB,CAAC,EAAE,SAAS,CAAC,CAAC;QACxE,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,kDAAkD,EAAE,GAAG,EAAE;YAC1D,MAAM,CAAC,WAAW,CAAC,aAAa,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;YACxC,MAAM,CAAC,WAAW,CAAC,aAAa,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;YACzC,MAAM,CAAC,WAAW,CAAC,aAAa,CAAC,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,CAAC;QAC7C,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,0BAA0B,EAAE,GAAG,EAAE;YAClC,MAAM,CAAC,WAAW,CAAC,aAAa,CAAC,SAAS,CAAC,EAAE,SAAS,CAAC,CAAC;YACxD,MAAM,CAAC,WAAW,CAAC,aAAa,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;QAC1C,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,kBAAkB,EAAE,GAAG,EAAE;QAChC,EAAE,CAAC,wCAAwC,EAAE,GAAG,EAAE;YAChD,MAAM,MAAM,GAAG,gBAAgB,CAAC,SAAS,EAAE,eAAe,CAAC,CAAC;YAC5D,MAAM,CAAC,WAAW,CAAC,MAAM,EAAE,SAAS,CAAC,CAAC;QACxC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,mCAAmC,EAAE,GAAG,EAAE;YAC3C,8DAA8D;YAC9D,MAAM,MAAM,GAAG,gBAAgB,CAAC,IAAW,EAAE,eAAe,CAAC,CAAC;YAC9D,MAAM,CAAC,WAAW,CAAC,MAAM,EAAE,SAAS,CAAC,CAAC;QACxC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,6CAA6C,EAAE,GAAG,EAAE;YACrD,MAAM,CAAC,WAAW,CAAC,gBAAgB,CAAC,CAAC,EAAE,eAAe,CAAC,EAAE,CAAC,CAAC,CAAC;YAC5D,MAAM,CAAC,WAAW,CAAC,gBAAgB,CAAC,IAAI,EAAE,eAAe,CAAC,EAAE,IAAI,CAAC,CAAC;YAClE,MAAM,CAAC,WAAW,CAAC,gBAAgB,CAAC,IAAI,EAAE,eAAe,CAAC,EAAE,IAAI,CAAC,CAAC;YAClE,MAAM,CAAC,WAAW,CAAC,gBAAgB,CAAC,eAAe,EAAE,eAAe,CAAC,EAAE,eAAe,CAAC,CAAC;QAC1F,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,4DAA4D,EAAE,GAAG,EAAE;YACpE,MAAM,CAAC,WAAW,CAAC,gBAAgB,CAAC,eAAe,GAAG,CAAC,EAAE,eAAe,CAAC,EAAE,eAAe,CAAC,CAAC;YAC5F,MAAM,CAAC,WAAW,CAAC,gBAAgB,CAAC,SAAS,EAAE,eAAe,CAAC,EAAE,eAAe,CAAC,CAAC;YAClF,MAAM,CAAC,WAAW,CAAC,gBAAgB,CAAC,MAAM,CAAC,gBAAgB,EAAE,eAAe,CAAC,EAAE,eAAe,CAAC,CAAC;QAClG,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,qCAAqC,EAAE,GAAG,EAAE;YAC7C,MAAM,CAAC,MAAM,CACX,GAAG,EAAE,CAAC,gBAAgB,CAAC,CAAC,CAAC,EAAE,eAAe,CAAC,EAC3C,CAAC,GAAyB,EAAE,EAAE;gBAC5B,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,KAAK,EAAE,eAAe,CAAC,CAAC;gBAC/C,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC;gBAC5C,MAAM,CAAC,EAAE,CAAC,GAAG,CAAC,OAAO,CAAC,QAAQ,CAAC,oBAAoB,CAAC,CAAC,CAAC;gBACtD,OAAO,IAAI,CAAC;YACd,CAAC,CACF,CAAC;YAEF,MAAM,CAAC,MAAM,CACX,GAAG,EAAE,CAAC,gBAAgB,CAAC,CAAC,GAAG,EAAE,eAAe,CAAC,EAC7C,CAAC,GAAyB,EAAE,EAAE;gBAC5B,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,KAAK,EAAE,eAAe,CAAC,CAAC;gBAC/C,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC;gBAC5C,OAAO,IAAI,CAAC;YACd,CAAC,CACF,CAAC;QACJ,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,0BAA0B,EAAE,GAAG,EAAE;YAClC,MAAM,CAAC,WAAW,CAAC,gBAAgB,CAAC,CAAC,EAAE,eAAe,CAAC,EAAE,CAAC,CAAC,CAAC;YAC5D,MAAM,CAAC,WAAW,CAAC,gBAAgB,CAAC,eAAe,EAAE,eAAe,CAAC,EAAE,eAAe,CAAC,CAAC;QAC1F,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,mBAAmB,EAAE,GAAG,EAAE;QACjC,EAAE,CAAC,iCAAiC,EAAE,GAAG,EAAE;YACzC,MAAM,MAAM,GAAG,iBAAiB,CAAC,YAAY,EAAE,YAAY,CAAC,CAAC;YAC7D,MAAM,CAAC,WAAW,CAAC,MAAM,CAAC,KAAK,CAAC,WAAW,EAAE,EAAE,IAAI,CAAC,CAAC;YACrD,MAAM,CAAC,WAAW,CAAC,MAAM,CAAC,KAAK,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,UAAU;YAC1D,MAAM,CAAC,WAAW,CAAC,MAAM,CAAC,KAAK,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC,CAAC;YAC9C,MAAM,CAAC,WAAW,CAAC,MAAM,CAAC,GAAG,CAAC,WAAW,EAAE,EAAE,IAAI,CAAC,CAAC;YACnD,MAAM,CAAC,WAAW,CAAC,MAAM,CAAC,GAAG,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC,CAAC;YAC7C,MAAM,CAAC,WAAW,CAAC,MAAM,CAAC,GAAG,CAAC,OAAO,EAAE,EAAE,EAAE,CAAC,CAAC;QAC/C,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,kDAAkD,EAAE,GAAG,EAAE;YAC1D,MAAM,MAAM,GAAG,iBAAiB,CAAC,SAAS,EAAE,SAAS,CAAC,CAAC;YACvD,MAAM,KAAK,GAAG,IAAI,IAAI,EAAE,CAAC;YACzB,sBAAsB;YACtB,MAAM,CAAC,WAAW,CAAC,MAAM,CAAC,GAAG,CAAC,WAAW,EAAE,EAAE,KAAK,CAAC,WAAW,EAAE,CAAC,CAAC;YAClE,MAAM,CAAC,WAAW,CAAC,MAAM,CAAC,GAAG,CAAC,QAAQ,EAAE,EAAE,KAAK,CAAC,QAAQ,EAAE,CAAC,CAAC;YAC5D,MAAM,CAAC,WAAW,CAAC,MAAM,CAAC,GAAG,CAAC,OAAO,EAAE,EAAE,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;YAC1D,0CAA0C;YAC1C,MAAM,aAAa,GAAG,IAAI,IAAI,CAAC,KAAK,CAAC,OAAO,EAAE,GAAG,mBAAmB,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC;YAC5F,MAAM,CAAC,WAAW,CAAC,MAAM,CAAC,KAAK,CAAC,WAAW,EAAE,EAAE,aAAa,CAAC,WAAW,EAAE,CAAC,CAAC;YAC5E,MAAM,CAAC,WAAW,CAAC,MAAM,CAAC,KAAK,CAAC,QAAQ,EAAE,EAAE,aAAa,CAAC,QAAQ,EAAE,CAAC,CAAC;YACtE,MAAM,CAAC,WAAW,CAAC,MAAM,CAAC,KAAK,CAAC,OAAO,EAAE,EAAE,aAAa,CAAC,OAAO,EAAE,CAAC,CAAC;QACtE,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,0CAA0C,EAAE,GAAG,EAAE;YAClD,MAAM,CAAC,MAAM,CACX,GAAG,EAAE,CAAC,iBAAiB,CAAC,SAAS,EAAE,YAAY,CAAC,EAChD,CAAC,GAAyB,EAAE,EAAE;gBAC5B,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,KAAK,EAAE,WAAW,CAAC,CAAC;gBAC3C,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,UAAU,EAAE,QAAQ,CAAC,CAAC;gBAC7C,MAAM,CAAC,EAAE,CAAC,GAAG,CAAC,OAAO,CAAC,QAAQ,CAAC,0BAA0B,CAAC,CAAC,CAAC;gBAC5D,OAAO,IAAI,CAAC;YACd,CAAC,CACF,CAAC;QACJ,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,wCAAwC,EAAE,GAAG,EAAE;YAChD,MAAM,CAAC,MAAM,CACX,GAAG,EAAE,CAAC,iBAAiB,CAAC,YAAY,EAAE,YAAY,CAAC,EACnD,CAAC,GAAyB,EAAE,EAAE;gBAC5B,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,KAAK,EAAE,SAAS,CAAC,CAAC;gBACzC,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,UAAU,EAAE,QAAQ,CAAC,CAAC;gBAC7C,MAAM,CAAC,EAAE,CAAC,GAAG,CAAC,OAAO,CAAC,QAAQ,CAAC,wBAAwB,CAAC,CAAC,CAAC;gBAC1D,OAAO,IAAI,CAAC;YACd,CAAC,CACF,CAAC;QACJ,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,qCAAqC,EAAE,GAAG,EAAE;YAC7C,MAAM,CAAC,MAAM,CACX,GAAG,EAAE,CAAC,iBAAiB,CAAC,SAAS,EAAE,YAAY,CAAC,EAChD,CAAC,GAAyB,EAAE,EAAE;gBAC5B,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,KAAK,EAAE,WAAW,CAAC,CAAC;gBAC3C,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,UAAU,EAAE,QAAQ,CAAC,CAAC;gBAC7C,OAAO,IAAI,CAAC;YACd,CAAC,CACF,CAAC;QACJ,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,0CAA0C,EAAE,GAAG,EAAE;YAClD,MAAM,CAAC,MAAM,CACX,GAAG,EAAE,CAAC,iBAAiB,CAAC,YAAY,EAAE,YAAY,CAAC,EACnD,CAAC,GAAyB,EAAE,EAAE;gBAC5B,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,KAAK,EAAE,WAAW,CAAC,CAAC;gBAC3C,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,UAAU,EAAE,QAAQ,CAAC,CAAC;gBAC7C,OAAO,IAAI,CAAC;YACd,CAAC,CACF,CAAC;QACJ,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,+BAA+B,EAAE,GAAG,EAAE;YACvC,MAAM,CAAC,MAAM,CACX,GAAG,EAAE,CAAC,iBAAiB,CAAC,YAAY,EAAE,YAAY,CAAC,EACnD,CAAC,GAAyB,EAAE,EAAE;gBAC5B,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,KAAK,EAAE,WAAW,CAAC,CAAC;gBAC3C,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,UAAU,EAAE,QAAQ,CAAC,CAAC;gBAC7C,OAAO,IAAI,CAAC;YACd,CAAC,CACF,CAAC;QACJ,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,8CAA8C,EAAE,GAAG,EAAE;YACtD,MAAM,CAAC,MAAM,CACX,GAAG,EAAE,CAAC,iBAAiB,CAAC,YAAY,EAAE,YAAY,CAAC,EACnD,CAAC,GAAyB,EAAE,EAAE;gBAC5B,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,KAAK,EAAE,WAAW,CAAC,CAAC;gBAC3C,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC;gBAC5C,MAAM,CAAC,EAAE,CAAC,GAAG,CAAC,OAAO,CAAC,QAAQ,CAAC,iBAAiB,CAAC,CAAC,CAAC;gBACnD,OAAO,IAAI,CAAC;YACd,CAAC,CACF,CAAC;QACJ,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,8CAA8C,EAAE,GAAG,EAAE;YACtD,kDAAkD;YAClD,MAAM,KAAK,GAAG,YAAY,CAAC;YAC3B,MAAM,GAAG,GAAG,YAAY,CAAC,CAAC,YAAY;YACtC,MAAM,CAAC,MAAM,CACX,GAAG,EAAE,CAAC,iBAAiB,CAAC,KAAK,EAAE,GAAG,CAAC,EACnC,CAAC,GAAyB,EAAE,EAAE;gBAC5B,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,KAAK,EAAE,WAAW,CAAC,CAAC;gBAC3C,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,UAAU,EAAE,UAAU,CAAC,CAAC;gBAC/C,MAAM,CAAC,EAAE,CAAC,GAAG,CAAC,OAAO,CAAC,QAAQ,CAAC,sBAAsB,mBAAmB,EAAE,CAAC,CAAC,CAAC;gBAC7E,OAAO,IAAI,CAAC;YACd,CAAC,CACF,CAAC;QACJ,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,uCAAuC,EAAE,GAAG,EAAE;YAC/C,MAAM,KAAK,GAAG,IAAI,IAAI,EAAE,CAAC;YACzB,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,OAAO,EAAE,GAAG,mBAAmB,CAAC,CAAC;YACrD,MAAM,QAAQ,GAAG,KAAK,CAAC,WAAW,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;YACnD,MAAM,MAAM,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;YAEtD,mBAAmB;YACnB,MAAM,MAAM,GAAG,iBAAiB,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;YACnD,MAAM,CAAC,EAAE,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;YACxB,MAAM,CAAC,EAAE,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;QACxB,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,uCAAuC,EAAE,GAAG,EAAE;YAC/C,MAAM,MAAM,GAAG,iBAAiB,CAAC,YAAY,EAAE,YAAY,CAAC,CAAC;YAC7D,MAAM,CAAC,WAAW,CAAC,MAAM,CAAC,KAAK,CAAC,OAAO,EAAE,EAAE,MAAM,CAAC,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC;QACnE,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,sBAAsB,EAAE,GAAG,EAAE;QACpC,EAAE,CAAC,qCAAqC,EAAE,GAAG,EAAE;YAC7C,MAAM,CAAC,YAAY,CAAC,GAAG,EAAE,CAAC,oBAAoB,CAAC,OAAO,CAAC,CAAC,CAAC;YACzD,MAAM,CAAC,YAAY,CAAC,GAAG,EAAE,CAAC,oBAAoB,CAAC,gBAAgB,CAAC,CAAC,CAAC;YAClE,MAAM,CAAC,YAAY,CAAC,GAAG,EAAE,CAAC,oBAAoB,CAAC,QAAQ,CAAC,CAAC,CAAC;YAC1D,MAAM,CAAC,YAAY,CAAC,GAAG,EAAE,CAAC,oBAAoB,CAAC,MAAM,CAAC,CAAC,CAAC;QAC1D,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,oDAAoD,EAAE,GAAG,EAAE;YAC5D,MAAM,CAAC,YAAY,CAAC,GAAG,EAAE,CAAC,oBAAoB,CAAC,OAAO,CAAC,CAAC,CAAC;YACzD,MAAM,CAAC,YAAY,CAAC,GAAG,EAAE,CAAC,oBAAoB,CAAC,WAAW,CAAC,CAAC,CAAC;YAC7D,uBAAuB;YACvB,MAAM,CAAC,YAAY,CAAC,GAAG,EAAE,CAAC,oBAAoB,CAAC,iCAAiC,CAAC,CAAC,CAAC;QACrF,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,qDAAqD,EAAE,GAAG,EAAE;YAC7D,gDAAgD;YAChD,MAAM,CAAC,YAAY,CAAC,GAAG,EAAE,CAAC,oBAAoB,CAAC,SAAS,CAAC,CAAC,CAAC;YAC3D,MAAM,CAAC,YAAY,CAAC,GAAG,EAAE,CAAC,oBAAoB,CAAC,yDAAyD,CAAC,CAAC,CAAC;QAC7G,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,qDAAqD,EAAE,GAAG,EAAE;YAC7D,MAAM,CAAC,YAAY,CAAC,GAAG,EAAE,CAAC,oBAAoB,CAAC,SAAS,CAAC,CAAC,CAAC;YAC3D,MAAM,CAAC,YAAY,CAAC,GAAG,EAAE,CAAC,oBAAoB,CAAC,SAAS,CAAC,CAAC,CAAC;YAC3D,MAAM,CAAC,YAAY,CAAC,GAAG,EAAE,CAAC,oBAAoB,CAAC,UAAU,CAAC,CAAC,CAAC;YAC5D,MAAM,CAAC,YAAY,CAAC,GAAG,EAAE,CAAC,oBAAoB,CAAC,UAAU,CAAC,CAAC,CAAC;QAC9D,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,8CAA8C,EAAE,GAAG,EAAE;YACtD,MAAM,WAAW,GAAG,GAAG,CAAC,MAAM,CAAC,gBAAgB,GAAG,CAAC,CAAC,CAAC;YACrD,MAAM,CAAC,MAAM,CACX,GAAG,EAAE,CAAC,oBAAoB,CAAC,WAAW,CAAC,EACvC,CAAC,GAAyB,EAAE,EAAE;gBAC5B,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,KAAK,EAAE,SAAS,CAAC,CAAC;gBACzC,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,UAAU,EAAE,WAAW,CAAC,CAAC;gBAChD,MAAM,CAAC,EAAE,CAAC,GAAG,CAAC,OAAO,CAAC,QAAQ,CAAC,sBAAsB,gBAAgB,EAAE,CAAC,CAAC,CAAC;gBAC1E,OAAO,IAAI,CAAC;YACd,CAAC,CACF,CAAC;QACJ,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,uDAAuD,EAAE,GAAG,EAAE;YAC/D,oCAAoC;YACpC,MAAM,UAAU,GAAG,qCAAqC,CAAC;YACzD,MAAM,CAAC,MAAM,CACX,GAAG,EAAE,CAAC,oBAAoB,CAAC,UAAU,CAAC,EACtC,CAAC,GAAyB,EAAE,EAAE;gBAC5B,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,KAAK,EAAE,SAAS,CAAC,CAAC;gBACzC,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,UAAU,EAAE,WAAW,CAAC,CAAC;gBAChD,MAAM,CAAC,EAAE,CAAC,GAAG,CAAC,OAAO,CAAC,QAAQ,CAAC,wBAAwB,gBAAgB,EAAE,CAAC,CAAC,CAAC;gBAC5E,OAAO,IAAI,CAAC;YACd,CAAC,CACF,CAAC;QACJ,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,sCAAsC,EAAE,GAAG,EAAE;YAC9C,MAAM,CAAC,MAAM,CACX,GAAG,EAAE,CAAC,oBAAoB,CAAC,UAAU,CAAC,EACtC,CAAC,GAAyB,EAAE,EAAE;gBAC5B,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,KAAK,EAAE,SAAS,CAAC,CAAC;gBACzC,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,UAAU,EAAE,QAAQ,CAAC,CAAC;gBAC7C,MAAM,CAAC,EAAE,CAAC,GAAG,CAAC,OAAO,CAAC,QAAQ,CAAC,uBAAuB,CAAC,CAAC,CAAC;gBACzD,OAAO,IAAI,CAAC;YACd,CAAC,CACF,CAAC;QACJ,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,sCAAsC,EAAE,GAAG,EAAE;YAC9C,MAAM,CAAC,MAAM,CACX,GAAG,EAAE,CAAC,oBAAoB,CAAC,WAAW,CAAC,EACvC,CAAC,GAAyB,EAAE,EAAE;gBAC5B,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,KAAK,EAAE,SAAS,CAAC,CAAC;gBACzC,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,UAAU,EAAE,QAAQ,CAAC,CAAC;gBAC7C,OAAO,IAAI,CAAC;YACd,CAAC,CACF,CAAC;QACJ,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,mCAAmC,EAAE,GAAG,EAAE;YAC3C,uCAAuC;YACvC,MAAM,CAAC,YAAY,CAAC,GAAG,EAAE,CAAC,oBAAoB,CAAC,mBAAmB,CAAC,CAAC,CAAC;YACrE,MAAM,CAAC,YAAY,CAAC,GAAG,EAAE,CAAC,oBAAoB,CAAC,oEAAoE,CAAC,CAAC,CAAC;QACxH,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,oDAAoD,EAAE,GAAG,EAAE;YAC5D,yCAAyC;YACzC,MAAM,CAAC,YAAY,CAAC,GAAG,EAAE,CAAC,oBAAoB,CAAC,KAAK,CAAC,CAAC,CAAC;YACvD,MAAM,CAAC,YAAY,CAAC,GAAG,EAAE,CAAC,oBAAoB,CAAC,MAAM,CAAC,CAAC,CAAC;QAC1D,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,gCAAgC,EAAE,GAAG,EAAE;YACxC,iDAAiD;YACjD,MAAM,CAAC,YAAY,CAAC,GAAG,EAAE,CAAC,oBAAoB,CAAC,oBAAoB,CAAC,CAAC,CAAC;QACxE,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,sBAAsB,EAAE,GAAG,EAAE;QACpC,EAAE,CAAC,gCAAgC,EAAE,GAAG,EAAE;YACxC,MAAM,KAAK,GAAG,IAAI,oBAAoB,CAAC,cAAc,EAAE,WAAW,EAAE,gBAAgB,CAAC,CAAC;YACtF,MAAM,CAAC,WAAW,CAAC,KAAK,CAAC,OAAO,EAAE,cAAc,CAAC,CAAC;YAClD,MAAM,CAAC,WAAW,CAAC,KAAK,CAAC,KAAK,EAAE,WAAW,CAAC,CAAC;YAC7C,MAAM,CAAC,WAAW,CAAC,KAAK,CAAC,UAAU,EAAE,gBAAgB,CAAC,CAAC;YACvD,MAAM,CAAC,WAAW,CAAC,KAAK,CAAC,IAAI,EAAE,sBAAsB,CAAC,CAAC;QACzD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,4BAA4B,EAAE,GAAG,EAAE;YACpC,MAAM,KAAK,GAAG,IAAI,oBAAoB,CAAC,MAAM,EAAE,OAAO,EAAE,YAAY,CAAC,CAAC;YACtE,MAAM,CAAC,EAAE,CAAC,KAAK,YAAY,KAAK,CAAC,CAAC;YAClC,MAAM,CAAC,EAAE,CAAC,KAAK,YAAY,oBAAoB,CAAC,CAAC;QACnD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,yBAAyB,EAAE,GAAG,EAAE;YACjC,MAAM,KAAK,GAAG,IAAI,oBAAoB,CAAC,MAAM,EAAE,OAAO,EAAE,YAAY,CAAC,CAAC;YACtE,MAAM,CAAC,EAAE,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;YACvB,MAAM,CAAC,EAAE,CAAC,KAAK,CAAC,KAAK,CAAC,QAAQ,CAAC,sBAAsB,CAAC,CAAC,CAAC;QAC1D,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,wBAAwB,EAAE,GAAG,EAAE;QACtC,EAAE,CAAC,6CAA6C,EAAE,GAAG,EAAE;YACrD,MAAM,KAAK,GAAG,IAAI,oBAAoB,CAAC,MAAM,EAAE,OAAO,EAAE,YAAY,CAAC,CAAC;YACtE,MAAM,CAAC,WAAW,CAAC,sBAAsB,CAAC,KAAK,CAAC,EAAE,IAAI,CAAC,CAAC;QAC1D,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,uCAAuC,EAAE,GAAG,EAAE;YAC/C,MAAM,KAAK,GAAG,IAAI,KAAK,CAAC,MAAM,CAAC,CAAC;YAChC,MAAM,CAAC,WAAW,CAAC,sBAAsB,CAAC,KAAK,CAAC,EAAE,KAAK,CAAC,CAAC;QAC3D,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,2CAA2C,EAAE,GAAG,EAAE;YACnD,MAAM,CAAC,WAAW,CAAC,sBAAsB,CAAC,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC,EAAE,KAAK,CAAC,CAAC;YACvE,MAAM,CAAC,WAAW,CAAC,sBAAsB,CAAC,IAAI,CAAC,EAAE,KAAK,CAAC,CAAC;YACxD,MAAM,CAAC,WAAW,CAAC,sBAAsB,CAAC,SAAS,CAAC,EAAE,KAAK,CAAC,CAAC;YAC7D,MAAM,CAAC,WAAW,CAAC,sBAAsB,CAAC,QAAQ,CAAC,EAAE,KAAK,CAAC,CAAC;QAC9D,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,WAAW,EAAE,GAAG,EAAE;QACzB,EAAE,CAAC,wCAAwC,EAAE,GAAG,EAAE;YAChD,MAAM,CAAC,WAAW,CAAC,SAAS,EAAE,IAAI,CAAC,CAAC;YACpC,MAAM,CAAC,WAAW,CAAC,mBAAmB,EAAE,GAAG,CAAC,CAAC;YAC7C,MAAM,CAAC,WAAW,CAAC,gBAAgB,EAAE,GAAG,CAAC,CAAC;YAC1C,MAAM,CAAC,WAAW,CAAC,gBAAgB,EAAE,EAAE,CAAC,CAAC;YACzC,MAAM,CAAC,WAAW,CAAC,aAAa,EAAE,EAAE,CAAC,CAAC;YACtC,MAAM,CAAC,WAAW,CAAC,eAAe,EAAE,QAAQ,CAAC,CAAC,CAAC,WAAW;QAC5D,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/lib/query-sanitizer.d.ts

@@ -0,0 +1,143 @@
+/**
+ * ClickHouse-specific query escaping and input validation
+ *
+ * Provides security utilities for sanitizing user inputs before
+ * including them in ClickHouse queries via SigNoz API.
+ */
+/**
+ * Dangerous SQL/query patterns that should never appear in user input
+ * Case-insensitive matching is used
+ */
+export declare const DANGEROUS_PATTERNS: readonly string[];
+/**
+ * Escape a string value for use in ClickHouse single-quoted strings
+ *
+ * ClickHouse uses backslash escaping for special characters.
+ * @see https://clickhouse.com/docs/en/sql-reference/syntax#string
+ *
+ * @param value - The string value to escape
+ * @returns Escaped string safe for use in single-quoted ClickHouse strings
+ */
+export declare function escapeClickHouseString(value: string): string;
+/**
+ * Escape LIKE wildcard characters for use in ClickHouse LIKE patterns
+ *
+ * This escapes % and _ which have special meaning in LIKE patterns.
+ * Use this when the user's input should be treated as a literal string
+ * in a LIKE clause, not as a pattern.
+ *
+ * @param value - The string value to escape for LIKE
+ * @returns Escaped string with LIKE wildcards escaped
+ */
+export declare function escapeClickHouseLike(value: string): string;
+/**
+ * Sanitize an identifier (column name, table name, etc.)
+ *
+ * Only allows alphanumeric characters, underscores, and dots.
+ * Removes all other characters.
+ *
+ * @param name - The identifier to sanitize
+ * @returns Sanitized identifier containing only safe characters
+ */
+export declare function sanitizeIdentifier(name: string): string;
+/**
+ * Maximum length for query input validation
+ * Prevents performance issues with very long inputs
+ */
+export declare const MAX_QUERY_INPUT_LENGTH = 10000;
+/**
+ * Check if a string contains any dangerous SQL patterns
+ *
+ * Uses case-insensitive matching and word boundary detection
+ * for most patterns to reduce false positives.
+ *
+ * Performance: O(1) Set lookup for special chars + O(1) pre-compiled regex
+ * for SQL keywords (previously O(n) with n=22 patterns).
+ *
+ * Defense in depth: Rejects inputs exceeding MAX_QUERY_INPUT_LENGTH
+ * to prevent performance issues with very long strings.
+ *
+ * Security: Uses String() to freeze input as primitive, preventing TOCTOU
+ * race conditions with Proxy objects or getter-modified values.
+ *
+ * @param input - The input string to check
+ * @returns true if dangerous pattern found, false otherwise
+ */
+export declare function containsDangerousPattern(input: string): boolean;
+/**
+ * Validate that user input does not contain dangerous patterns
+ *
+ * Throws an error if dangerous patterns are detected, including
+ * the field name for better error messages.
+ *
+ * @param input - The input string to validate
+ * @param fieldName - Name of the field being validated (for error messages)
+ * @throws Error if dangerous pattern is found
+ */
+export declare function validateQueryInput(input: string, fieldName: string): void;
+/**
+ * Options for composable value sanitization
+ */
+export interface SanitizeOptions {
+    /** Validate input for dangerous SQL patterns (default: true) */
+    validate?: boolean;
+    /** Escape for ClickHouse string context (default: true) */
+    escapeString?: boolean;
+    /** Escape LIKE wildcards before string escaping (default: false) */
+    escapeLike?: boolean;
+    /** Field name for validation error messages */
+    fieldName?: string;
+    /** Allow empty strings (default: true). When false, throws on empty input. */
+    allowEmpty?: boolean;
+}
+/**
+ * Composable value sanitizer with configurable validation and escaping
+ *
+ * Provides flexible control over which operations to apply:
+ * - validate: Check for dangerous SQL patterns
+ * - escapeString: Escape for ClickHouse string context
+ * - escapeLike: Escape LIKE wildcards (%, _)
+ *
+ * @example
+ * // Validate only (no escaping)
+ * sanitizeValue(input, { escapeString: false, fieldName: 'search' });
+ *
+ * // Escape only (no validation) - use when input is already trusted
+ * sanitizeValue(input, { validate: false });
+ *
+ * // Full sanitization for LIKE clause
+ * sanitizeValue(input, { escapeLike: true, fieldName: 'search' });
+ *
+ * @param value - The value to sanitize
+ * @param options - Sanitization options
+ * @returns Sanitized string
+ * @throws Error if validation enabled and dangerous pattern found
+ */
+export declare function sanitizeValue(value: string, options?: SanitizeOptions): string;
+/**
+ * Escape and validate a string value for use in WHERE clause conditions
+ *
+ * @deprecated Use sanitizeValue() for more flexibility:
+ *   sanitizeValue(value, { fieldName }) - same behavior
+ *   sanitizeValue(value, { validate: false }) - escape only
+ *
+ * @param value - The value to escape
+ * @param fieldName - Name of the field (for error messages)
+ * @returns Escaped string safe for ClickHouse queries
+ * @throws Error if dangerous pattern is found
+ */
+export declare function escapeFilterValueSafe(value: string, fieldName: string): string;
+/**
+ * Escape and validate a value for use in LIKE clauses
+ *
+ * @deprecated Use sanitizeValue() for more flexibility:
+ *   sanitizeValue(value, { escapeLike: true, fieldName }) - same behavior
+ *   sanitizeValue(value, { escapeLike: true, validate: false }) - escape only
+ *
+ * @param value - The value to escape
+ * @param fieldName - Name of the field (for error messages)
+ * @returns Escaped string safe for ClickHouse LIKE clauses
+ * @throws Error if dangerous pattern is found
+ */
+export declare function escapeLikeValueSafe(value: string, fieldName: string): string;
+//# sourceMappingURL=query-sanitizer.d.ts.map

package/dist/lib/query-sanitizer.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"query-sanitizer.d.ts","sourceRoot":"","sources":["../../src/lib/query-sanitizer.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH;;;GAGG;AACH,eAAO,MAAM,kBAAkB,EAAE,SAAS,MAAM,EAuBtC,CAAC;AAEX;;;;;;;;GAQG;AACH,wBAAgB,sBAAsB,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM,CAc5D;AAED;;;;;;;;;GASG;AACH,wBAAgB,oBAAoB,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM,CAO1D;AAED;;;;;;;;GAQG;AACH,wBAAgB,kBAAkB,CAAC,IAAI,EAAE,MAAM,GAAG,MAAM,CAEvD;AAED;;;GAGG;AACH,eAAO,MAAM,sBAAsB,QAAQ,CAAC;AAiD5C;;;;;;;;;;;;;;;;;GAiBG;AACH,wBAAgB,wBAAwB,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAqB/D;AAED;;;;;;;;;GASG;AACH,wBAAgB,kBAAkB,CAAC,KAAK,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,GAAG,IAAI,CAIzE;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,gEAAgE;IAChE,QAAQ,CAAC,EAAE,OAAO,CAAC;IACnB,2DAA2D;IAC3D,YAAY,CAAC,EAAE,OAAO,CAAC;IACvB,oEAAoE;IACpE,UAAU,CAAC,EAAE,OAAO,CAAC;IACrB,+CAA+C;IAC/C,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,8EAA8E;IAC9E,UAAU,CAAC,EAAE,OAAO,CAAC;CACtB;AAED;;;;;;;;;;;;;;;;;;;;;;GAsBG;AACH,wBAAgB,aAAa,CAAC,KAAK,EAAE,MAAM,EAAE,OAAO,GAAE,eAAoB,GAAG,MAAM,CA+BlF;AAED;;;;;;;;;;;GAWG;AACH,wBAAgB,qBAAqB,CAAC,KAAK,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,GAAG,MAAM,CAE9E;AAED;;;;;;;;;;;GAWG;AACH,wBAAgB,mBAAmB,CAAC,KAAK,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,GAAG,MAAM,CAE5E"}