praisonai 1.7.1 → 1.7.2

package/dist/workflows/yaml-parser.js

@@ -42,12 +42,19 @@ exports.createWorkflowFromYAML = createWorkflowFromYAML;
 exports.loadWorkflowFromFile = loadWorkflowFromFile;
 exports.validateWorkflowDefinition = validateWorkflowDefinition;
 const index_1 = require("./index");
+const path = __importStar(require("path"));
+// Whitelist of allowed step keys to prevent injection
+const ALLOWED_STEP_KEYS = new Set([
+    'type', 'agent', 'tool', 'input', 'output', 'condition',
+    'onError', 'maxRetries', 'timeout', 'loopCondition', 'maxIterations',
+]);
 /**
  * Parse YAML string into workflow definition
  */
 function parseYAMLWorkflow(yamlContent) {
-    // Simple YAML parser for workflow definitions
-    // For production, use js-yaml package
+    // SECURITY: If migrating to js-yaml, you MUST use:
+    //   yaml.load(content, { schema: yaml.JSON_SCHEMA })
+    // Never use yaml.load() with DEFAULT_SCHEMA — it enables arbitrary JS execution.
     const lines = yamlContent.split('\n');
     const result = {
         name: '',
@@ -90,7 +97,11 @@ function parseYAMLWorkflow(yamlContent) {
             };
         }
         else if (currentStep) {
-            // Step properties
+            // Step properties — whitelist allowed keys to prevent injection
+            if (!ALLOWED_STEP_KEYS.has(key)) {
+                // Ignore unknown keys — do not allow arbitrary property injection
+                continue;
+            }
             if (key === 'type')
                 currentStep.type = value;
             else if (key === 'agent')
@@ -262,9 +273,35 @@ function parseValue(value) {
 /**
  * Load workflow from YAML file
  */
-async function loadWorkflowFromFile(filePath, agents = {}, tools = {}) {
+async function loadWorkflowFromFile(filePath, agents = {}, tools = {}, options = {}) {
     const fs = await Promise.resolve().then(() => __importStar(require('fs/promises')));
-    const content = await fs.readFile(filePath, 'utf-8');
+    // SECURITY: Prevent path traversal
+    const normalizedPath = path.normalize(filePath);
+    // Check for '..' as path segments (not just substring)
+    const pathSegments = normalizedPath.split(path.sep);
+    if (pathSegments.includes('..')) {
+        throw new Error('Path traversal detected: ".." path segments are not allowed');
+    }
+    let effectivePath;
+    // If basePath is specified, ensure resolvedPath stays within it
+    if (options.basePath) {
+        const resolvedBase = path.resolve(options.basePath);
+        const resolvedFile = path.resolve(options.basePath, normalizedPath);
+        if (!resolvedFile.startsWith(resolvedBase + path.sep) && resolvedFile !== resolvedBase) {
+            throw new Error(`File path must be within base directory: ${options.basePath}`);
+        }
+        effectivePath = resolvedFile;
+    }
+    else {
+        effectivePath = path.resolve(normalizedPath);
+    }
+    // SECURITY: Enforce file size limit (default 1 MB)
+    const maxSize = options.maxFileSizeBytes ?? 1048576;
+    const stat = await fs.stat(effectivePath);
+    if (stat.size > maxSize) {
+        throw new Error(`File too large: ${stat.size} bytes exceeds limit of ${maxSize} bytes`);
+    }
+    const content = await fs.readFile(effectivePath, 'utf-8');
     const definition = parseYAMLWorkflow(content);
     return createWorkflowFromYAML(definition, agents, tools);
 }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "praisonai",
-  "version": "1.7.1",
+  "version": "1.7.2",
   "description": "PraisonAI TypeScript AI Agents Framework - Node.js, npm, and Javascript AI Agents Framework",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
@@ -65,7 +65,7 @@
   },
   "dependencies": {
     "@modelcontextprotocol/sdk": "^1.12.1",
-    "axios": "^1.7.9",
+    "axios": "1.8.4",
     "dotenv": "^16.4.7",
     "fast-xml-parser": "^4.5.1",
     "node-fetch": "^2.6.9",