fix(security): harden plugin/hook npm installs

2026-05-07 22:01:24 +00:00 · 2026-02-14 14:07:07 +01:00
parent d69b32a073
commit 6f7d31c426
10 changed files with 391 additions and 119 deletions
--- a/src/infra/npm-registry-spec.ts
+++ b/src/infra/npm-registry-spec.ts
@@ -0,0 +1,41 @@
+export function validateRegistryNpmSpec(rawSpec: string): string | null {
+  const spec = rawSpec.trim();
+  if (!spec) {
+    return "missing npm spec";
+  }
+  if (/\s/.test(spec)) {
+    return "unsupported npm spec: whitespace is not allowed";
+  }
+  // Registry-only: no URLs, git, file, or alias protocols.
+  // Keep strict: this runs on the gateway host.
+  if (spec.includes("://")) {
+    return "unsupported npm spec: URLs are not allowed";
+  }
+  if (spec.includes("#")) {
+    return "unsupported npm spec: git refs are not allowed";
+  }
+  if (spec.includes(":")) {
+    return "unsupported npm spec: protocol specs are not allowed";
+  }
+
+  const at = spec.lastIndexOf("@");
+  const hasVersion = at > 0;
+  const name = hasVersion ? spec.slice(0, at) : spec;
+  const version = hasVersion ? spec.slice(at + 1) : "";
+
+  const unscopedName = /^[a-z0-9][a-z0-9-._~]*$/;
+  const scopedName = /^@[a-z0-9][a-z0-9-._~]*\/[a-z0-9][a-z0-9-._~]*$/;
+  const isValidName = name.startsWith("@") ? scopedName.test(name) : unscopedName.test(name);
+  if (!isValidName) {
+    return "unsupported npm spec: expected <name> or <name>@<version> from the npm registry";
+  }
+  if (hasVersion) {
+    if (!version) {
+      return "unsupported npm spec: missing version/tag after @";
+    }
+    if (/[\\/]/.test(version)) {
+      return "unsupported npm spec: invalid version/tag";
+    }
+  }
+  return null;
+}