Skip to content

Commit

Permalink
fix: validate files to be uploaded (#3872)
Browse files Browse the repository at this point in the history 
* Only allow certain file types to be uploaded

* refactor file type checking

* move file type check to docs-validator

* Add file types rule to all rules list

* Split out validator function and add a test

* Check if file exists before checking its type
  • Loading branch information
@trevorblades
trevorblades authored Jun 21, 2024
1 parent 1ae3090 commit a262eb7
Show file tree
Hide file tree
Showing 18 changed files with 264 additions and 1 deletion.
91 changes: 91 additions & 0 deletions .pnp.cjs
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

Binary file added .yarn/cache/@tokenizer-token-npm-0.3.0-4441352cc5-1d575d02d2.zip
View file
Binary file not shown.
Binary file added .yarn/cache/fast-xml-parser-npm-4.4.0-5d120445d5-ad33a4b516.zip
View file
Binary file not shown.
Binary file added .yarn/cache/file-type-npm-19.0.0-4bd3efdf69-03eec30a0b.zip
View file
Binary file not shown.
Binary file added .yarn/cache/is-svg-npm-5.0.1-2997868926-284683d6a9.zip
View file
Binary file not shown.
Binary file added .yarn/cache/peek-readable-npm-5.0.0-c469f805e3-bef5ceb505.zip
View file
Binary file not shown.
Binary file added .yarn/cache/readable-web-to-node-stream-npm-3.0.2-682f5de297-8c56cc62c6.zip
View file
Binary file not shown.
Binary file added .yarn/cache/strnum-npm-1.0.5-9ba11d2a0a-651b2031db.zip
View file
Binary file not shown.
Binary file added .yarn/cache/strtok3-npm-7.0.0-bb1edd9ba5-2ebe7ad8f2.zip
View file
Binary file not shown.
Binary file added .yarn/cache/token-types-npm-5.0.1-a86fdb8b12-32780123bc.zip
View file
Binary file not shown.
2 changes: 2 additions & 0 deletions packages/cli/yaml/docs-validator/package.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -33,6 +33,8 @@
"@fern-api/workspace-loader": "workspace:*",
"@fern-api/yaml-schema": "workspace:*",
"@types/tinycolor2": "^1.4.6",
"file-type": "^19.0.0",
"is-svg": "^5.0.1",
"next-mdx-remote": "^4.4.1",
"remark-gfm": "^3.0.1",
"tinycolor2": "^1.6.0",
Expand Down
Binary file added packages/cli/yaml/docs-validator/src/__test__/valid-file-types/bird.jpg
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added packages/cli/yaml/docs-validator/src/__test__/valid-file-types/bird.zip
View file
Binary file not shown.
17 changes: 17 additions & 0 deletions packages/cli/yaml/docs-validator/src/__test__/valid-file-types/valid-file-types.test.ts
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,17 @@
import { readFile } from "fs/promises";
import path from "path";
import { isValidFileType } from "../../rules/valid-file-types/valid-file-types";

describe("isValidFileType", () => {
it("should return true for valid file types", async () => {
const file = await readFile(path.join(__dirname, "bird.jpg"));
const isValid = await isValidFileType(file);
expect(isValid).toBe(true);
});

it("should return false for invalid file types", async () => {
const file = await readFile(path.join(__dirname, "bird.zip"));
const isValid = await isValidFileType(file);
expect(isValid).toBe(false);
});
});
4 changes: 3 additions & 1 deletion packages/cli/yaml/docs-validator/src/getAllRules.ts
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,7 @@ import { Rule } from "./Rule";
import { AccentColorContrastRule } from "./rules/accent-color-contrast";
import { FilepathsExistRule } from "./rules/filepaths-exist";
import { OnlyVersionedNavigation } from "./rules/only-versioned-navigation";
import { ValidFileTypes } from "./rules/valid-file-types";
import { ValidMarkdownRule } from "./rules/valid-markdown";
import { ValidMarkdownLinks } from "./rules/valid-markdown-link";
import { ValidateVersionFileRule } from "./rules/validate-version-file";
Expand All @@ -13,6 +14,7 @@ export function getAllRules(): Rule[] {
OnlyVersionedNavigation,
ValidateVersionFileRule,
AccentColorContrastRule,
ValidMarkdownLinks
ValidMarkdownLinks,
ValidFileTypes
];
}
1 change: 1 addition & 0 deletions packages/cli/yaml/docs-validator/src/rules/valid-file-types/index.ts
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
export { ValidFileTypes } from "./valid-file-types";
67 changes: 67 additions & 0 deletions packages/cli/yaml/docs-validator/src/rules/valid-file-types/valid-file-types.ts
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,67 @@
import { doesPathExist } from "@fern-api/fs-utils";
import { fileTypeFromBuffer } from "file-type";
import { readFile } from "fs/promises";
import isSvg from "is-svg";
import { Rule } from "../../Rule";

const ALLOWED_FILE_TYPES = [
// image files
"image/jpeg",
"image/png",
"image/gif",
"image/webp",
"image/tiff",
// video files
"video/quicktime",
"video/mp4",
"video/webm",
// audio files
"audio/mpeg",
"audio/ogg",
"audio/wav",
// document files
"application/pdf"
];

export const ValidFileTypes: Rule = {
name: "valid-file-types",
create: () => {
return {
filepath: async ({ absoluteFilepath, value }) => {
const doesExist = await doesPathExist(absoluteFilepath);

if (doesExist) {
const file = await readFile(absoluteFilepath);
const isValid = await isValidFileType(file);

if (!isValid) {
return [
{
severity: "error",
message: `File type of ${value} is invalid`
}
];
}
}

return [];
}
};
}
};

export const isValidFileType = async (file: Buffer): Promise<boolean> => {
if (isSvg(file.toString("utf-8"))) {
// exit early if the file is an SVG
return true;
}

// otherwise, check the file type
const fileType = await fileTypeFromBuffer(file);
if (fileType && ALLOWED_FILE_TYPES.includes(fileType.mime)) {
return true;
}

// in all other cases, return false
return false;
};
Loading

0 comments on commit a262eb7

Please sign in to comment.