Fixes #387 - Updating DOMPurify detector and test cases

Author: eoftedal

repository/jsrepository.json

@@ -1147,6 +1147,14 @@
 					"summary": "XSS in $sanitize in Safari/Firefox"
 				},
 				"info" : [ "https://github.com/angular/angular.js/commit/8f31f1ff43b673a24f84422d5c13d6312b2c4d94" ]
+			},
+			{
+				"below" : "1.999",
+				"severity": "low",
+				"identifiers": {
+					"summary": "End-of-Life: Long term support for AngularJS has been discontinued"
+				},
+				"info" : [ "https://blog.angular.io/discontinued-long-term-support-for-angularjs-cc066b82e65a?gi=9d3103b5445c" ]
 			}
 		],
 		"extractors" : {
@@ -1495,7 +1503,9 @@
 			"filecontent"	: [
 				"DOMPurify.version = '(§§version§§)';",
 				"DOMPurify.version=\"(§§version§§)\"",
-				"DOMPurify=.[^\\r\\n]{10,500}\\.version=\"(§§version§§)\""
+				"DOMPurify=.[^\\r\\n]{10,850}?\\.version=\"(§§version§§)\"",
+				"/\\*! @license DOMPurify (§§version§§)",
+				"var .=\"dompurify\"+.{10,550}?\\.version=\"(§§version§§)\""
 			],
 			"hashes"		: {}
 		}

repository/test-detection.js

@@ -1,4 +1,5 @@
 #!/usr/bin/env node
+
 const crypto = require("crypto");
 const testCases = require("./testcases.json");
 
@@ -53,7 +54,10 @@ async function runTests(jsRepo) {
         if (limit && limit != name) continue;
         console.log(`Testing ${name}`)
         for (let [template, tcontent] of Object.entries(content)) {
-            let { versions, subversions, contentOnly } = tcontent;
+            let { versions, subversions, contentOnly, additionalVersions } = tcontent;
+            if (limit) {
+                versions = Array.from(new Set(versions.concat(additionalVersions)))
+            }
             subversions = subversions || [ "" ];
             for (let version of versions) {
                 for (let sub of subversions) {
@@ -103,4 +107,4 @@ repo.loadrepositoryFromFile("./jsrepository.json", options).on('done', (jsRepo)
     runTests(jsRepo)
         .then(() => console.log("Done!"))
         .catch(err => console.warn("Failed!", err));
-})
+}).on('error', err => console.warn("Failed!", err));

repository/testcases.json

@@ -91,10 +91,6 @@
             "versions"    : [ "12.1.6" ],
             "contentOnly" : true
         },
-        "https://nextjs.org/_next/static/chunks/main-c4649a899de7396f.js" : {
-            "versions"    : [ "12.2.4-canary.0" ],
-            "contentOnly" : true
-        },
         "https://demo.vercel.store/_next/static/chunks/main-42cf2f391f50f1e7.js" : {
             "versions"    : [ "12.1.6" ],
             "contentOnly" : true
@@ -110,5 +106,13 @@
         "https://cdnjs.cloudflare.com/ajax/libs/vue/§§version§§/vue.min.js" : {
             "versions" : [ "2.7.6", "1.0.28" ]
         }
+    },
+
+    "DOMPurify" : {
+        "https://raw.githubusercontent.com/cure53/DOMPurify/§§version§§/dist/purify.min.js" : {
+            "versions" : [ "1.0.1", "1.0.11", "2.3.10", "2.0.12" ],
+            "contentOnly" : true,
+            "additionalVersions" : [ "1.0.0", "1.0.1", "1.0.10", "1.0.11", "1.0.2", "1.0.4", "1.0.5", "1.0.6", "1.0.7", "1.0.8", "1.0.9", "2.0.0", "2.0.1", "2.0.10", "2.0.11", "2.0.12", "2.0.13", "2.0.14", "2.0.15", "2.0.16", "2.0.17", "2.0.2", "2.0.3", "2.0.4", "2.0.5", "2.0.6", "2.0.7", "2.0.8", "2.0.9", "2.1.0", "2.2.0", "2.2.2", "2.2.3", "2.2.4", "2.2.6", "2.2.7", "2.2.8", "2.2.9", "2.3.0", "2.3.1", "2.3.10", "2.3.2", "2.3.3", "2.3.4", "2.3.5", "2.3.6", "2.3.8", "2.3.9" ]
+        }
     }
 }