Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add tests and print out graphs on redirects #27

Merged
merged 5 commits into from
Aug 24, 2023
Merged

Add tests and print out graphs on redirects #27

merged 5 commits into from
Aug 24, 2023

Conversation

ShivanKaul
Copy link
Collaborator

@ShivanKaul ShivanKaul commented Aug 22, 2023
edited
Loading

Tests

Finally add integration tests. Local for now.

Redirection

Check if it's a redirect navigation, save the URL, stop the current load and generate a PG file. Then, load the redirect URL (rinse, repeat).

@socket-security
Copy link

socket-security bot commented Aug 22, 2023
edited
Loading

New and updated dependencies detected. Learn more about Socket for GitHub ↗︎

Packages Version New capabilities Transitives Size Publisher
mocha 10.2.0 filesystem, environment +51 4.68 MB juergba
chai 4.3.7 environment +7 927 kB chai
express 4.18.2 network, filesystem, environment +48 1.82 MB dougwilson
typescript 5.0.4...5.1.6 None +0/-0 40.1 MB typescript-bot
fs-extra 9.0.1...9.1.0 None +3/-3 187 kB ryanzim
@supercharge/promise-pool 1.2.0...1.9.0 None +0/-0 30.7 kB marcuspoehls
@typescript-eslint/parser 3.3.0...3.10.1 None +35/-26 48.6 MB jameshenry
@typescript-eslint/eslint-plugin 3.3.0...3.10.1 None +36/-27 50.3 MB jameshenry

github-actions[bot]
github-actions bot reviewed Aug 22, 2023
View reviewed changes
src/brave/crawl.ts
function writeToFile (args: CrawlArgs, url: Url, response: any, logger: Logger) {
const outputFilename = pathLib.join(
args.outputPath,
createFilename(url)
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

reported by reviewdog 🐶
[semgrep] Detected possible user input going into a path.join or path.resolve function. This could possibly lead to a path traversal vulnerability, where the attacker can access arbitrary files stored in the file system. Instead, be sure to sanitize or validate user input first.

Source: https://semgrep.dev/r/javascript.lang.security.audit.path-traversal.path-join-resolve-traversal.path-join-resolve-traversal


Cc @thypon @bcaller

pes10k
pes10k reviewed Aug 22, 2023
View reviewed changes
test/config.js Outdated Show resolved Hide resolved
@pes10k pes10k self-requested a review August 24, 2023 14:47
pes10k
pes10k approved these changes Aug 24, 2023
View reviewed changes
Copy link
Collaborator

@pes10k pes10k left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lgtm

@ShivanKaul
Copy link
Collaborator Author

Removing security label after discussion with @fmarier. The input for this tool is always us providing a URL, binary and the other parameters.

@ShivanKaul ShivanKaul merged commit 756ffe8 into main Aug 24, 2023
2 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@github-actions GitHub Actions GitHub Actions left review comments

@pes10k pes10k pes10k approved these changes

@antonok-edm antonok-edm Awaiting requested review from antonok-edm

Assignees

@thypon thypon

@bcaller bcaller

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@ShivanKaul @pes10k @thypon @bcaller @goodov