Skip to content

Commit

Permalink
fix: prototype vulnerability
Browse files Browse the repository at this point in the history
  • Loading branch information
@abhishek305
abhishek305 committed Sep 2, 2024
1 parent c5cd2a0 commit ddab5d4
Show file tree
Hide file tree
Showing 3 changed files with 33 additions and 11 deletions.
29 changes: 24 additions & 5 deletions src/entry.ts
View file
Original file line number Diff line number Diff line change
Expand Up @@ -90,6 +90,24 @@ class Entry {
return this._data;
}

/**
*
*
* Safely retrieves the value of a property from an object.
*
* This function checks if the object has the specified property as its own property
* (i.e., not inherited from the prototype chain) before accessing it. This helps
* mitigate prototype pollution vulnerabilities.
*
* @param {GenericObjectType} obj - The object from which to retrieve the property.
* @param {string | number} key - The key of the property to retrieve.
* @returns {any} - The value of the property if it exists, otherwise undefined.
*/

getPropertySafely(obj: GenericObjectType, key: string | number) {
return Object.prototype.hasOwnProperty.call(obj, key) ? obj[key] : undefined;
}

/**
* Gets the field object for the saved data, which allows you to interact with the field.
* This object will have all the same methods and properties of appSDK.location.CustomField.field.
Expand All @@ -109,7 +127,7 @@ class Entry {
const { FieldInstance = Field } = this._options._internalFlags || {};

const path = uid.split(".");
let value = useUnsavedSchema
let value: GenericObjectType = useUnsavedSchema
? this._changedData || this._data
: this._data;
let schema: Schema[0] = this.content_type.schema;
Expand All @@ -125,6 +143,7 @@ class Entry {
try {
let skipNext = false;
let skipNextTwo = false;

path.forEach((key: string | number, index: number) => {
if (skipNext) {
if (skipNextTwo) {
Expand All @@ -140,7 +159,7 @@ class Entry {
throw Error("schema not found");
}

value = value && value[key];
value = this.getPropertySafely(value, key);

if (
(schema.data_type === "group" ||
Expand All @@ -156,7 +175,7 @@ class Entry {
path.length !== index + 1
) {
schema = schema.schema;
value = value && value[path[index + 1]];
value = this.getPropertySafely(value, path[index + 1]);
skipNext = true;
} else if (
schema.data_type === "blocks" &&
Expand All @@ -168,10 +187,10 @@ class Entry {
);
if (path.length === index + 2) {
// complete block value with uid
value = value && value[path[index + 1]];
value = this.getPropertySafely(value, path[index + 1]);
} else {
// block value without uid
value = value && value[path[index + 1]][blockId];
value = this.getPropertySafely(value, path[index + 1])[blockId];
schema = schema.schema;
}

Expand Down
9 changes: 5 additions & 4 deletions src/field.ts
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,6 @@ import postRobot from "post-robot";
import { IFieldInitData, IFieldModifierLocationInitData } from "./types";
import { GenericObjectType } from "./types/common.types";
import { Schema } from "./types/stack.types";
import { Entry as EntryType } from "../src/types/entry.types";

const excludedDataTypesForSetField = [
"file",
Expand Down Expand Up @@ -87,10 +86,12 @@ class Field {
? fieldObj.schema.$uid
: fieldObj.uid;
const path = schemaPath.split(".");
let value = event.data;

let value: GenericObjectType = new Map(Object.entries(event.data));
path.forEach((key) => {
value = value && value[key];
if (value) {
value = value.get(key);
}
});

if (fieldObj._data !== value) {
Expand Down
6 changes: 4 additions & 2 deletions src/fieldModifierLocation/field.ts
View file
Original file line number Diff line number Diff line change
Expand Up @@ -90,10 +90,12 @@ class FieldModifierLocationField {
? fieldObj.schema.$uid
: fieldObj.uid;
const path = schemaPath.split(".");
let value = event.data;
let value: GenericObjectType = new Map(Object.entries(event.data));

path.forEach((key) => {
value = value && value[key];
if (value) {
value = value.get(key);
}
});

if (fieldObj._data !== value) {
Expand Down

0 comments on commit ddab5d4

Please sign in to comment.