0
0
mirror of https://github.com/renovatebot/renovate.git synced 2024-12-22 13:38:32 +00:00
renovatebot_renovate/lib/util/fs/util.ts

44 lines
1.2 KiB
TypeScript

import upath from 'upath';
import { GlobalConfig } from '../../config/global';
import { FILE_ACCESS_VIOLATION_ERROR } from '../../constants/error-messages';
import { logger } from '../../logger';
function assertBaseDir(path: string, allowedDir: string): void {
if (!path.startsWith(allowedDir)) {
logger.debug(
{ path, allowedDir },
'Preventing access to file outside allowed directory',
);
throw new Error(FILE_ACCESS_VIOLATION_ERROR);
}
}
function ensurePath(path: string, key: 'localDir' | 'cacheDir'): string {
const baseDir = upath.resolve(GlobalConfig.get(key)!);
const fullPath = upath.resolve(
upath.isAbsolute(path) ? path : upath.join(baseDir, path),
);
assertBaseDir(fullPath, baseDir);
return fullPath;
}
export function ensureLocalPath(path: string): string {
return ensurePath(path, 'localDir');
}
export function ensureCachePath(path: string): string {
return ensurePath(path, 'cacheDir');
}
export function isValidPath(
path: string,
key: 'localDir' | 'cacheDir',
): boolean {
const baseDir = upath.resolve(GlobalConfig.get(key)!);
const fullPath = upath.resolve(
upath.isAbsolute(path) ? path : upath.join(baseDir, path),
);
return fullPath.startsWith(baseDir);
}