Add more negative test cases

haydenbleasel · haydenbleasel · commit 7e8f09140042 · 2025-12-08T13:37:37.000-08:00
diff --git a/rehype-harden/src/tests/index.test.ts b/rehype-harden/src/tests/index.test.ts
@@ -1015,6 +1015,133 @@ describe("Wildcard prefix support", () => {
     expect(link4!.properties.href).toBe("/parent");
   });
 
+  it("wildcard with no defaultOrigin still blocks dangerous protocols", async () => {
+    // Test javascript: protocol is blocked
+    const tree1 = await processMarkdown("[XSS](javascript:alert('XSS'))", {
+      allowedLinkPrefixes: ["*"],
+    });
+
+    const blocked1 = findSpanWithText(tree1, "[blocked]");
+    expect(blocked1).not.toBeNull();
+
+    // Test data: protocol is blocked for links
+    const tree2 = await processMarkdown(
+      "[Data](data:text/html,<script>alert('XSS')</script>)",
+      {
+        allowedLinkPrefixes: ["*"],
+      },
+    );
+
+    const blocked2 = findSpanWithText(tree2, "[blocked]");
+    expect(blocked2).not.toBeNull();
+
+    // Test vbscript: protocol is blocked
+    const tree3 = await processMarkdown("[VBS](vbscript:msgbox('XSS'))", {
+      allowedLinkPrefixes: ["*"],
+    });
+
+    const blocked3 = findSpanWithText(tree3, "[blocked]");
+    expect(blocked3).not.toBeNull();
+
+    // Test file: protocol is blocked
+    const tree4 = await processMarkdown("[File](file:///etc/passwd)", {
+      allowedLinkPrefixes: ["*"],
+    });
+
+    const blocked4 = findSpanWithText(tree4, "[blocked]");
+    expect(blocked4).not.toBeNull();
+
+    // Test data:image is blocked for images without allowDataImages
+    const tree5 = await processMarkdown(
+      "![Image](data:image/png;base64,iVBORw0KGg)",
+      {
+        allowedImagePrefixes: ["*"],
+        allowDataImages: false,
+      },
+    );
+
+    const blockedImg = findSpanWithText(tree5, "[Image blocked");
+    expect(blockedImg).not.toBeNull();
+  });
+
+  it("wildcard with no defaultOrigin blocks invalid/unparseable URLs", async () => {
+    // Test empty URL - markdown parsers typically convert () to href=""
+    const tree1 = await processMarkdown("[Empty]()", {
+      allowedLinkPrefixes: ["*"],
+    });
+
+    const link1 = findElement(tree1, "a");
+    // Empty href should either be blocked or converted to #
+    if (link1) {
+      expect(link1.properties.href).toBe("#");
+    } else {
+      const blocked1 = findSpanWithText(tree1, "[blocked]");
+      expect(blocked1).not.toBeNull();
+    }
+
+    // Test malformed protocol-like string
+    const tree2 = await processMarkdown("[Malformed](ht!tp://invalid)", {
+      allowedLinkPrefixes: ["*"],
+    });
+
+    // This should either be blocked or the markdown parser might treat it as text
+    const link2 = findElement(tree2, "a");
+    if (link2) {
+      // If parsed as a link, it should be blocked or normalized
+      const blocked2 = findSpanWithText(tree2, "[blocked]");
+      expect(blocked2).not.toBeNull();
+    }
+  });
+
+  it("wildcard with no defaultOrigin blocks disallowed protocols even with allowedProtocols", async () => {
+    // javascript: should be blocked even with allowedProtocols: ["*"]
+    const tree1 = await processMarkdown("[JS](javascript:alert(1))", {
+      allowedLinkPrefixes: ["*"],
+      allowedProtocols: ["*"],
+    });
+
+    const blocked1 = findSpanWithText(tree1, "[blocked]");
+    expect(blocked1).not.toBeNull();
+
+    // data: should be blocked for links even with allowedProtocols: ["*"]
+    const tree2 = await processMarkdown("[Data](data:text/html,test)", {
+      allowedLinkPrefixes: ["*"],
+      allowedProtocols: ["*"],
+    });
+
+    const blocked2 = findSpanWithText(tree2, "[blocked]");
+    expect(blocked2).not.toBeNull();
+
+    // file: should be blocked even with allowedProtocols: ["*"]
+    const tree3 = await processMarkdown("[File](file:///etc/passwd)", {
+      allowedLinkPrefixes: ["*"],
+      allowedProtocols: ["*"],
+    });
+
+    const blocked3 = findSpanWithText(tree3, "[blocked]");
+    expect(blocked3).not.toBeNull();
+  });
+
+  it("relative URLs are blocked when wildcard is not used and defaultOrigin is different", async () => {
+    // With specific prefixes and a defaultOrigin that doesn't match, relative URLs should be blocked
+    const tree1 = await processMarkdown("[Relative](/path)", {
+      defaultOrigin: "https://mysite.com",
+      allowedLinkPrefixes: ["https://example.com/"],
+    });
+
+    const blocked1 = findSpanWithText(tree1, "[blocked]");
+    expect(blocked1).not.toBeNull();
+
+    // Images should also be blocked
+    const tree2 = await processMarkdown("![Image](/image.png)", {
+      defaultOrigin: "https://mysite.com",
+      allowedImagePrefixes: ["https://example.com/"],
+    });
+
+    const blockedImg = findSpanWithText(tree2, "[Image blocked");
+    expect(blockedImg).not.toBeNull();
+  });
+
   it("wildcard works alongside other prefixes", async () => {
     const tree = await processMarkdown(
       "[Any Link](https://random-site.com/path)",
