Skip to main content
Glama

DollhouseMCP

by DollhouseMCP
npmGitHub
TypeScript
359
8
  • Apple
  • Linux
OverviewInspectNewEndpointsSchemaRelated ServersReviewsScore
Need Help?View Source CodeReport Issue
unicode-normalization.test.tsβ€’10.7 kB
/** * Unicode Normalization Security Tests * Verifies that all user inputs are properly normalized to prevent Unicode-based attacks */ import { describe, it, expect, jest, beforeEach } from '@jest/globals'; import { ServerSetup } from '../../../../src/server/ServerSetup.js'; import { Server } from '@modelcontextprotocol/sdk/server/index.js'; import { CallToolRequestSchema } from '@modelcontextprotocol/sdk/types.js'; import { UnicodeValidator } from '../../../../src/security/validators/unicodeValidator.js'; import { logger } from '../../../../src/utils/logger.js'; describe('Unicode Normalization in Tool Calls', () => { let serverSetup: ServerSetup; let mockServer: any; let mockHandler: jest.Mock; let capturedHandler: any; beforeEach(() => { serverSetup = new ServerSetup(); mockHandler = jest.fn(() => Promise.resolve({ content: [{ type: 'text', text: 'success' }] })); // Mock server to capture the request handler mockServer = { setRequestHandler: jest.fn((schema, handler) => { if (schema === CallToolRequestSchema) { capturedHandler = handler; } }) }; // Create a mock tool handler that implements IToolHandler interface const mockToolHandler = { listPersonas: jest.fn(), activatePersona: jest.fn(), getActivePersona: jest.fn(), deactivatePersona: jest.fn(), getPersonaDetails: jest.fn(), reloadPersonas: jest.fn(), browseMarketplace: jest.fn(), searchMarketplace: jest.fn(), getMarketplacePersona: jest.fn(), installPersona: jest.fn(), submitPersona: jest.fn(), setUserIdentity: jest.fn(), getUserIdentity: jest.fn(), clearUserIdentity: jest.fn(), createPersona: jest.fn(), editPersona: jest.fn(), validatePersona: jest.fn(), getBuildInfo: jest.fn(), configureIndicator: jest.fn(), getIndicatorConfig: jest.fn(), exportPersona: jest.fn(), importPersona: jest.fn(), testTool: mockHandler // Our test handler }; // Setup server with our mock serverSetup.setupServer(mockServer as any, mockToolHandler as any); // Manually register our test tool in the registry const registry = serverSetup.getToolRegistry(); registry.register({ name: 'testTool', description: 'Test tool', inputSchema: { type: 'object', properties: {} } }, mockHandler as any); }); it('should normalize Unicode in string arguments', async () => { // Test with confusable characters (Cyrillic 'Π°' that looks like Latin 'a') const request = { params: { name: 'testTool', arguments: { persona: 'Π°dmin' // Cyrillic 'Π°' + Latin 'dmin' } } }; await capturedHandler(request); // Verify the handler was called with normalized Unicode expect(mockHandler).toHaveBeenCalledWith({ persona: 'admin' // All normalized to Latin }); }); it('should normalize Unicode in nested objects', async () => { const request = { params: { name: 'testTool', arguments: { user: { name: 'tΠ΅st', // Mixed Latin and Cyrillic description: 'hello\u202Eworld' // Contains RLO character }, tags: ['tΠ°g1', 'tΠ°g2'] // Cyrillic 'Π°' in tags } } }; await capturedHandler(request); expect(mockHandler).toHaveBeenCalledWith({ user: { name: 'test', // Normalized description: 'helloworld' // RLO removed }, tags: ['tag1', 'tag2'] // Normalized }); }); it('should handle zero-width characters', async () => { const request = { params: { name: 'testTool', arguments: { content: 'hello\u200Bworld', // Zero-width space title: 'test\u200Ctitle' // Zero-width non-joiner } } }; await capturedHandler(request); expect(mockHandler).toHaveBeenCalledWith({ content: 'helloworld', // Zero-width removed title: 'testtitle' // Zero-width removed }); }); it('should handle direction override attacks', async () => { const request = { params: { name: 'testTool', arguments: { // RLO attack trying to reverse display filename: 'test\u202Etxt.exe' // Would display as "testexe.txt" } } }; await capturedHandler(request); expect(mockHandler).toHaveBeenCalledWith({ filename: 'testtxt.exe' // RLO removed, actual content preserved }); }); it('should preserve legitimate non-ASCII characters after normalization', async () => { const request = { params: { name: 'testTool', arguments: { // Legitimate use cases that should be normalized but preserved emoji: '😊🎭🏠', // Emojis should remain japanese: 'こんにけは', // Japanese should remain accented: 'cafΓ© naΓ―ve rΓ©sumΓ©' // Accented chars should remain } } }; await capturedHandler(request); expect(mockHandler).toHaveBeenCalledWith({ emoji: '😊🎭🏠', // Preserved japanese: 'こんにけは', // Preserved accented: 'cafΓ© naΓ―ve rΓ©sumΓ©' // Preserved (NFC normalized) }); }); it('should normalize arrays of strings', async () => { const request = { params: { name: 'testTool', arguments: { items: [ 'nΠΎrmal', // Cyrillic 'ΠΎ' 'tΠ΅st\u200B', // Cyrillic 'Π΅' + zero-width 'hello\u202Dworld' // LRO character ] } } }; await capturedHandler(request); expect(mockHandler).toHaveBeenCalledWith({ items: [ 'normal', // Normalized 'test', // Normalized and zero-width removed 'helloworld' // LRO removed ] }); }); it('should handle null and undefined values', async () => { const request = { params: { name: 'testTool', arguments: { nullValue: null, undefinedValue: undefined, emptyString: '', validString: 'tΠ΅st' // Cyrillic 'Π΅' } } }; await capturedHandler(request); expect(mockHandler).toHaveBeenCalledWith({ nullValue: null, undefinedValue: undefined, emptyString: '', validString: 'test' // Only this is normalized }); }); it('should preserve non-string types', async () => { const request = { params: { name: 'testTool', arguments: { number: 123, boolean: true, stringWithNumber: 'tΠ΅st123', // Cyrillic 'Π΅' array: [1, 2, 3], object: { count: 42 } } } }; await capturedHandler(request); expect(mockHandler).toHaveBeenCalledWith({ number: 123, boolean: true, stringWithNumber: 'test123', // Normalized array: [1, 2, 3], object: { count: 42 } }); }); it('should normalize object keys containing Unicode', async () => { const request = { params: { name: 'testTool', arguments: { // Object with Unicode in keys 'nΠ°me': 'value1', // Cyrillic 'Π°' in key 'test\u200B': 'value2', // Zero-width space in key normal: { 'innΠ΅r': 'value3' // Cyrillic 'Π΅' in nested key } } } }; await capturedHandler(request); expect(mockHandler).toHaveBeenCalledWith({ 'name': 'value1', // Key normalized 'test': 'value2', // Zero-width removed from key normal: { 'inner': 'value3' // Nested key normalized } }); }); it('should handle tool names with Unicode gracefully', async () => { const request = { params: { name: 'tΠ΅stTool', // Cyrillic 'Π΅' in tool name - won't match any registered tool arguments: { test: 'value' } } }; // Should throw error for unknown tool (Unicode in tool names not normalized for security) await expect(capturedHandler(request)).rejects.toThrow('Unknown tool: tΠ΅stTool'); }); it('should detect and log Unicode security issues', async () => { const loggerSpy = jest.spyOn(logger, 'warn').mockImplementation(() => {}); const request = { params: { name: 'testTool', arguments: { // Multiple security issues malicious: 'admin\u202E\u200B' + // RLO + zero-width 'Π°' + // Cyrillic homograph '\uFEFF' // Zero-width no-break space } } }; await capturedHandler(request); // Verify security issues were logged expect(loggerSpy).toHaveBeenCalledWith( expect.stringContaining('Unicode security issues detected'), expect.objectContaining({ issues: expect.arrayContaining([ expect.stringContaining('Direction override'), expect.stringContaining('Zero-width'), expect.stringContaining('Confusable') ]) }) ); loggerSpy.mockRestore(); }); }); // UpdateChecker tests removed - UpdateTools and UpdateChecker have been removed from the codebase describe('ReDoS Protection', () => { it('should handle malformed surrogates without ReDoS', async () => { // Test with a string that would cause ReDoS with the old regex const maliciousInput = 'A' + '\uD800'.repeat(1000) + 'B'; // Many unpaired high surrogates const startTime = Date.now(); const result = UnicodeValidator.normalize(maliciousInput); const endTime = Date.now(); // Should complete quickly (under 100ms) even with malicious input expect(endTime - startTime).toBeLessThan(100); expect(result.detectedIssues).toContain('Malformed surrogate pairs detected'); }); it('should correctly identify various surrogate pair issues', () => { // High surrogate at end of string let result = UnicodeValidator.normalize('test\uD800'); expect(result.detectedIssues).toContain('Malformed surrogate pairs detected'); // Low surrogate without high surrogate result = UnicodeValidator.normalize('test\uDC00'); expect(result.detectedIssues).toContain('Malformed surrogate pairs detected'); // High surrogate followed by non-surrogate result = UnicodeValidator.normalize('test\uD800a'); expect(result.detectedIssues).toContain('Malformed surrogate pairs detected'); // Valid surrogate pair (should not detect issues) result = UnicodeValidator.normalize('test\uD800\uDC00'); // Valid pair expect(result.detectedIssues || []).not.toContain('Malformed surrogate pairs detected'); }); });

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/DollhouseMCP/DollhouseMCP'

If you have feedback or need assistance with the MCP directory API, please join our Discord server