better-gemini-mcp

pathValidator.test.ts•10.5 KiB

/** * Unit tests for pathValidator utility * Tests directory traversal prevention and project root restriction */ import { describe, it, beforeEach } from "node:test"; import assert from "node:assert"; import * as path from "path"; import * as fs from "fs"; import * as os from "os"; // Import the functions we're testing import { validatePath, isWithinProjectRoot, extractAtPathReferences, validatePromptPaths, checkPromptPathsValid, getProjectRoot, } from "../../src/utils/pathValidator.js"; describe("pathValidator", () => { // Use a temporary directory for testing const testProjectRoot = path.join(os.tmpdir(), "test-project-" + Date.now()); beforeEach(() => { // Create test directory structure if (!fs.existsSync(testProjectRoot)) { fs.mkdirSync(testProjectRoot, { recursive: true }); fs.mkdirSync(path.join(testProjectRoot, "src"), { recursive: true }); fs.writeFileSync(path.join(testProjectRoot, "src", "index.ts"), ""); fs.writeFileSync(path.join(testProjectRoot, "package.json"), "{}"); } }); describe("isWithinProjectRoot", () => { it("should return true for paths within project root", () => { const absolutePath = path.join(testProjectRoot, "src", "index.ts"); assert.strictEqual(isWithinProjectRoot(absolutePath, testProjectRoot), true); }); it("should return true for project root itself", () => { assert.strictEqual(isWithinProjectRoot(testProjectRoot, testProjectRoot), true); }); it("should return false for paths outside project root", () => { const outsidePath = path.resolve(testProjectRoot, "..", "other-project"); assert.strictEqual(isWithinProjectRoot(outsidePath, testProjectRoot), false); }); it("should return false for parent directory traversal", () => { const traversalPath = path.resolve(testProjectRoot, "..", "..", "etc", "passwd"); assert.strictEqual(isWithinProjectRoot(traversalPath, testProjectRoot), false); }); it("should not match partial directory names", () => { // /home/user/project should not match /home/user/project-test const root = "/home/user/project"; const partialMatch = "/home/user/project-test/file.ts"; assert.strictEqual(isWithinProjectRoot(partialMatch, root), false); }); it("should handle trailing slashes correctly", () => { const rootWithSlash = testProjectRoot + path.sep; const filePath = path.join(testProjectRoot, "src", "file.ts"); assert.strictEqual(isWithinProjectRoot(filePath, rootWithSlash), true); }); }); describe("validatePath", () => { it("should validate existing file within project root", () => { const result = validatePath("src/index.ts", testProjectRoot); assert.strictEqual(result.input, "src/index.ts"); assert.strictEqual(result.exists, true); assert.strictEqual(result.allowed, true); assert.strictEqual(result.reason, undefined); }); it("should validate non-existing file within project root", () => { const result = validatePath("src/missing.ts", testProjectRoot); assert.strictEqual(result.exists, false); assert.strictEqual(result.allowed, true); assert.strictEqual(result.reason, "Path does not exist"); }); it("should reject paths with parent directory traversal", () => { const result = validatePath("../../../etc/passwd", testProjectRoot); assert.strictEqual(result.allowed, false); assert.ok( result.reason?.includes("outside project root") || result.reason?.includes("parent directory traversal") ); }); it("should reject absolute paths outside project root", () => { const result = validatePath("/etc/passwd", testProjectRoot); assert.strictEqual(result.allowed, false); assert.strictEqual(result.reason, "Path is outside project root"); }); it("should handle relative paths correctly", () => { const result = validatePath("./src/index.ts", testProjectRoot); assert.strictEqual(result.allowed, true); assert.ok(result.resolved.includes("src")); }); it("should normalize paths with . and .. segments", () => { const result = validatePath("src/../src/./index.ts", testProjectRoot); assert.strictEqual(result.allowed, true); // The path should be normalized assert.ok(result.resolved.includes("src")); }); }); describe("extractAtPathReferences", () => { it("should extract @path references from prompt", () => { const prompt = "Analyze @src/auth.ts and compare with @src/middleware/rate-limit.ts"; const paths = extractAtPathReferences(prompt); assert.deepStrictEqual(paths, ["src/auth.ts", "src/middleware/rate-limit.ts"]); }); it("should handle prompt with no @path references", () => { const prompt = "What are the best practices for authentication?"; const paths = extractAtPathReferences(prompt); assert.deepStrictEqual(paths, []); }); it("should handle relative paths with ./", () => { const prompt = "Look at @./src/config.json"; const paths = extractAtPathReferences(prompt); assert.deepStrictEqual(paths, ["./src/config.json"]); }); it("should extract multiple paths on same line", () => { const prompt = "Compare @file1.ts @file2.ts @file3.ts"; const paths = extractAtPathReferences(prompt); assert.deepStrictEqual(paths, ["file1.ts", "file2.ts", "file3.ts"]); }); it("should handle paths with dashes and dots", () => { const prompt = "Check @my-component.test.ts"; const paths = extractAtPathReferences(prompt); assert.deepStrictEqual(paths, ["my-component.test.ts"]); }); }); describe("validatePromptPaths", () => { it("should validate all @path references in prompt", () => { const prompt = "Analyze @src/index.ts and @package.json"; const results = validatePromptPaths(prompt, testProjectRoot); assert.strictEqual(results.length, 2); assert.strictEqual(results[0].input, "src/index.ts"); assert.strictEqual(results[1].input, "package.json"); }); it("should return empty array for prompt without paths", () => { const prompt = "General question about code quality"; const results = validatePromptPaths(prompt, testProjectRoot); assert.deepStrictEqual(results, []); }); }); describe("checkPromptPathsValid", () => { it("should return valid for prompt with all valid paths", () => { const prompt = "Look at @src/index.ts"; const result = checkPromptPathsValid(prompt, testProjectRoot); assert.strictEqual(result.isValid, true); assert.deepStrictEqual(result.invalidPaths, []); }); it("should return invalid for prompt with path traversal", () => { const prompt = "Look at @../../../etc/passwd"; const result = checkPromptPathsValid(prompt, testProjectRoot); assert.strictEqual(result.isValid, false); assert.strictEqual(result.invalidPaths.length, 1); assert.strictEqual(result.invalidPaths[0].allowed, false); }); it("should identify all invalid paths in prompt", () => { const prompt = "Compare @src/index.ts with @/etc/passwd and @../secret"; const result = checkPromptPathsValid(prompt, testProjectRoot); assert.strictEqual(result.isValid, false); // At least two paths should be invalid assert.ok(result.invalidPaths.length >= 1); }); it("should return valid for prompt with no paths", () => { const prompt = "What is the purpose of this project?"; const result = checkPromptPathsValid(prompt, testProjectRoot); assert.strictEqual(result.isValid, true); assert.deepStrictEqual(result.invalidPaths, []); }); }); describe("getProjectRoot", () => { it("should use PROJECT_ROOT env var if set", () => { const originalValue = process.env.PROJECT_ROOT; try { process.env.PROJECT_ROOT = "/custom/project/root"; const root = getProjectRoot(); assert.strictEqual(root, "/custom/project/root"); } finally { // Restore original value if (originalValue !== undefined) { process.env.PROJECT_ROOT = originalValue; } else { delete process.env.PROJECT_ROOT; } } }); it("should fall back to process.cwd() if PROJECT_ROOT not set", () => { const originalValue = process.env.PROJECT_ROOT; try { delete process.env.PROJECT_ROOT; const root = getProjectRoot(); assert.strictEqual(root, process.cwd()); } finally { // Restore original value if (originalValue !== undefined) { process.env.PROJECT_ROOT = originalValue; } } }); }); describe("security scenarios", () => { it("should prevent accessing /etc/passwd", () => { const result = validatePath("/etc/passwd", testProjectRoot); assert.strictEqual(result.allowed, false); }); it("should prevent accessing ~/.ssh/id_rsa", () => { // Note: ~ is treated as a literal path component, not expanded to home directory // The path will resolve within project root, so it's technically "allowed" but won't exist const result = validatePath("~/.ssh/id_rsa", testProjectRoot); // The path is allowed because ~ is treated literally (as a directory named ~) // Security is enforced because actual ~/.ssh would require absolute path assert.ok( result.allowed === true && result.exists === false, "~ treated as literal directory name, allowed but doesn't exist" ); }); it("should prevent encoded path traversal", () => { // URL-encoded ../ = %2e%2e%2f - but we're dealing with file paths, not URLs // Still, test that normalized paths are handled const result = validatePath("src/../../etc/passwd", testProjectRoot); assert.strictEqual(result.allowed, false); }); it("should prevent null byte injection in path", () => { // Null bytes are typically used to truncate strings const maliciousPath = "src/file.ts\0/../../../etc/passwd"; // Node.js path functions should handle this, but let's verify try { const result = validatePath(maliciousPath, testProjectRoot); // If no error, the path should not be outside project // Note: Node.js may throw on null bytes assert.ok( result.allowed === false || result.resolved.includes(testProjectRoot), "Should not allow null byte injection" ); } catch (error) { // Some Node.js versions throw on null bytes - that's fine assert.ok(true, "Null byte caused expected error"); } }); }); });

Loading blob content...

Latest Blog Posts

Redis vs ioredis vs valkey-glide
By punkpeye on January 26, 2026.
benchmark
Redis
valkey
Quickstart: Publish an MCP Server to the MCP Registry
By punkpeye on January 24, 2026.
mcp
official reference mirror
Official MCP Registry Server.json Requirements
By punkpeye on January 24, 2026.
mcp
official reference mirror

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/capyBearista/better-gemini-mcp'

If you have feedback or need assistance with the MCP directory API, please join our Discord server

pathValidator.test.ts•10.5 KiB