farcasclaudiu/openclaw
1
0
Fork 0
mirror of https://github.com/farcasclaudiu/openclaw.git synced 2026-06-29 09:02:02 +03:00
Code Issues Packages Projects Releases Wiki Activity

Signal: harden E.164 validation

Browse Source
This commit is contained in:
Vignesh Natarajan
2026-02-12 15:21:42 -08:00
parent a363e2ca5e
commit 4543c401b4
2 changed files with 13 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files
src/channels/plugins/onboarding/signal.test.ts
+5 -1
View File
@@ -1,5 +1,4 @@
import { describe, expect, it } from "vitest"; import { describe, expect, it } from "vitest";
import { normalizeSignalAccountInput } from "./signal.js"; import { normalizeSignalAccountInput } from "./signal.js";
describe("normalizeSignalAccountInput", () => { describe("normalizeSignalAccountInput", () => {
@@ -20,6 +19,11 @@ describe("normalizeSignalAccountInput", () => {
expect(normalizeSignalAccountInput("++--")).toBeNull(); expect(normalizeSignalAccountInput("++--")).toBeNull();
}); });
it("rejects inputs with stray + characters", () => {
expect(normalizeSignalAccountInput("++12345")).toBeNull();
expect(normalizeSignalAccountInput("+1+2345")).toBeNull();
});
it("rejects numbers that are too short or too long", () => { it("rejects numbers that are too short or too long", () => {
expect(normalizeSignalAccountInput("+1234")).toBeNull(); expect(normalizeSignalAccountInput("+1234")).toBeNull();
expect(normalizeSignalAccountInput("+1234567890123456")).toBeNull(); expect(normalizeSignalAccountInput("+1234567890123456")).toBeNull();
src/channels/plugins/onboarding/signal.ts
+8 -2
View File
@@ -18,6 +18,7 @@ import { addWildcardAllowFrom, promptAccountId } from "./helpers.js";
const channel = "signal" as const; const channel = "signal" as const;
const MIN_E164_DIGITS = 5; const MIN_E164_DIGITS = 5;
const MAX_E164_DIGITS = 15; const MAX_E164_DIGITS = 15;
const DIGITS_ONLY = /^\d+$/;
const INVALID_SIGNAL_ACCOUNT_ERROR = const INVALID_SIGNAL_ACCOUNT_ERROR =
"Invalid E.164 phone number (must start with + and country code, e.g. +15555550123)"; "Invalid E.164 phone number (must start with + and country code, e.g. +15555550123)";
@@ -28,10 +29,13 @@ export function normalizeSignalAccountInput(value: string | null | undefined): s
} }
const normalized = normalizeE164(trimmed); const normalized = normalizeE164(trimmed);
const digits = normalized.slice(1); const digits = normalized.slice(1);
if (!DIGITS_ONLY.test(digits)) {
return null;
}
if (digits.length < MIN_E164_DIGITS || digits.length > MAX_E164_DIGITS) { if (digits.length < MIN_E164_DIGITS || digits.length > MAX_E164_DIGITS) {
return null; return null;
} }
return normalized; return `+${digits}`;
} }
function setSignalDmPolicy(cfg: OpenClawConfig, dmPolicy: DmPolicy) { function setSignalDmPolicy(cfg: OpenClawConfig, dmPolicy: DmPolicy) {
@@ -273,7 +277,9 @@ export const signalOnboardingAdapter: ChannelOnboardingAdapter = {
message: `Signal account set (${account}). Keep it?`, message: `Signal account set (${account}). Keep it?`,
initialValue: true, initialValue: true,
}); });
if (!keep) account = ""; if (!keep) {
account = "";
}
} }
} }