Socket
Socket
Sign inDemoInstall

formidable

Package Overview
Dependencies
Maintainers
1
Versions
78
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

formidable - npm Package Compare versions

Comparing version 1.0.2 to 1.0.3

..gitignore.un~
..npmignore.un~
.Makefile.un~
.npmignore
.package.json.un~
.Readme.md.un~
.TODO.un~
benchmark/.bench-multipart-parser.js.un~
example/.upload.js.un~
lib/.incoming_form.js.un~
lib/formidable/.file.js.un~
lib/formidable/.incoming_form.js.un~
test/.common.js.un~
test/fast/.test-incoming-form.js.un~
test/fast/test-incoming-form.js
test/fixture/.multipart.js.un~
test/fixture/file/: \ ? % * | " < > . ☃ ; ' @ # $ ^ & ( ) - _ = + { } [ ] ` ~.txt
test/fixture/http/special-chars-in-filename/.Info.md.un~
test/fixture/http/special-chars-in-filename/.opera-9.8.txt.un~
test/fixture/http/special-chars-in-filename/info.md
test/fixture/http/special-chars-in-filename/osx-chrome-13.http
test/fixture/http/special-chars-in-filename/osx-firefox-3.6.http
test/fixture/http/special-chars-in-filename/osx-safari-5.http
test/fixture/http/special-chars-in-filename/xp-chrome-12.http
test/fixture/http/special-chars-in-filename/xp-ie-7.http
test/fixture/http/special-chars-in-filename/xp-ie-8.http
test/fixture/http/special-chars-in-filename/xp-safari-5.http
test/fixture/js/.special-chars-in-filename.js.un~
test/fixture/js/.special-chars-in-filename.json.un~
test/fixture/js/special-chars-in-filename.js
test/fixture/multi_video.upload
test/legacy/.common.js.un~
test/legacy/common.js
test/legacy/integration/.test-multipart-parser.js.un~
test/legacy/integration/test-multipart-parser.js
test/legacy/simple/.test-file.js.un~
test/legacy/simple/.test-incoming-form.js.un~
test/legacy/simple/.test-multipart-parser.js.un~
test/legacy/simple/.test-querystring-parser.js.un~
test/legacy/simple/test-file.js
test/legacy/simple/test-incoming-form.js
test/legacy/simple/test-multipart-parser.js
test/legacy/simple/test-querystring-parser.js
test/legacy/system/.test-multi-video-upload.js.un~
test/legacy/system/test-multi-video-upload.js
test/run.js
test/slow/.test-fixtures.js.un~
test/slow/test-fixtures.js
tool/.record_upload.js.un~
tool/.record.js.un~
tool/record.js

17

lib/incoming_form.js

@@ -281,4 +281,5 @@ if (global.GENTLY) require = GENTLY.hijack(require);

if (m = headerValue.match(/filename="([^;]+)"/i)) {
part.filename = m[1].substr(m[1].lastIndexOf('\\') + 1);
var filename = self._fileName(headerValue);
if (filename) {
part.filename = filename;
}

@@ -313,2 +314,14 @@ } else if (headerField == 'content-type') {

IncomingForm.prototype._fileName = function(headerValue) {
var m = headerValue.match(/filename="(.+?)"($|; )/i)
if (!m) return;
var filename = m[1].substr(m[1].lastIndexOf('\\') + 1);
filename = filename.replace(/%22/g, '"');
filename = filename.replace(/&#([\d]{4});/g, function(m, code) {
return String.fromCharCode(code);
});
return filename;
};
IncomingForm.prototype._initUrlencoded = function() {

@@ -315,0 +328,0 @@ this.type = 'urlencoded';

8

lib/multipart_parser.js

@@ -210,9 +210,7 @@ var Buffer = require('buffer').Buffer,

// boyer-moore derrived algorithm to safely skip non-boundary data
while (i + boundaryLength <= bufferLength) {
if (buffer[i + boundaryEnd] in boundaryChars) {
break;
}
i += boundaryEnd;
while (i < bufferLength && !(buffer[i] in boundaryChars)) {
i += boundaryLength;
}
i -= boundaryEnd;
c = buffer[i];

@@ -219,0 +217,0 @@ }

8

package.json
{
"name": "formidable",
"version": "1.0.2",
"version": "1.0.3",
"dependencies": {},
"devDependencies": {
"gently": ">=0.7.0"
"gently": "0.8.0",
"far": "0.0.7",
"fast-or-slow": "0.0.5",
"findit": "0.1.1",
"hashish": "0.0.4"
},

@@ -8,0 +12,0 @@ "directories": {

8

Readme.md

@@ -23,2 +23,8 @@ # Formidable

### v1.0.3
* Fix problems with utf8 characters (#84) / semicolons in filenames (#58)
* Small performance improvements
* New test suite and fixture system
### v1.0.2

@@ -126,3 +132,3 @@

);
});
}).listen(80);

@@ -129,0 +135,0 @@ ## API

36

test/common.js

@@ -1,24 +0,20 @@

var path = require('path'),
fs = require('fs');
var mysql = require('..');
var path = require('path');
try {
global.Gently = require('gently');
} catch (e) {
throw new Error('this test suite requires node-gently');
}
var root = path.join(__dirname, '../');
exports.dir = {
root: root,
lib: root + '/lib',
fixture: root + '/test/fixture',
tmp: root + '/test/tmp',
};
exports.lib = path.join(__dirname, '../lib');
exports.port = 13532;
global.GENTLY = new Gently();
exports.formidable = require('..');
exports.fastOrSlow = require('fast-or-slow');
exports.assert = require('assert');
global.assert = require('assert');
global.TEST_PORT = 13532;
global.TEST_FIXTURES = path.join(__dirname, 'fixture');
global.TEST_TMP = path.join(__dirname, 'tmp');
// Stupid new feature in node that complains about gently attaching too many
// listeners to process 'exit'. This is a workaround until I can think of a
// better way to deal with this.
if (process.setMaxListeners) {
process.setMaxListeners(10000);
}
exports.require = function(lib) {
return require(exports.dir.lib + '/' + lib);
};
test/integration/test-multipart-parser.js
test/simple/test-file.js
test/simple/test-incoming-form.js
test/simple/test-multipart-parser.js
test/simple/test-querystring-parser.js
test/system/test-multi-video-upload.js
Makefile

Sorry, the diff of this file is not supported yet

SocketSocket SOC 2 Logo

Product

  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap
  • Changelog

About

Packages

npm

Go

Maven

PyPI

Rubygems

Stay in touch

Get open source security insights delivered straight into your inbox.

  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc