directory-traversal-js v0.0.92

Directory Traversal JS

Safely upload files and handle paths

Motivation

Directory traversal (also known as file path traversal) is a web security vulnerability that allows an attacker to read arbitrary files on the server.

Install

$ npm install --save directory-traversal-js

Usage

Javascript

var directoryTraversalManager = require('directory-traversal-js');

const path = directoryTraversalManager.safeJoin(rootPath, filename)

Typescript

import { safeJoin } from 'directory-traversal-js';

const path: string = safeJoin(rootPath, filename);

Explanation

safeJoin throws an error in case a directory traversal has been detected or return the joined path if not.