secure_output 0.1.2

Context-aware output encoding and URI sanitization for safer application responses.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158

//! BDD tests for OS shell encoding (M19).

use std::borrow::Cow;

use secure_output::encode::OutputEncoder;
use secure_output::shell::{encode, ShellEncoder};

/// Helper: asserts the result is single-quoted (safe shell argument).
fn assert_single_quoted(result: &str, label: &str) {
    assert!(
        result.starts_with('\'') && result.ends_with('\''),
        "{label}: expected single-quoted output, got: {result}"
    );
}

// ──────────────────────────────────────────────
// Feature: OS shell encoding
// ──────────────────────────────────────────────

#[test]
fn shell_alphanumeric_passes_through() {
    // Given: an alphanumeric string with hyphens
    let input = "backup-2024";
    // When: encoded for shell context
    let result = encode(input);
    // Then: returned unchanged
    assert_eq!(result, "backup-2024");
    assert!(matches!(result, Cow::Borrowed(_)));
}

#[test]
fn shell_semicolon_escaped() {
    // Given: a value with a semicolon for command injection
    let input = "file; rm -rf /";
    // When: encoded
    let result = encode(input);
    // Then: entire input is single-quoted so semicolon cannot be interpreted
    assert_single_quoted(&result, "semicolon");
    assert_eq!(result, "'file; rm -rf /'");
}

#[test]
fn shell_pipe_escaped() {
    // Given: a value with a pipe
    let input = "file | cat /etc/passwd";
    // When: encoded
    let result = encode(input);
    // Then: single-quoted, pipe neutralized
    assert_single_quoted(&result, "pipe");
}

#[test]
fn shell_backtick_escaped() {
    // Given: a value with backticks
    let input = "file`id`";
    // When: encoded
    let result = encode(input);
    // Then: single-quoted, backtick neutralized
    assert_single_quoted(&result, "backtick");
}

#[test]
fn shell_dollar_sign_escaped() {
    // Given: a value with dollar sign (variable injection)
    let input = "$HOME";
    // When: encoded
    let result = encode(input);
    // Then: single-quoted, dollar neutralized
    assert_single_quoted(&result, "dollar");
}

#[test]
fn shell_newline_escaped() {
    // Given: a value with a newline
    let input = "file\nid";
    // When: encoded
    let result = encode(input);
    // Then: single-quoted — newlines are safe inside single quotes
    assert_single_quoted(&result, "newline");
}

#[test]
fn shell_empty_input_returns_empty() {
    // Given: an empty string
    let input = "";
    // When: encoded
    let result = encode(input);
    // Then: returns empty
    assert_eq!(result, "");
}

#[test]
fn shell_null_byte_stripped() {
    // Given: a value with a null byte
    let input = "file\x00name";
    // When: encoded
    let result = encode(input);
    // Then: null byte is stripped
    assert!(!result.contains('\x00'));
    // The result should contain "filename" without null
    assert!(result.contains("filename"));
}

#[test]
fn shell_ampersand_escaped() {
    // Given: a value with & for background command injection
    let input = "file & id";
    // When: encoded
    let result = encode(input);
    // Then: single-quoted, ampersand neutralized
    assert_single_quoted(&result, "ampersand");
}

#[test]
fn shell_parentheses_escaped() {
    // Given: a value with parentheses for subshell injection
    let input = "$(id)";
    // When: encoded
    let result = encode(input);
    // Then: single-quoted, subshell neutralized
    assert_single_quoted(&result, "parens");
}

#[test]
fn shell_single_quote_escaped() {
    // Given: a value that contains a single quote
    let input = "it's";
    // When: encoded
    let result = encode(input);
    // Then: single quotes in input are escaped as '\'' pattern
    assert_eq!(result, "'it'\\''s'");
}

// ──────────────────────────────────────────────
// Feature: Convenience free function matches trait
// ──────────────────────────────────────────────

#[test]
fn free_function_matches_trait_shell() {
    let inputs = [
        "backup-2024",
        "file; rm -rf /",
        "file | cat /etc/passwd",
        "file`id`",
        "$HOME",
        "file\nid",
        "",
    ];
    let encoder = ShellEncoder;
    for input in &inputs {
        assert_eq!(
            encode(input).as_ref(),
            encoder.encode(input).as_ref(),
            "Mismatch for shell input: {:?}",
            input
        );
    }
}