use chrono::TimeDelta;
use once_cell::sync::Lazy;
use regex::Regex;
use super::OutputFormatter;
pub(super) use super::grouping::render_grouped;
pub(super) use crate::caa::{CaaPolicy, IssuerCaaMatch};
pub(super) use crate::colors::CatppuccinExt;
pub(super) use crate::dns::{DnsRecord, FollowIteration, FollowResult, PropagationResult};
pub(super) use crate::lookup::LookupResult;
pub(super) use crate::rdap::RdapResponse;
pub(super) use crate::status::StatusResponse;
pub(super) use crate::whois::WhoisResponse;
pub(super) use colored::Colorize;
mod diff;
mod dns;
mod domain_info;
mod lookup;
mod propagation;
mod rdap;
mod security;
mod status;
mod whois;
static ANSI_ESCAPE_RE: Lazy<Regex> = Lazy::new(|| {
Regex::new(r"\x1b\[[0-9;]*[a-zA-Z]|\x1b\][^\x07\x1b]*(?:\x07|\x1b\\)|\x1b[A-Z@-_]")
.expect("Invalid ANSI escape regex")
});
pub(super) fn sanitize_display(s: &str) -> String {
ANSI_ESCAPE_RE
.replace_all(s, "")
.chars()
.filter(|&c| c == '\n' || c == '\t' || !c.is_control())
.collect()
}
pub(crate) fn format_duration(duration: TimeDelta) -> String {
let total_secs = duration.num_seconds();
if total_secs < 60 {
format!("{}s", total_secs)
} else if total_secs < 3600 {
let mins = total_secs / 60;
let secs = total_secs % 60;
format!("{}m {}s", mins, secs)
} else {
let hours = total_secs / 3600;
let mins = (total_secs % 3600) / 60;
format!("{}h {}m", hours, mins)
}
}
pub struct HumanFormatter {
use_colors: bool,
}
impl Default for HumanFormatter {
fn default() -> Self {
Self::new()
}
}
impl HumanFormatter {
pub fn new() -> Self {
Self { use_colors: true }
}
pub fn without_colors(mut self) -> Self {
self.use_colors = false;
self
}
fn label(&self, text: &str) -> String {
if self.use_colors {
text.sky().bold().to_string()
} else {
text.to_string()
}
}
fn value(&self, text: &str) -> String {
if self.use_colors {
text.ctp_white().to_string()
} else {
text.to_string()
}
}
fn success(&self, text: &str) -> String {
if self.use_colors {
text.ctp_green().bold().to_string()
} else {
text.to_string()
}
}
fn warning(&self, text: &str) -> String {
if self.use_colors {
text.ctp_yellow().bold().to_string()
} else {
text.to_string()
}
}
fn error(&self, text: &str) -> String {
if self.use_colors {
text.ctp_red().bold().to_string()
} else {
text.to_string()
}
}
fn dim(&self, text: &str) -> String {
if self.use_colors {
text.overlay1().to_string()
} else {
text.to_string()
}
}
fn header(&self, text: &str) -> String {
let width = text.chars().count();
if self.use_colors {
format!(
"\n{}\n{}",
text.lavender().bold(),
"─".repeat(width).subtext0()
)
} else {
format!("\n{}\n{}", text, "-".repeat(width))
}
}
fn render_caa_block(&self, caa: &CaaPolicy, indent: &str) -> Vec<String> {
let mut out = Vec::new();
out.push(format!("\n{}{}:", indent, self.label("CAA Policy")));
if !caa.has_policy {
out.push(format!(
"{} {}",
indent,
self.value("No CAA records (any CA may issue)")
));
} else {
if let Some(ref eff) = caa.effective_domain {
out.push(format!(
"{} {}: {}",
indent,
self.label("Found at"),
self.value(&sanitize_display(eff))
));
}
for r in &caa.records {
out.push(format!(
"{} {} {} \"{}\"",
indent,
self.value(&r.flags.to_string()),
self.label(&r.tag),
sanitize_display(&r.value)
));
}
}
if let Some(m) = caa.issuer_match {
let rendered = match m {
IssuerCaaMatch::NoPolicy => self.value("no policy — any CA permitted"),
IssuerCaaMatch::Permitted => self.success("issuer permitted by current CAA policy"),
IssuerCaaMatch::Mismatch => self
.warning("issuer not in current CAA policy (informational — see note below)"),
IssuerCaaMatch::Indeterminate => {
self.warning("CAA present but no issue/issuewild tags")
}
};
out.push(format!(
"{} {}: {}",
indent,
self.label("Issuer vs CAA"),
rendered
));
}
out
}
fn push_caa_note_footer(&self, out: &mut Vec<String>, caa: &CaaPolicy) {
out.push(String::new());
out.push(format!("note: {}", caa.note));
}
fn format_expiry_status(&self, expiry_str: &str, days_until: i64) -> String {
if days_until < 0 {
self.error(&format!(
"{} (expired {} days ago)",
expiry_str, -days_until
))
} else if days_until < 30 {
self.error(&format!("{} (expires in {} days!)", expiry_str, days_until))
} else if days_until < 90 {
self.warning(&format!("{} (expires in {} days)", expiry_str, days_until))
} else {
self.success(&format!("{} (expires in {} days)", expiry_str, days_until))
}
}
}
impl OutputFormatter for HumanFormatter {
fn format_whois(&self, response: &WhoisResponse) -> String {
self.format_whois(response)
}
fn format_rdap(&self, response: &RdapResponse) -> String {
self.format_rdap(response)
}
fn format_dns(&self, records: &[DnsRecord]) -> String {
self.format_dns(records)
}
fn format_propagation(&self, result: &PropagationResult) -> String {
self.format_propagation(result)
}
fn format_lookup(&self, result: &LookupResult) -> String {
self.format_lookup(result)
}
fn format_status(&self, response: &StatusResponse) -> String {
self.format_status(response)
}
fn format_follow_iteration(&self, iteration: &FollowIteration) -> String {
self.format_follow_iteration(iteration)
}
fn format_follow(&self, result: &FollowResult) -> String {
self.format_follow(result)
}
fn format_availability(&self, result: &crate::availability::AvailabilityResult) -> String {
self.format_availability(result)
}
fn format_dnssec(&self, report: &crate::dns::DnssecReport) -> String {
self.format_dnssec(report)
}
fn format_tld(&self, info: &crate::tld::TldInfo) -> String {
self.format_tld(info)
}
fn format_dns_comparison(&self, comparison: &crate::dns::DnsComparison) -> String {
self.format_dns_comparison(comparison)
}
fn format_subdomains(&self, result: &crate::subdomains::SubdomainResult) -> String {
self.format_subdomains(result)
}
fn format_diff(&self, diff: &crate::diff::DomainDiff) -> String {
self.format_diff(diff)
}
fn format_ssl(&self, report: &crate::ssl::SslReport) -> String {
self.format_ssl(report)
}
fn format_watch(&self, report: &crate::watchlist::WatchReport) -> String {
self.format_watch(report)
}
fn format_domain_info(&self, info: &crate::domain_info::DomainInfo) -> String {
self.format_domain_info(info)
}
fn format_drift(&self, report: &crate::drift::DriftReport) -> String {
self.format_drift(report)
}
fn format_posture(&self, posture: &crate::posture::EmailPosture) -> String {
self.format_posture(posture)
}
fn format_caa(&self, policy: &CaaPolicy) -> String {
self.format_caa(policy)
}
fn format_confusables(&self, report: &crate::confusables::ConfusableReport) -> String {
self.format_confusables(report)
}
fn format_subdomain_classification(
&self,
result: &crate::subdomains::SubdomainClassification,
) -> String {
self.format_subdomain_classification(result)
}
fn format_subdomain_baseline_diff(
&self,
report: &crate::subdomains::SubdomainBaselineDiff,
) -> String {
self.format_subdomain_baseline_diff(report)
}
}
#[cfg(test)]
mod tests {
use super::*;
fn formatter() -> HumanFormatter {
HumanFormatter::new().without_colors()
}
#[test]
fn expired_shows_days_ago() {
let f = formatter();
let out = f.format_expiry_status("2024-01-01", -3);
assert!(out.contains("expired 3 days ago"), "got: {}", out);
assert!(!out.contains("-3"), "got: {}", out);
}
#[test]
fn expiring_soon_shows_expires_in() {
let f = formatter();
let out = f.format_expiry_status("2026-05-01", 15);
assert!(out.contains("expires in 15 days"), "got: {}", out);
assert!(!out.contains("days ago"), "got: {}", out);
}
#[test]
fn warning_window_uses_expires_in() {
let f = formatter();
let out = f.format_expiry_status("2026-07-01", 60);
assert!(out.contains("expires in 60 days"), "got: {}", out);
assert!(!out.contains("!"), "got: {}", out);
}
#[test]
fn healthy_expiry_uses_expires_in() {
let f = formatter();
let out = f.format_expiry_status("2027-01-01", 300);
assert!(out.contains("expires in 300 days"), "got: {}", out);
assert!(!out.contains("!"), "got: {}", out);
}
#[test]
fn expired_one_day_is_pluralized_simply() {
let f = formatter();
let out = f.format_expiry_status("2024-01-01", -1);
assert!(out.contains("expired 1 days ago"), "got: {}", out);
}
#[test]
fn boundary_30_days_is_warning_not_error() {
let f = formatter();
let out = f.format_expiry_status("2026-05-15", 30);
assert!(out.contains("expires in 30 days"), "got: {}", out);
assert!(!out.contains("!"), "got: {}", out);
}
#[test]
fn sanitize_display_strips_bare_control_chars_keeps_newline_tab() {
let evil = "a\rb\x08c\x07d\u{009b}e";
let clean = sanitize_display(evil);
for bad in ['\r', '\x08', '\x07', '\u{009b}', '\u{001b}'] {
assert!(
!clean.contains(bad),
"{bad:?} must be stripped from {clean:?}"
);
}
assert!(
clean.contains('a') && clean.contains('e'),
"text kept: {clean:?}"
);
assert_eq!(
sanitize_display("line1\nline2\tcol"),
"line1\nline2\tcol",
"newline and tab must be preserved"
);
}
#[test]
fn sanitize_display_strips_osc_with_st_terminator() {
let clean = sanitize_display("\x1b]0;malicious title\x1b\\visible");
assert_eq!(
clean, "visible",
"OSC+ST sequence must be fully removed: {clean:?}"
);
assert!(!clean.contains('\x1b'));
assert_eq!(sanitize_display("\x1b[31mred\x1b[0m"), "red");
}
#[test]
fn domain_info_renders_registrar_detail_and_lifecycle_fields() {
let whois = WhoisResponse::parse(
"example.com",
"whois.test",
"Registrar: Example Registrar\n\
Creation Date: 2020-01-01T00:00:00Z\n\
Registry Expiry Date: 2099-01-01T00:00:00Z\n\
Domain Status: clientTransferProhibited\n",
);
let mut info =
crate::domain_info::DomainInfo::from_sources("example.com", None, Some(&whois));
info.registrar_abuse_email = Some("abuse@registrar.test".to_string());
info.registrar_abuse_phone = Some("+1.5555550100".to_string());
info.registrar_iana_id = Some("9999".to_string());
info.registrar_url = Some("https://registrar.test".to_string());
assert!(info.days_until_expiration.is_some(), "lifecycle computed");
assert!(!info.status_descriptions.is_empty(), "status decoded");
let out = formatter().format_domain_info(&info);
for needle in [
"Registrar Detail",
"abuse@registrar.test",
"+1.5555550100",
"9999",
"https://registrar.test",
"Days Until Expiry",
"Domain Age",
"Expiry Status",
"clientTransferProhibited:",
] {
assert!(out.contains(needle), "missing {needle:?} in:\n{out}");
}
}
#[test]
fn domain_info_sanitizes_nameserver_and_status_fields() {
let whois = WhoisResponse::parse(
"evil.example",
"whois.test",
"Name Server: ns1.evil\x1b[31mhidden\n\
Domain Status: ok\x1b]0;pwn\x07\n\
Registrar: Test Registrar\n\
Creation Date: 2020-01-01T00:00:00Z\n",
);
let info = crate::domain_info::DomainInfo::from_sources("evil.example", None, Some(&whois));
let out = formatter().format_domain_info(&info);
assert!(
!out.contains('\x1b'),
"ESC must not reach terminal: {out:?}"
);
assert!(
!out.contains('\x07'),
"BEL must not reach terminal: {out:?}"
);
}
}