Parse into a Map instead of an object, develop with Deno

Author: EvanHahn

CHANGELOG.md

@@ -1,10 +1,17 @@
 # Changelog
 
+## Unreleased
+
+### Changed
+
+- **Breaking:** Parse into a `Map` instead of an object
+
 ## 0.5.0 - 2024-01-26
 
 ### Fixed
 
-- Fix prototype pollution bug when parsing `__proto__`. See [#11](https://github.com/helmetjs/content-security-policy-parser/issues/11)
+- Fix prototype pollution bug when parsing `__proto__`. See
+  [#11](https://github.com/helmetjs/content-security-policy-parser/issues/11)
 
 ### Removed
 
@@ -32,7 +39,8 @@
 
 ### Added
 
-- Added TypeScript type definitions. See [#3](https://github.com/helmetjs/content-security-policy-parser/pull/3)
+- Added TypeScript type definitions. See
+  [#3](https://github.com/helmetjs/content-security-policy-parser/pull/3)
 
 ### Changed
 

README.md

@@ -8,16 +8,15 @@ Usage:
 const parse = require("content-security-policy-parser");
 
 parse(
-  "default-src 'self'; script-src 'unsafe-eval' scripts.com; object-src; style-src styles.biz",
+  "default-src 'self'; script-src 'unsafe-eval' scripts.example; object-src; style-src styles.example",
 );
-/*
-{
-  'default-src': ["'self'"],
-  'script-src': ["'unsafe-eval'", 'scripts.com'],
-  'object-src': [],
-  'style-src': ['styles.biz']
-}
-*/
+// => Map(X) {
+//      "default-src" => ["'self'"],
+//      "script-src" => ["'unsafe-eval'", "scripts.example"],
+//      "object-src" => [],
+//      "style-src" => ["styles.example"],
+//    }
 ```
 
-This module is considered "complete". I expect to continue maintenance if needed, but I don't plan to add features or make breaking changes.
+This module is considered "complete". I expect to continue maintenance if
+needed, but I don't plan to add features or make breaking changes.

build-npm.ts

@@ -0,0 +1,34 @@
+import { build, emptyDir } from "https://deno.land/x/[email protected]/mod.ts";
+
+await emptyDir("./dist/npm");
+
+await build({
+  entryPoints: ["./mod.ts"],
+  outDir: "./dist/npm",
+  shims: { deno: "dev" },
+  package: {
+    name: "content-security-policy-parser",
+    author: "Evan Hahn <[email protected]> (https://evanhahn.com)",
+    description: "Parse Content Security Policy directives.",
+    version: "0.5.0",
+    license: "MIT",
+    keywords: ["security", "content", "security", "policy", "csp", "parser"],
+    homepage: "https://github.com/helmetjs/content-security-policy-parser",
+    repository: {
+      type: "git",
+      url: "git://github.com/helmetjs/content-security-policy-parser.git",
+    },
+    bugs: {
+      url: "https://github.com/helmetjs/content-security-policy-parser/issues",
+      email: "[email protected]",
+    },
+    engines: {
+      node: ">=18.0.0",
+    },
+  },
+  postBuild() {
+    Deno.copyFileSync("LICENSE", "./dist/npm/LICENSE");
+    Deno.copyFileSync("README.md", "./dist/npm/README.md");
+    Deno.copyFileSync("CHANGELOG.md", "./dist/npm/CHANGELOG.md");
+  },
+});

deno.json

@@ -0,0 +1,23 @@
+{
+  "tasks": {
+    "npm": "deno run -A build-npm.ts",
+    "clean": "rm -rf dist",
+    "test": "deno task clean && deno task test:fmt && deno task test:lint && deno test",
+    "test:fmt": "deno fmt --check",
+    "test:lint": "deno lint"
+  },
+  "compilerOptions": {
+    "noFallthroughCasesInSwitch": true,
+    "noImplicitReturns": true,
+    "noUnusedLocals": true,
+    "noUnusedParameters": true,
+    "noUncheckedIndexedAccess": true,
+    "useUnknownInCatchVariables": true
+  },
+  "fmt": {
+    "exclude": ["dist"]
+  },
+  "lint": {
+    "exclude": ["dist"]
+  }
+}

deno.lock

@@ -0,0 +1,17 @@
+type ParsedContentSecurityPolicy = Map<string, string[]>;
+
+export default function parseContentSecurityPolicy(
+  policy: string,
+): ParsedContentSecurityPolicy {
+  const result: ParsedContentSecurityPolicy = new Map();
+  policy.split(";").forEach((directive) => {
+    const [directiveKey, ...directiveValue] = directive.trim().split(/\s+/g);
+    if (
+      directiveKey &&
+      !result.has(directiveKey)
+    ) {
+      result.set(directiveKey, directiveValue);
+    }
+  });
+  return result;
+}