Add MIME type and extension validation for file uploads (#5596)

* Add MIME type and extension validation for file uploads
- Updated jest.config.js to include the 'src' directory in test roots.
- Introduced a new validator for checking MIME type and file extension matches, addressing security vulnerabilities.
- Implemented validation in multiple server controllers and utilities to prevent MIME type spoofing attacks.
- Added comprehensive tests for the new validation logic in validator.test.ts.

* Update packages/components/src/validator.ts

isUnsafeFilePath function checks for various security risks, including absolute paths, null bytes, and control characters, not just path traversal. A more general error message would be more appropriate to cover all cases.

Co-authored-by: gemini-code-assist[bot] <176961590+gemini-code-assist[bot]@users.noreply.github.com>

* address review comments

* remove semicolon

* fix validator unit test: missing update in test to match error message changes in source

* support image and other media types in mime to ext conversion; address other review comments

* address gemini review comments

---------

Co-authored-by: gemini-code-assist[bot] <176961590+gemini-code-assist[bot]@users.noreply.github.com>

Author: jocelynlin-wd

packages/components/jest.config.js

@@ -1,7 +1,7 @@
 module.exports = {
     preset: 'ts-jest',
     testEnvironment: 'node',
-    roots: ['<rootDir>/nodes'],
+    roots: ['<rootDir>/nodes', '<rootDir>/src'],
     transform: {
         '^.+\\.tsx?$': 'ts-jest'
     },

packages/components/src/handler.test.ts

@@ -1,15 +1,14 @@
+import { OTLPTraceExporter as ProtoOTLPTraceExporter } from '@opentelemetry/exporter-trace-otlp-proto'
 import { getPhoenixTracer } from './handler'
 
 jest.mock('@opentelemetry/exporter-trace-otlp-proto', () => {
     return {
-        ProtoOTLPTraceExporter: jest.fn().mockImplementation((args) => {
+        OTLPTraceExporter: jest.fn().mockImplementation((args) => {
             return { args }
         })
     }
 })
 
-import { OTLPTraceExporter as ProtoOTLPTraceExporter } from '@opentelemetry/exporter-trace-otlp-proto'
-
 describe('URL Handling For Phoenix Tracer', () => {
     const apiKey = 'test-api-key'
     const projectName = 'test-project-name'

packages/components/src/utils.ts

@@ -1130,6 +1130,18 @@ export const mapMimeTypeToExt = (mimeType: string) => {
         case 'application/jsonl':
         case 'text/jsonl':
             return 'jsonl'
+        // YAML types
+        case 'application/vnd.yaml':
+        case 'application/x-yaml':
+        case 'text/vnd.yaml':
+        case 'text/x-yaml':
+        case 'text/yaml':
+            return 'yaml'
+        // SQL types
+        case 'application/sql':
+        case 'text/x-sql':
+            return 'sql'
+        // Document types
         case 'application/msword':
             return 'doc'
         case 'application/vnd.openxmlformats-officedocument.wordprocessingml.document':
@@ -1142,6 +1154,59 @@ export const mapMimeTypeToExt = (mimeType: string) => {
             return 'ppt'
         case 'application/vnd.openxmlformats-officedocument.presentationml.presentation':
             return 'pptx'
+        case 'application/rtf':
+            return 'rtf'
+        // Image types
+        case 'image/jpeg':
+        case 'image/jpg':
+            return 'jpg'
+        case 'image/png':
+            return 'png'
+        case 'image/gif':
+            return 'gif'
+        case 'image/webp':
+            return 'webp'
+        case 'image/svg+xml':
+            return 'svg'
+        case 'image/bmp':
+            return 'bmp'
+        case 'image/tiff':
+        case 'image/tif':
+            return 'tiff'
+        case 'image/x-icon':
+        case 'image/vnd.microsoft.icon':
+            return 'ico'
+        case 'image/avif':
+            return 'avif'
+        // Audio types
+        case 'audio/webm':
+            return 'webm'
+        case 'audio/mp4':
+        case 'audio/x-m4a':
+            return 'm4a'
+        case 'audio/mpeg':
+        case 'audio/mp3':
+            return 'mp3'
+        case 'audio/ogg':
+        case 'audio/oga':
+            return 'ogg'
+        case 'audio/wav':
+        case 'audio/wave':
+        case 'audio/x-wav':
+            return 'wav'
+        case 'audio/aac':
+            return 'aac'
+        case 'audio/flac':
+            return 'flac'
+        // Video types
+        case 'video/mp4':
+            return 'mp4'
+        case 'video/webm':
+            return 'webm'
+        case 'video/quicktime':
+            return 'mov'
+        case 'video/x-msvideo':
+            return 'avi'
         default:
             return ''
     }

packages/components/src/validator.test.ts

@@ -0,0 +1,172 @@
+import { validateMimeTypeAndExtensionMatch } from './validator'
+
+describe('validateMimeTypeAndExtensionMatch', () => {
+    describe('valid cases', () => {
+        it.each([
+            ['document.txt', 'text/plain'],
+            ['page.html', 'text/html'],
+            ['data.json', 'application/json'],
+            ['document.pdf', 'application/pdf'],
+            ['script.js', 'text/javascript'],
+            ['script.js', 'application/javascript'],
+            ['readme.md', 'text/markdown'],
+            ['readme.md', 'text/x-markdown'],
+            ['DOCUMENT.TXT', 'text/plain'],
+            ['Document.TxT', 'text/plain'],
+            ['my.document.txt', 'text/plain'],
+            // Image types
+            ['photo.jpg', 'image/jpeg'],
+            ['photo.jpeg', 'image/jpeg'], // .jpeg should be normalized to .jpg
+            ['PHOTO.JPEG', 'image/jpeg'], // Case insensitive and normalization
+            ['image.png', 'image/png'],
+            ['animation.gif', 'image/gif'],
+            ['picture.webp', 'image/webp'],
+            ['icon.svg', 'image/svg+xml'],
+            ['IMAGE.PNG', 'image/png'],
+            // Audio types
+            ['audio.webm', 'audio/webm'],
+            ['sound.m4a', 'audio/mp4'],
+            ['sound.m4a', 'audio/x-m4a'],
+            ['music.mp3', 'audio/mpeg'],
+            ['music.mp3', 'audio/mp3'],
+            ['audio.ogg', 'audio/ogg'],
+            ['audio.oga', 'audio/ogg'], // .oga should normalize to ogg
+            ['audio.oga', 'audio/oga'],
+            ['sound.wav', 'audio/wav'],
+            ['sound.wav', 'audio/wave'],
+            ['sound.wav', 'audio/x-wav'],
+            ['audio.aac', 'audio/aac'],
+            ['audio.flac', 'audio/flac'],
+            // Video types
+            ['video.mp4', 'video/mp4'],
+            ['video.webm', 'video/webm'],
+            ['movie.mov', 'video/quicktime'],
+            ['clip.avi', 'video/x-msvideo'],
+            // YAML types
+            ['config.yaml', 'application/vnd.yaml'],
+            ['config.yaml', 'application/x-yaml'],
+            ['config.yaml', 'text/vnd.yaml'],
+            ['config.yaml', 'text/x-yaml'],
+            ['config.yaml', 'text/yaml'],
+            // SQL types
+            ['query.sql', 'application/sql'],
+            ['query.sql', 'text/x-sql'],
+            // Document types
+            ['document.rtf', 'application/rtf'],
+            // Additional image types
+            ['image.tiff', 'image/tiff'],
+            ['image.tif', 'image/tiff'], // .tif should normalize to tiff
+            ['image.tif', 'image/tif'],
+            ['icon.ico', 'image/x-icon'],
+            ['icon.ico', 'image/vnd.microsoft.icon'],
+            ['photo.avif', 'image/avif']
+        ])('should pass validation for matching MIME type and extension - %s with %s', (filename, mimetype) => {
+            expect(() => {
+                validateMimeTypeAndExtensionMatch(filename, mimetype)
+            }).not.toThrow()
+        })
+    })
+
+    describe('invalid filename', () => {
+        it.each([
+            ['empty filename', ''],
+            ['null filename', null],
+            ['undefined filename', undefined],
+            ['non-string filename (number)', 123],
+            ['object filename', {}]
+        ])('should throw error for %s', (_description, filename) => {
+            expect(() => {
+                validateMimeTypeAndExtensionMatch(filename as unknown as string, 'text/plain')
+            }).toThrow('Invalid filename: filename is required and must be a string')
+        })
+    })
+
+    describe('invalid MIME type', () => {
+        it.each([
+            ['empty MIME type', ''],
+            ['null MIME type', null],
+            ['undefined MIME type', undefined],
+            ['non-string MIME type (number)', 123]
+        ])('should throw error for %s', (_description, mimetype) => {
+            expect(() => {
+                validateMimeTypeAndExtensionMatch('file.txt', mimetype as unknown as string)
+            }).toThrow('Invalid MIME type: MIME type is required and must be a string')
+        })
+    })
+
+    describe('path traversal detection', () => {
+        it.each([
+            ['filename with ..', '../file.txt'],
+            ['filename with .. in middle', 'path/../file.txt'],
+            ['filename with multle levels of ..', '../../../etc/passwd.txt'],
+            ['filename with  ..\\..\\..', '..\\..\\..\\windows\\system32\\file.txt'],
+            ['filename with ....//....//', '....//....//etc/passwd.txt'],
+            ['filename starting with /', '/etc/passwd.txt'],
+            ['Windows absolute path', 'C:\\file.txt'],
+            ['URL encoded path traversal', '%2e%2e/file.txt'],
+            ['URL encoded path traversal multiple levels', '%2e%2e%2f%2e%2e%2f%2e%2e%2ffile.txt'],
+            ['null byte', 'file\0.txt']
+        ])('should throw error for %s', (_description, filename) => {
+            expect(() => {
+                validateMimeTypeAndExtensionMatch(filename, 'text/plain')
+            }).toThrow(`Invalid filename: unsafe characters or path traversal attempt detected in filename "${filename}"`)
+        })
+    })
+
+    describe('files without extensions', () => {
+        it.each([
+            ['filename without extension', 'file'],
+            ['filename ending with dot', 'file.']
+        ])('should throw error for %s', (_description, filename) => {
+            expect(() => {
+                validateMimeTypeAndExtensionMatch(filename, 'text/plain')
+            }).toThrow('File type not allowed: files must have a valid file extension')
+        })
+    })
+
+    describe('unsupported MIME types', () => {
+        it.each([
+            ['application/octet-stream', 'file.txt'],
+            ['invalid-mime-type', 'file.txt'],
+            ['application/x-msdownload', 'malware.exe'],
+            ['application/x-executable', 'script.exe'],
+            ['application/x-msdownload', 'program.EXE'],
+            ['application/octet-stream', 'script.js']
+        ])('should throw error for unsupported MIME type %s with %s', (mimetype, filename) => {
+            expect(() => {
+                validateMimeTypeAndExtensionMatch(filename, mimetype)
+            }).toThrow(`MIME type "${mimetype}" is not supported or does not have a valid file extension mapping`)
+        })
+    })
+
+    describe('MIME type and extension mismatches', () => {
+        it.each([
+            // [filename, mimetype, actualExt, expectedExt]
+            ['file.txt', 'application/json', 'txt', 'json'],
+            ['script.js', 'application/pdf', 'js', 'pdf'],
+            ['page.html', 'text/plain', 'html', 'txt'],
+            ['document.pdf', 'application/json', 'pdf', 'json'],
+            ['data.json', 'text/plain', 'json', 'txt'],
+            ['malware.exe', 'text/plain', 'exe', 'txt'],
+            ['script.js', 'application/json', 'js', 'json'],
+            // Image/audio mismatches
+            ['photo.jpg', 'image/png', 'jpg', 'png'],
+            ['image.png', 'image/jpeg', 'png', 'jpg'],
+            ['audio.mp3', 'audio/wav', 'mp3', 'wav'],
+            ['sound.wav', 'audio/mpeg', 'wav', 'mp3'],
+            // New type mismatches
+            ['config.yaml', 'application/json', 'yaml', 'json'],
+            ['query.sql', 'text/plain', 'sql', 'txt'],
+            ['document.rtf', 'application/pdf', 'rtf', 'pdf'],
+            ['video.mp4', 'video/webm', 'mp4', 'webm'],
+            ['image.tiff', 'image/png', 'tiff', 'png'],
+            ['icon.ico', 'image/png', 'ico', 'png']
+        ])('should throw error when extension does not match MIME type - %s with %s', (filename, mimetype, actualExt, expectedExt) => {
+            expect(() => {
+                validateMimeTypeAndExtensionMatch(filename, mimetype)
+            }).toThrow(
+                `MIME type mismatch: file extension "${actualExt}" does not match declared MIME type "${mimetype}". Expected: ${expectedExt}`
+            )
+        })
+    })
+})

packages/components/src/validator.ts

@@ -1,3 +1,5 @@
+import { mapMimeTypeToExt } from './utils'
+
 /**
  * Validates if a string is a valid UUID v4
  * @param {string} uuid The string to validate
@@ -69,3 +71,79 @@ export const isUnsafeFilePath = (filePath: string): boolean => {
 
     return dangerousPatterns.some((pattern) => pattern.test(filePath))
 }
+
+/**
+ * Validates filename format and security
+ * @param {string} filename The filename to validate
+ * @returns {void} Throws an error if validation fails
+ */
+const validateFilename = (filename: string): void => {
+    if (!filename || typeof filename !== 'string') {
+        throw new Error('Invalid filename: filename is required and must be a string')
+    }
+    if (isUnsafeFilePath(filename)) {
+        throw new Error(`Invalid filename: unsafe characters or path traversal attempt detected in filename "${filename}"`)
+    }
+}
+
+/**
+ * Extracts and normalizes file extension from filename
+ * @param {string} filename The filename
+ * @returns {string} The normalized extension (lowercase, without dot) or empty string
+ */
+const extractFileExtension = (filename: string): string => {
+    const filenameParts = filename.split('.')
+    if (filenameParts.length <= 1) {
+        return ''
+    }
+    let ext = filenameParts.pop()!.toLowerCase()
+    // Normalize common extension variations to match MIME type mappings
+    const extensionNormalizationMap: { [key: string]: string } = {
+        jpeg: 'jpg', // image/jpeg and image/jpg both map to 'jpg'
+        tif: 'tiff', // image/tiff and image/tif both map to 'tiff'
+        oga: 'ogg' // audio/ogg and audio/oga both map to 'ogg'
+    }
+    ext = extensionNormalizationMap[ext] ?? ext
+    return ext
+}
+
+/**
+ * Validates that file extension matches the declared MIME type
+ *
+ * This function addresses CVE-2025-61687 by preventing MIME type spoofing attacks.
+ * It ensures that the file extension matches the declared MIME type, preventing
+ * attackers from uploading malicious files (e.g., .js file with text/plain MIME type).
+ *
+ * @param {string} filename The original filename
+ * @param {string} mimetype The declared MIME type
+ * @returns {void} Throws an error if validation fails
+ */
+export const validateMimeTypeAndExtensionMatch = (filename: string, mimetype: string): void => {
+    validateFilename(filename)
+
+    if (!mimetype || typeof mimetype !== 'string') {
+        throw new Error('Invalid MIME type: MIME type is required and must be a string')
+    }
+
+    const normalizedExt = extractFileExtension(filename)
+
+    if (!normalizedExt) {
+        // Files without extensions are rejected for security
+        throw new Error('File type not allowed: files must have a valid file extension')
+    }
+
+    // Get the expected extension from mapMimeTypeToExt (returns extension without dot)
+    const expectedExt = mapMimeTypeToExt(mimetype)
+
+    if (!expectedExt) {
+        // If mapMimeTypeToExt doesn't recognize the MIME type, it's not supported
+        throw new Error(`MIME type "${mimetype}" is not supported or does not have a valid file extension mapping`)
+    }
+
+    // Ensure the file extension matches the expected extension for the MIME type
+    if (normalizedExt !== expectedExt) {
+        throw new Error(
+            `MIME type mismatch: file extension "${normalizedExt}" does not match declared MIME type "${mimetype}". Expected: ${expectedExt}`
+        )
+    }
+}

packages/server/src/controllers/openai-assistants-vector-store/index.ts

@@ -2,6 +2,7 @@ import { Request, Response, NextFunction } from 'express'
 import { StatusCodes } from 'http-status-codes'
 import { InternalFlowiseError } from '../../errors/internalFlowiseError'
 import openAIAssistantVectorStoreService from '../../services/openai-assistants-vector-store'
+import { validateFileMimeTypeAndExtensionMatch } from '../../utils/fileValidation'
 
 const getAssistantVectorStore = async (req: Request, res: Response, next: NextFunction) => {
     try {
@@ -142,6 +143,10 @@ const uploadFilesToAssistantVectorStore = async (req: Request, res: Response, ne
             for (const file of files) {
                 // Address file name with special characters: https://github.com/expressjs/multer/issues/1104
                 file.originalname = Buffer.from(file.originalname, 'latin1').toString('utf8')
+
+                // Validate file extension, MIME type, and content to prevent security vulnerabilities
+                validateFileMimeTypeAndExtensionMatch(file.originalname, file.mimetype)
+
                 uploadFiles.push({
                     filePath: file.path ?? file.key,
                     fileName: file.originalname