assertSafeFtpArgument
function assertSafeFtpArgument(value: string, label?: string): string;Defined in: src/utils/path.ts:26
Validates that an FTP command argument cannot inject additional command lines.
NUL bytes are rejected alongside CR/LF: C-string-based servers and filesystem APIs truncate at the first NUL, which lets a crafted path smuggle a different effective target past validation.
Parameters
Section titled “Parameters”| Parameter | Type | Default value | Description |
|---|---|---|---|
value | string | undefined | Argument value to validate. |
label | string | "path" | Human-readable argument label used in error messages. |
Returns
Section titled “Returns”string
The original value when it is safe.
Throws
Section titled “Throws”ConfigurationError When the value contains CR, LF, or NUL characters.