External/nuclei
1
0
Fork 0
mirror of https://github.com/projectdiscovery/nuclei.git synced 2025-12-17 20:35:26 +00:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #6500 from projectdiscovery/dwisiswant0/fix/issue-6499-6498

Browse Source 
fix: suppress warn code flag not found & excludes known misc dir
This commit is contained in:
Mzack9999 2025-10-06 11:06:48 +02:00 committed by GitHub
commit 75016d1e96
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
4 changed files with 47 additions and 13 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
Makefile
View File

@ -147,8 +147,6 @@ template-validate: build
template-validate: template-validate:
./bin/nuclei -ut ./bin/nuclei -ut
./bin/nuclei -validate \ ./bin/nuclei -validate \
-et .github/ \
-et helpers/payloads/ \
-et http/technologies \ -et http/technologies \
-t dns \ -t dns \
-t ssl \ -t ssl \
@ -157,7 +155,5 @@ template-validate:
-ept code -ept code
./bin/nuclei -validate \ ./bin/nuclei -validate \
-w workflows \ -w workflows \
-et .github/ \
-et helpers/payloads/ \
-et http/technologies \ -et http/technologies \
-ept code -ept code

43
pkg/catalog/config/template.go
View File

@ -12,7 +12,10 @@ import (
stringsutil "github.com/projectdiscovery/utils/strings" stringsutil "github.com/projectdiscovery/utils/strings"
) )
var knownConfigFiles = []string{"cves.json", "contributors.json", "TEMPLATES-STATS.json"} var (
knownConfigFiles = []string{"cves.json", "contributors.json", "TEMPLATES-STATS.json"}
knownMiscDirectories = []string{".git", ".github", "helpers"}
)
// TemplateFormat // TemplateFormat
type TemplateFormat uint8 type TemplateFormat uint8
@ -23,6 +26,25 @@ const (
Unknown Unknown
) )
// GetKnownConfigFiles returns known config files.
func GetKnownConfigFiles() []string {
return knownConfigFiles
}
// GetKnownMiscDirectories returns known misc directories with trailing slashes.
//
// The trailing slash ensures that directory matching is explicit and avoids
// falsely match files with similar names (e.g. "helpers" matching
// "some-helpers.yaml"), since [IsTemplate] checks against normalized full paths.
func GetKnownMiscDirectories() []string {
trailedSlashDirs := make([]string, 0, len(knownMiscDirectories))
for _, dir := range knownMiscDirectories {
trailedSlashDirs = append(trailedSlashDirs, dir+string(os.PathSeparator))
}
return trailedSlashDirs
}
// GetTemplateFormatFromExt returns template format // GetTemplateFormatFromExt returns template format
func GetTemplateFormatFromExt(filePath string) TemplateFormat { func GetTemplateFormatFromExt(filePath string) TemplateFormat {
fileExt := strings.ToLower(filepath.Ext(filePath)) fileExt := strings.ToLower(filepath.Ext(filePath))
@ -41,13 +63,22 @@ func GetSupportTemplateFileExtensions() []string {
return []string{extensions.YAML, extensions.JSON} return []string{extensions.YAML, extensions.JSON}
} }
// IsTemplate is a callback function used by goflags to decide if given file should be read // IsTemplate returns true if the file is a template based on its path.
// if it is not a nuclei-template file only then file is read // It used by goflags and other places to filter out non-template files.
func IsTemplate(filename string) bool { func IsTemplate(fpath string) bool {
if stringsutil.ContainsAny(filename, knownConfigFiles...) { fpath = filepath.FromSlash(fpath)
fname := filepath.Base(fpath)
fext := strings.ToLower(filepath.Ext(fpath))
if stringsutil.ContainsAny(fname, GetKnownConfigFiles()...) {
return false return false
} }
return stringsutil.EqualFoldAny(filepath.Ext(filename), GetSupportTemplateFileExtensions()...)
if stringsutil.ContainsAny(fpath, GetKnownMiscDirectories()...) {
return false
}
return stringsutil.EqualFoldAny(fext, GetSupportTemplateFileExtensions()...)
} }
type template struct { type template struct {

4
pkg/catalog/disk/find.go
View File

@ -257,7 +257,7 @@ func (c *DiskCatalog) findDirectoryMatches(absPath string, processed map[string]
if err != nil { if err != nil {
return nil return nil
} }
if !d.IsDir() && config.GetTemplateFormatFromExt(path) != config.Unknown { if !d.IsDir() && config.IsTemplate(path) {
if _, ok := processed[path]; !ok { if _, ok := processed[path]; !ok {
results = append(results, path) results = append(results, path)
processed[path] = struct{}{} processed[path] = struct{}{}
@ -281,7 +281,7 @@ func (c *DiskCatalog) findDirectoryMatches(absPath string, processed map[string]
if err != nil { if err != nil {
return nil return nil
} }
if !d.IsDir() && config.GetTemplateFormatFromExt(path) != config.Unknown { if !d.IsDir() && config.IsTemplate(path) {
if _, ok := processed[path]; !ok { if _, ok := processed[path]; !ok {
results = append(results, path) results = append(results, path)
processed[path] = struct{}{} processed[path] = struct{}{}

9
pkg/templates/workflows.go
View File

@ -94,7 +94,14 @@ func parseWorkflowTemplate(workflow *workflows.WorkflowTemplate, preprocessor Pr
if len(template.RequestsCode) > 0 { if len(template.RequestsCode) > 0 {
if !options.Options.EnableCodeTemplates { if !options.Options.EnableCodeTemplates {
gologger.Warning().Msgf("`-code` flag not found, skipping code template from workflow: %v\n", path) // NOTE(dwisiswant0): It is safe to continue here during
// validation mode, because the template has already been parsed
// and syntax-validated by templates.Parse() above. It only
// prevents adding to workflow's executer list and suppresses
// warning messages.
if !options.Options.Validate {
gologger.Warning().Msgf("`-code` flag not found, skipping code template from workflow: %v\n", path)
}
continue continue
} else if !template.Verified { } else if !template.Verified {
// unverfied code templates are not allowed in workflows // unverfied code templates are not allowed in workflows