GithubFollow/Surge_by_SukkaW
1
0
Fork 0
mirror of https://github.com/SukkaW/Surge.git synced 2025-12-12 09:10:35 +08:00
Code Issues Actions 2 Packages Projects Releases Wiki Activity

Validate CDN Domains against Public Suffix LIst

Browse Source
This commit is contained in:
SukkaW 2022-10-11 17:10:11 +08:00
parent f3fa07d1ae
commit 0bdf8d30a0
5 changed files with 85 additions and 14 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

57
Build/validate-cdn-conf.js Normal file
View File

@ -0,0 +1,57 @@
const psl = require('psl');
const picocolors = require('picocolors');
const fs = require('fs');
const path = require('path');
(async () => {
const domainSetContent = await fs.promises.readFile(
path.resolve(__dirname, '../List/domainset/cdn.conf'),
{ encoding: 'utf-8' }
);
const domainSetLines = domainSetContent.split('\n');
for (let i = 0, len = domainSetLines.length; i < len; i++) {
const line = domainSetLines[i];
// starts with #
if (line.charCodeAt(0) === 35) {
continue;
}
if (line.trim().length === 0) {
continue;
}
const domain = line.charCodeAt(0) === 46 ? line.slice(1) : line;
const parsed = psl.parse(domain);
if (parsed.listed && parsed.input === parsed.tld) {
console.error('Domain', picocolors.yellow(domain), picocolors.red('is in public suffix list!'));
}
}
const rulesetContent = await fs.promises.readFile(
path.resolve(__dirname, '../List/non_ip/cdn.conf'),
{ encoding: 'utf-8' }
);
const rulesetLines = rulesetContent.split('\n');
for (let i = 0, len = rulesetLines.length; i < len; i++) {
const line = rulesetLines[i];
// starts with #
if (line.charCodeAt(0) === 35) {
continue;
}
if (line.trim().length === 0) {
continue;
}
if (line.startsWith('DOMAIN-SUFFIX')) {
const domain = line.slice(14);
const parsed = psl.parse(domain);
if (parsed.input !== parsed.tld) {
console.error('Domain', picocolors.yellow(domain), picocolors.green('is not in public suffix list!'));
}
}
}
})();

11
List/domainset/cdn.conf
View File

@ -123,7 +123,6 @@ static.crates.io
# >> GitHub # >> GitHub
raw.github.com raw.github.com
.githubusercontent.com
.ghcr.io .ghcr.io
.githubassets.com .githubassets.com
.pkg.github.com .pkg.github.com
@ -155,9 +154,6 @@ scontent.whatsapp.net
# >> Disqus # >> Disqus
.disquscdn.com .disquscdn.com
# >> DigitalOcean OSS
.cdn.digitaloceanspaces.com
# >> Google CDN # >> Google CDN
dl.google.com dl.google.com
fonts.googleapis.com fonts.googleapis.com
@ -268,7 +264,6 @@ avatars.hubspot.net
.yastatic.net .yastatic.net
avatars.mds.yandex.net avatars.mds.yandex.net
resize.yandex.net resize.yandex.net
.storage.yandexcloud.net
# >> Repl.it # >> Repl.it
.cms.replit.com .cms.replit.com
@ -505,7 +500,6 @@ updates2.signal.org
webfonts.zoho.com webfonts.zoho.com
# >> IPFS Gateway # >> IPFS Gateway
.dweb.link
.gateway.ipfs.io .gateway.ipfs.io
.ipfs.eternum.io .ipfs.eternum.io
.cloudflare-ipfs.com .cloudflare-ipfs.com
@ -640,6 +634,7 @@ cdn.glitch.com
.quoracdn.net .quoracdn.net
# GitBook # GitBook
.app.gitbook.com .app.gitbook.com
.files.gitbook.io
# Notion # Notion
.notion-static.com .notion-static.com
# Roboflow # Roboflow
@ -758,6 +753,9 @@ s.rfi.fr
# termius # termius
autoupdate.termius.com autoupdate.termius.com
cdn.termius.com cdn.termius.com
# Fleek
storageapi.fleek.co
storageapi2.fleek.co
# Others # Others
.v2ex.co .v2ex.co
cdn.v2ex.com cdn.v2ex.com
@ -808,7 +806,6 @@ static.cracked.to
.cdn.ipinfo.io .cdn.ipinfo.io
.assets.digitalocean.com .assets.digitalocean.com
ui-cdn.digitalocean.com ui-cdn.digitalocean.com
.vultrobjects.com
ws-assets.zoominfo.com ws-assets.zoominfo.com
res2.weblium.site res2.weblium.site
code.benco.io code.benco.io

15
List/non_ip/cdn.conf
View File

@ -1,5 +1,15 @@
# >> GitHub Pages # >> GitHub Pages
DOMAIN-SUFFIX,github.io DOMAIN-SUFFIX,github.io
# >> GitHub
DOMAIN-SUFFIX,githubusercontent.com
# >> DigitalOcean OSS
DOMAIN-SUFFIX,cdn.digitaloceanspaces.com
# >> Vultr OSS
DOMAIN-SUFFIX,vultrobjects.com
# >> Yandex
DOMAIN-SUFFIX,storage.yandexcloud.net
# >> dweb.link IPFS Gateway
DOMAIN-SUFFIX,dweb.link
# >> GitLab Pages # >> GitLab Pages
DOMAIN-SUFFIX,gitlab.io DOMAIN-SUFFIX,gitlab.io
# >> Cloudflare CDN # >> Cloudflare CDN
@ -23,11 +33,6 @@ DOMAIN-SUFFIX,firebaseapp.com
DOMAIN-SUFFIX,csb.app DOMAIN-SUFFIX,csb.app
# >> Microsoft Azure # >> Microsoft Azure
DOMAIN-SUFFIX,azurestaticapps.net DOMAIN-SUFFIX,azurestaticapps.net
# >> Fleek
DOMAIN,storageapi.fleek.co
DOMAIN,storageapi2.fleek.co
# >> GitBook
DOMAIN-KEYWORD,files.gitbook.io
# >> AWS S3 # >> AWS S3
DOMAIN-SUFFIX,s3.amazonaws.com DOMAIN-SUFFIX,s3.amazonaws.com
# --- [AWS S3 Replace Me] --- # --- [AWS S3 Replace Me] ---

10
package.json
View File

@ -11,7 +11,8 @@
"build:index-html": "wireit", "build:index-html": "wireit",
"build:reject-domainset": "wireit", "build:reject-domainset": "wireit",
"build:telegram-cidr": "wireit", "build:telegram-cidr": "wireit",
"build:chn-cidr": "wireit" "build:chn-cidr": "wireit",
"validate:cdn-conf": "wireit"
}, },
"wireit": { "wireit": {
"build:anti-bogus-domain": { "build:anti-bogus-domain": {
@ -42,6 +43,9 @@
"build:telegram-cidr" "build:telegram-cidr"
] ]
}, },
"validate:cdn-conf": {
"command": "node ./Build/validate-cdn-conf.js"
},
"build": { "build": {
"dependencies": [ "dependencies": [
"build:anti-bogus-domain", "build:anti-bogus-domain",
@ -50,7 +54,8 @@
"build:reject-domainset", "build:reject-domainset",
"build:telegram-cidr", "build:telegram-cidr",
"build:chn-cidr", "build:chn-cidr",
"build:index-html" "build:index-html",
"validate:cdn-conf"
] ]
} }
}, },
@ -66,6 +71,7 @@
"ci-info": "^3.5.0", "ci-info": "^3.5.0",
"picocolors": "^1.0.0", "picocolors": "^1.0.0",
"piscina": "^3.2.0", "piscina": "^3.2.0",
"psl": "^1.9.0",
"table": "^6.8.0", "table": "^6.8.0",
"undici": "5.11.0" "undici": "5.11.0"
}, },

6
pnpm-lock.yaml generated
View File

@ -6,6 +6,7 @@ specifiers:
ci-info: ^3.5.0 ci-info: ^3.5.0
picocolors: ^1.0.0 picocolors: ^1.0.0
piscina: ^3.2.0 piscina: ^3.2.0
psl: ^1.9.0
table: ^6.8.0 table: ^6.8.0
undici: 5.11.0 undici: 5.11.0
wireit: ^0.7.2 wireit: ^0.7.2
@ -16,6 +17,7 @@ dependencies:
ci-info: 3.5.0 ci-info: 3.5.0
picocolors: 1.0.0 picocolors: 1.0.0
piscina: 3.2.0 piscina: 3.2.0
psl: 1.9.0
table: 6.8.0 table: 6.8.0
undici: 5.11.0 undici: 5.11.0
@ -351,6 +353,10 @@ packages:
signal-exit: 3.0.7 signal-exit: 3.0.7
dev: true dev: true
/psl/1.9.0:
resolution: {integrity: sha512-E/ZsdU4HLs/68gYzgGTkMicWTLPdAftJLfJFlLUAAKZGkStNU72sZjT66SnMDVOfOWY/YAoiD7Jxa9iHvngcag==}
dev: false
/punycode/2.1.1: /punycode/2.1.1:
resolution: {integrity: sha512-XRsRjdf+j5ml+y/6GKHPZbrF/8p2Yga0JPtdqTIY2Xe5ohJPD9saDJJLPvp9+NSBprVvevdXZybnj2cv8OEd0A==} resolution: {integrity: sha512-XRsRjdf+j5ml+y/6GKHPZbrF/8p2Yga0JPtdqTIY2Xe5ohJPD9saDJJLPvp9+NSBprVvevdXZybnj2cv8OEd0A==}
engines: {node: '>=6'} engines: {node: '>=6'}