├── .circleci
└── config.yml
├── .eslintrc.yml
├── .github
└── workflows
│ ├── codeql-analysis.yml
│ └── ossar-analysis.yml
├── .gitignore
├── .husky
├── .gitignore
├── post-merge
├── pre-commit
└── pre-push
├── .lintstagedrc.yml
├── .npmignore
├── .npmrc
├── .nvmrc
├── .prettierrc.yml
├── LICENSE
├── README.md
├── bin
└── normalize.js
├── data
├── README.md
├── __mocks__
│ └── loader.js
├── data.minify.json
└── loader.js
├── esm-resolver.cjs
├── index.js
├── jest.config.cjs
├── package-lock.json
├── package.json
├── renovate.json
└── utils
├── __fixtures__
└── empty-cache.js
├── __mocks__
└── strip-trackers.js
├── canonicize.js
├── canonicize.test.js
├── dns-lookup.js
├── http-client.js
├── logger.js
├── normalize-url.js
├── normalize-url.test.js
├── strip-trackers.js
├── strip-trackers.test.js
└── url-is-amp.js
/.circleci/config.yml:
--------------------------------------------------------------------------------
1 | version: 2.1
2 |
3 | aliases:
4 | - &runner
5 | executor:
6 | name: node/default
7 | tag: << parameters.node-version >>
8 | - &size
9 | resource_class: small
10 | - ¶ms
11 | parameters:
12 | node-version:
13 | type: string
14 |
15 | orbs:
16 | node: circleci/node@5
17 | slack: circleci/slack@4
18 | codecov: codecov/codecov@4
19 |
20 | jobs:
21 | lint:
22 | <<: *runner
23 | <<: *size
24 | <<: *params
25 | steps:
26 | - checkout
27 | - node/install-packages
28 | - run: npm run lint:prettier
29 | - run: npm run lint:eslint -- --format junit --output-file reports/eslint/results.xml
30 | test:
31 | <<: *runner
32 | <<: *size
33 | <<: *params
34 | steps:
35 | - checkout
36 | - node/install-packages
37 | - run: npm test -- --ci --coverage # reports automatically generated
38 |
39 | workflows:
40 | build:
41 | jobs:
42 | - lint:
43 | node-version: lts
44 | post-steps:
45 | - &retrieve-junit
46 | store_test_results:
47 | path: reports
48 | - test:
49 | context: shared-vars
50 | requires:
51 | - lint
52 | matrix:
53 | parameters:
54 | node-version:
55 | - lts
56 | - current
57 | post-steps:
58 | - *retrieve-junit
59 | - codecov/upload # don't need token for public repos
60 | - slack/notify:
61 | event: fail
62 | template: basic_fail_1
63 |
--------------------------------------------------------------------------------
/.eslintrc.yml:
--------------------------------------------------------------------------------
1 | extends:
2 | - '@janejeon'
3 |
--------------------------------------------------------------------------------
/.github/workflows/codeql-analysis.yml:
--------------------------------------------------------------------------------
1 | # For most projects, this workflow file will not need changing; you simply need
2 | # to commit it to your repository.
3 | #
4 | # You may wish to alter this file to override the set of languages analyzed,
5 | # or to provide custom queries or build logic.
6 | #
7 | # ******** NOTE ********
8 | # We have attempted to detect the languages in your repository. Please check
9 | # the `language` matrix defined below to confirm you have the correct set of
10 | # supported CodeQL languages.
11 | #
12 | name: 'CodeQL'
13 |
14 | on:
15 | push:
16 | branches: [master]
17 | pull_request:
18 | # The branches below must be a subset of the branches above
19 | branches: [master]
20 | schedule:
21 | - cron: '34 11 * * 0'
22 |
23 | jobs:
24 | analyze:
25 | name: Analyze
26 | runs-on: ubuntu-latest
27 | permissions:
28 | actions: read
29 | contents: read
30 | security-events: write
31 |
32 | strategy:
33 | fail-fast: false
34 | matrix:
35 | language: ['javascript']
36 | # CodeQL supports [ 'cpp', 'csharp', 'go', 'java', 'javascript', 'python' ]
37 | # Learn more:
38 | # https://docs.github.com/en/free-pro-team@latest/github/finding-security-vulnerabilities-and-errors-in-your-code/configuring-code-scanning#changing-the-languages-that-are-analyzed
39 |
40 | steps:
41 | - name: Checkout repository
42 | uses: actions/checkout@v4
43 |
44 | # Initializes the CodeQL tools for scanning.
45 | - name: Initialize CodeQL
46 | uses: github/codeql-action/init@v3
47 | with:
48 | languages: ${{ matrix.language }}
49 | # If you wish to specify custom queries, you can do so here or in a config file.
50 | # By default, queries listed here will override any specified in a config file.
51 | # Prefix the list here with "+" to use these queries and those in the config file.
52 | # queries: ./path/to/local/query, your-org/your-repo/queries@main
53 |
54 | # Autobuild attempts to build any compiled languages (C/C++, C#, or Java).
55 | # If this step fails, then you should remove it and run the build manually (see below)
56 | - name: Autobuild
57 | uses: github/codeql-action/autobuild@v3
58 |
59 | # ℹ️ Command-line programs to run using the OS shell.
60 | # 📚 https://git.io/JvXDl
61 |
62 | # ✏️ If the Autobuild fails above, remove it and uncomment the following three lines
63 | # and modify them (or add more) to build your code if your project
64 | # uses a compiled language
65 |
66 | #- run: |
67 | # make bootstrap
68 | # make release
69 |
70 | - name: Perform CodeQL Analysis
71 | uses: github/codeql-action/analyze@v3
72 |
--------------------------------------------------------------------------------
/.github/workflows/ossar-analysis.yml:
--------------------------------------------------------------------------------
1 | # This workflow integrates a collection of open source static analysis tools
2 | # with GitHub code scanning. For documentation, or to provide feedback, visit
3 | # https://github.com/github/ossar-action
4 | name: OSSAR
5 |
6 | on:
7 | push:
8 | branches: [master]
9 | pull_request:
10 | # The branches below must be a subset of the branches above
11 | branches: [master]
12 | schedule:
13 | - cron: '31 11 * * 1'
14 |
15 | jobs:
16 | OSSAR-Scan:
17 | # OSSAR runs on windows-latest.
18 | # ubuntu-latest and macos-latest support coming soon
19 | runs-on: windows-latest
20 |
21 | steps:
22 | - name: Checkout repository
23 | uses: actions/checkout@v4
24 |
25 | # Ensure a compatible version of dotnet is installed.
26 | # The [Microsoft Security Code Analysis CLI](https://aka.ms/mscadocs) is built with dotnet v3.1.201.
27 | # A version greater than or equal to v3.1.201 of dotnet must be installed on the agent in order to run this action.
28 | # GitHub hosted runners already have a compatible version of dotnet installed and this step may be skipped.
29 | # For self-hosted runners, ensure dotnet version 3.1.201 or later is installed by including this action:
30 | # - name: Install .NET
31 | # uses: actions/setup-dotnet@v1
32 | # with:
33 | # dotnet-version: '3.1.x'
34 | # Run open source static analysis tools
35 | - name: Run OSSAR
36 | uses: github/ossar-action@v1
37 | id: ossar
38 |
39 | # Upload results to the Security tab
40 | - name: Upload OSSAR results
41 | uses: github/codeql-action/upload-sarif@v3
42 | with:
43 | sarif_file: ${{ steps.ossar.outputs.sarifFile }}
44 |
--------------------------------------------------------------------------------
/.gitignore:
--------------------------------------------------------------------------------
1 | # Logs
2 | logs
3 | *.log
4 | npm-debug.log*
5 | yarn-debug.log*
6 | yarn-error.log*
7 | lerna-debug.log*
8 |
9 | # Diagnostic reports (https://nodejs.org/api/report.html)
10 | report.[0-9]*.[0-9]*.[0-9]*.[0-9]*.json
11 |
12 | # Runtime data
13 | pids
14 | *.pid
15 | *.seed
16 | *.pid.lock
17 |
18 | # Directory for instrumented libs generated by jscoverage/JSCover
19 | lib-cov
20 |
21 | # Coverage directory used by tools like istanbul
22 | coverage
23 | *.lcov
24 |
25 | # nyc test coverage
26 | .nyc_output
27 |
28 | # Grunt intermediate storage (https://gruntjs.com/creating-plugins#storing-task-files)
29 | .grunt
30 |
31 | # Bower dependency directory (https://bower.io/)
32 | bower_components
33 |
34 | # node-waf configuration
35 | .lock-wscript
36 |
37 | # Compiled binary addons (https://nodejs.org/api/addons.html)
38 | build/Release
39 |
40 | # Dependency directories
41 | node_modules/
42 | jspm_packages/
43 |
44 | # TypeScript v1 declaration files
45 | typings/
46 |
47 | # TypeScript cache
48 | *.tsbuildinfo
49 |
50 | # Optional npm cache directory
51 | .npm
52 |
53 | # Optional eslint cache
54 | .eslintcache
55 |
56 | # Microbundle cache
57 | .rpt2_cache/
58 | .rts2_cache_cjs/
59 | .rts2_cache_es/
60 | .rts2_cache_umd/
61 |
62 | # Optional REPL history
63 | .node_repl_history
64 |
65 | # Output of 'npm pack'
66 | *.tgz
67 |
68 | # Yarn Integrity file
69 | .yarn-integrity
70 |
71 | # dotenv environment variables file
72 | .env
73 | .env.test
74 |
75 | # parcel-bundler cache (https://parceljs.org/)
76 | .cache
77 |
78 | # Next.js build output
79 | .next
80 |
81 | # Nuxt.js build / generate output
82 | .nuxt
83 | dist
84 |
85 | # Gatsby files
86 | .cache/
87 | # Comment in the public line in if your project uses Gatsby and *not* Next.js
88 | # https://nextjs.org/blog/next-9-1#public-directory-support
89 | # public
90 |
91 | # vuepress build output
92 | .vuepress/dist
93 |
94 | # Serverless directories
95 | .serverless/
96 |
97 | # FuseBox cache
98 | .fusebox/
99 |
100 | # DynamoDB Local files
101 | .dynamodb/
102 |
103 | # TernJS port file
104 | .tern-port
105 |
106 | reports/
107 |
--------------------------------------------------------------------------------
/.husky/.gitignore:
--------------------------------------------------------------------------------
1 | _
2 |
--------------------------------------------------------------------------------
/.husky/post-merge:
--------------------------------------------------------------------------------
1 | #!/usr/bin/env sh
2 | . "$(dirname -- "$0")/_/husky.sh"
3 |
4 | npm i
5 |
--------------------------------------------------------------------------------
/.husky/pre-commit:
--------------------------------------------------------------------------------
1 | #!/usr/bin/env sh
2 | . "$(dirname -- "$0")/_/husky.sh"
3 |
4 | npx lint-staged
5 |
--------------------------------------------------------------------------------
/.husky/pre-push:
--------------------------------------------------------------------------------
1 | #!/usr/bin/env sh
2 | . "$(dirname -- "$0")/_/husky.sh"
3 |
4 | npx skip-ci && echo "Skipping test..." || CI=1 npm test
5 |
--------------------------------------------------------------------------------
/.lintstagedrc.yml:
--------------------------------------------------------------------------------
1 | '*':
2 | - prettier --write --ignore-unknown
3 |
4 | '*.js':
5 | - eslint --fix
6 |
--------------------------------------------------------------------------------
/.npmignore:
--------------------------------------------------------------------------------
1 | .*
2 | *.cjs
3 | **/*.md
4 | **/*.yml
5 | **/*.test.js
6 | **/__mocks__
7 |
--------------------------------------------------------------------------------
/.npmrc:
--------------------------------------------------------------------------------
1 | audit=false
2 | fund=false
3 | engine-strict=true
4 |
--------------------------------------------------------------------------------
/.nvmrc:
--------------------------------------------------------------------------------
1 | lts/*
2 |
--------------------------------------------------------------------------------
/.prettierrc.yml:
--------------------------------------------------------------------------------
1 | '@janejeon/prettier-config'
2 |
--------------------------------------------------------------------------------
/LICENSE:
--------------------------------------------------------------------------------
1 | GNU LESSER GENERAL PUBLIC LICENSE
2 | Version 3, 29 June 2007
3 |
4 | Copyright (C) 2007 Free Software Foundation, Inc. Welcome to normalize-url-plus 👋
2 |
3 | [](https://circleci.com/gh/JaneJeon/normalize-url-plus/tree/master)
4 | [](https://codecov.io/gh/JaneJeon/normalize-url-plus)
5 | [](https://www.npmjs.com/package/normalize-url-plus)
6 | [](https://www.npmjs.com/package/normalize-url-plus)
7 |
8 | > normalize-url plus additional features to supercharge link normalization!
9 |
10 | While `normalize-url` is good enough for many normalization use cases, this library is akin to prettier or black in that it ABSOLUTELY normalizes links, including features like default www-stripping and default https (both of which fall back should such links do not exist - unlike `normalize-url`), stripping ALL trackers (courtesy of clearURLs), following redirects (even those that can't normally be automatically redirected without manual user intervention such as youtube redirect links), and even extracting canonical URLs, all the while securing your servers from SSRF!
11 |
12 | ### 🏠 [Homepage](https://github.com/JaneJeon/normalize-url-plus)
13 |
14 | ## Install
15 |
16 | ```sh
17 | npm i normalize-url-plus
18 | ```
19 |
20 | ## Usage
21 |
22 | Note that this package is ESM-only; see https://gist.github.com/sindresorhus/a39789f98801d908bbc7ff3ecc99d99c for what to do if you're using CJS (i.e. `require()`).
23 |
24 | ```js
25 | import gen from 'normalize-url-plus'
26 | const normalizeUrl = gen(normalizeUrlOptions, gotOptions) // it is recommended to fill out the caching options for got
27 |
28 | const longDisgustingTrackerFilledLink =
29 | 'https://www.amazon.com/Blanket-Fleece-Cartoon-Printing-Napping/dp/B089G4JDVB/ref=sr_1_1?keywords=hello%20kitty&sr=8-1' // eww
30 | await normalizeUrl(longDisgustingTrackerFilledLink) // https://amazon.com/Blanket-Fleece-Cartoon-Printing-Napping/dp/B089G4JDVB
31 | ```
32 |
33 | ## Run tests
34 |
35 | ```sh
36 | npm test
37 | ```
38 |
39 | ## Author
40 |
41 | 👤 **Jane Jeon **
42 |
43 | - Website: janejeon.dev
44 | - Github: [@JaneJeon](https://github.com/JaneJeon)
45 |
46 | ## 🤝 Contributing
47 |
48 | Contributions, issues and feature requests are welcome!](https://github.com/JaneJeon)./esm-resolver.cjs'
15 | }
16 |
--------------------------------------------------------------------------------
/package.json:
--------------------------------------------------------------------------------
1 | {
2 | "name": "normalize-url-plus",
3 | "version": "1.5.4",
4 | "description": "normalize-url plus additional features to supercharge link normalization!",
5 | "exports": "./index.js",
6 | "type": "module",
7 | "repository": "JaneJeon/normalize-url-plus",
8 | "author": "Jane Jeon ",
9 | "license": "LGPL-3.0",
10 | "bin": "bin/normalize.js",
11 | "engines": {
12 | "node": ">=16"
13 | },
14 | "scripts": {
15 | "test": "NODE_OPTIONS=--experimental-vm-modules jest",
16 | "update-data": "curl -L -s https://rules2.clearurls.xyz/data.minify.json > data/data.minify.json",
17 | "lint": "run-s lint:*",
18 | "lint:prettier": "prettier --check .",
19 | "lint:eslint": "eslint .",
20 | "prepare": "husky install"
21 | },
22 | "dependencies": {
23 | "cacheable-lookup": "^7.0.0",
24 | "cheerio": "^1.0.0-rc.10",
25 | "debug": "^4.3.2",
26 | "got": "^14.0.0",
27 | "got-scraping": "^4.0.0",
28 | "got-ssrf": "^3.0.0",
29 | "ipaddr.js": "^2.0.1",
30 | "leven": "^4.0.0",
31 | "lodash": "^4.17.21",
32 | "mem": "^9.0.1",
33 | "normalize-url": "^7.0.2",
34 | "p-timeout": "^5.0.0",
35 | "quick-lru": "^7.0.0",
36 | "re2": "^1.16.0",
37 | "tld-extract": "^2.0.1"
38 | },
39 | "devDependencies": {
40 | "@janejeon/eslint-config": "^2.2.0",
41 | "@janejeon/prettier-config": "^1.1.0",
42 | "enhanced-resolve": "^5.8.3",
43 | "husky": "^6.0.0",
44 | "jest": "^29.0.0",
45 | "jest-junit": "^16.0.0",
46 | "lint-staged": "15.5.2",
47 | "nock": "^13.1.3",
48 | "node-notifier": "^10.0.0",
49 | "npm-run-all2": "^6.0.0",
50 | "skip-ci": "^1.0.4"
51 | },
52 | "keywords": [
53 | "normalize",
54 | "url",
55 | "uri",
56 | "address",
57 | "string",
58 | "normalization",
59 | "normalisation",
60 | "query",
61 | "querystring",
62 | "simplify",
63 | "strip",
64 | "trim",
65 | "canonical"
66 | ]
67 | }
68 |
--------------------------------------------------------------------------------
/renovate.json:
--------------------------------------------------------------------------------
1 | {
2 | "$schema": "https://docs.renovatebot.com/renovate-schema.json",
3 | "extends": ["github>JaneJeon/dev//packages/renovate-config/default.json"]
4 | }
5 |
--------------------------------------------------------------------------------
/utils/__fixtures__/empty-cache.js:
--------------------------------------------------------------------------------
1 | export default class EmptyCache {
2 | get() {
3 | // noop
4 | }
5 |
6 | set() {
7 | // noop
8 | }
9 |
10 | has() {
11 | return false
12 | }
13 |
14 | delete() {
15 | // noop
16 | }
17 |
18 | clear() {
19 | // noop
20 | }
21 | }
22 |
--------------------------------------------------------------------------------
/utils/__mocks__/strip-trackers.js:
--------------------------------------------------------------------------------
1 | export default function gen() {
2 | return function clearUrl(url) {
3 | return url // much function, very wow
4 | }
5 | }
6 |
--------------------------------------------------------------------------------
/utils/canonicize.js:
--------------------------------------------------------------------------------
1 | import cheerio from 'cheerio'
2 | import trim from 'lodash/trim.js'
3 | import leven from 'leven'
4 | import parseTld from 'tld-extract'
5 | import mem from 'mem'
6 | import urlIsAmp from './url-is-amp.js'
7 | import logger from './logger.js'
8 |
9 | const debug = logger('utils/canonicize.js')
10 |
11 | export default function canonicizeGen(normalize, memOpts) {
12 | // Look for the canonical link (also un-AMP-ifies the canonical link)
13 | // Not writing a separate metascraper-canonical library for this, as the "standard" way of determining
14 | // canonical link includes looking at the HTTP header: https://developers.google.com/search/docs/advanced/crawling/consolidate-duplicate-urls
15 | async function getCanonical(res, normalizedUrl) {
16 | // Ripped from https://github.com/KilledMufasa/AmputatorBot/blob/master/helpers/canonical_methods.py
17 | const $ = cheerio.load(res.body)
18 | const matches = []
19 |
20 | // 5.1: rel=canonical ; rel="canonical", ...
33 | res.headers.link.split(',').forEach(linkHeader => {
34 | const parts = linkHeader.split(';')
35 | if (parts.length !== 2) {
36 | debug('Not enough parts exist in the header: %s', linkHeader)
37 | return
38 | }
39 |
40 | const [linkStr, relStr] = parts
41 | debug('Extracted link fragment %s and rel fragment %s', linkStr, relStr)
42 |
43 | // rel="canonical", rel=canonical, rel canonical, etc.
44 | const relStrLower = relStr.toLowerCase()
45 | if (relStrLower.includes('rel') && relStrLower.includes('canonical')) {
46 | // , https://example.com, etc.
47 | const url = trim(linkStr.trim(), ['<', '>', ' '])
48 | matches.push(url)
49 | debug('Found canonical in header: %s', url)
50 | }
51 | })
52 | }
53 |
54 | // 5.3: AMP variant
55 | $('a.amp-canurl').each(function () {
56 | const match = $(this).attr('href')
57 | matches.push(match)
58 | debug('Found non-AMP variant: %s', match)
59 | })
60 |
61 | // 5.4: OpenGraph
62 | $('meta[property="og:url"]').each(function () {
63 | const match = $(this).attr('content')
64 | matches.push(match)
65 | debug('Found OpenGraph og:url: %s', match)
66 | })
67 |
68 | // 5.5: Sitemap (I'm not doing this shit)
69 |
70 | // The only reason we want canonical is to make our job with normalization easier;
71 | // So we need to make sure the canonical link IS for the url we're trying to normalize!
72 |
73 | const { hostname: domain } = new URL(normalizedUrl)
74 | const { domain: baseDomain } = parseTld(normalizedUrl)
75 | debug(
76 | 'Finding the best match for host %s and TLD %s...',
77 | domain,
78 | baseDomain
79 | )
80 |
81 | let result = normalizedUrl
82 | let minDist = Number.POSITIVE_INFINITY
83 |
84 | for (const match of matches) {
85 | let link = match
86 |
87 | // turn relative to absolute URL
88 | if (match.startsWith('/')) link = `${domain}${match}`
89 | debug('Considering match %s...', link)
90 |
91 | // Skip invalid links
92 | try {
93 | link = await normalize(link)
94 | debug('Normalized match to %s', link)
95 |
96 | // Ensure that every match is a valid URL w/ a matching domain
97 | // In this case, we're only matching the "top-level" domain -
98 | // e.g. subdomain.(domain.com) - as a lot of sites host their shit on amp.(site.com)
99 | // so we want to include references to www.site.com (actually *prefer* those)
100 | const { domain: matchDomain } = parseTld(link)
101 | if (matchDomain !== baseDomain) {
102 | debug(
103 | 'The domain %s does not match the base domain %s',
104 | matchDomain,
105 | baseDomain
106 | )
107 | continue
108 | }
109 |
110 | // Then, ensure that links aren't AMP'd
111 | if (urlIsAmp(link)) {
112 | debug('Link %s is AMP, skipping...', link)
113 | continue
114 | }
115 | } catch (err) {
116 | debug('Error %s while considering match %s', err, match)
117 | continue
118 | }
119 |
120 | // Then, sort by similarity to the normalized URL of the page we ended up in
121 | const dist = leven(normalizedUrl, link)
122 | if (dist < minDist) {
123 | minDist = dist
124 | result = link
125 | }
126 | }
127 |
128 | debug('Found best match %s', result)
129 | return result
130 | }
131 |
132 | const memCanonical = mem(getCanonical, {
133 | ...memOpts,
134 | cacheKey: args => args[1] // we want to cache by the normalized url in order to raise the hit rate
135 | })
136 |
137 | return async function canonicizeHook(res) {
138 | // Normalize the "final" URL up front
139 | const normalizedUrl = await normalize(res.url)
140 | debug('Normalized res.url %s to %s', res.url, normalizedUrl)
141 |
142 | res.url = await memCanonical(res, normalizedUrl)
143 |
144 | return res
145 | }
146 | }
147 |
--------------------------------------------------------------------------------
/utils/canonicize.test.js:
--------------------------------------------------------------------------------
1 | import { expect, describe, it } from '@jest/globals'
2 | import got from 'got'
3 | import nock from 'nock'
4 | import hookGen from './canonicize.js'
5 | import EmptyCache from './__fixtures__/empty-cache.js'
6 |
7 | nock.disableNetConnect()
8 |
9 | async function mockNormalize(url) {
10 | // just append protocol, do nothing else
11 | return url.startsWith('http') || url.startsWith('https')
12 | ? url
13 | : `http://${url}`
14 | }
15 |
16 | describe('extracting canonical links', () => {
17 | const httpClient = got.extend({
18 | hooks: {
19 | afterResponse: [
20 | hookGen(mockNormalize, {
21 | cache: new EmptyCache()
22 | })
23 | ]
24 | }
25 | })
26 |
27 | it('picks up rel=canonical in HTML body', async () => {
28 | nock('http://asdf.com')
29 | .get('/somepage')
30 | .reply(
31 | 200,
32 | `
33 |
34 |
35 | Simple HTML document
37 |
38 |
39 | Hello World!
40 |
41 | `
42 | )
43 |
44 | const { url } = await httpClient.get('http://asdf.com/somepage')
45 | expect(url).toBe('http://asdf.com/canonical')
46 | })
47 |
48 | it('picks up rel=canonical in HTTP header', async () => {
49 | nock('http://asdf.com')
50 | .get('/somepage')
51 | .reply(
52 | 200,
53 | `
54 |
55 |
56 | Simple HTML document
57 |
58 |
59 | Hello World!
60 |
61 | `,
62 | {
63 | link: '< http://asdf.com/canonical>; rel="canonical"'
64 | }
65 | )
66 |
67 | const { url } = await httpClient.get('http://asdf.com/somepage')
68 | expect(url).toBe('http://asdf.com/canonical')
69 | })
70 |
71 | it("picks up de-AMP'd links", async () => {
72 | nock('http://asdf.com')
73 | .get('/somepage')
74 | .reply(
75 | 200,
76 | `
77 |
78 |
79 | Simple HTML document
80 | Hello World!
84 |
85 | `
86 | )
87 |
88 | const { url } = await httpClient.get('http://asdf.com/somepage')
89 | expect(url).toBe('http://asdf.com/canonical')
90 | })
91 |
92 | it('picks up opengraph links', async () => {
93 | nock('http://asdf.com')
94 | .get('/somepage')
95 | .reply(
96 | 200,
97 | `
98 |
99 |
100 | Simple HTML document
101 | Hello World!
105 |
106 | `
107 | )
108 |
109 | const { url } = await httpClient.get('http://asdf.com/somepage')
110 | expect(url).toBe('http://asdf.com/canonical')
111 | })
112 |
113 | it('puts all relative links in absolute form', async () => {
114 | nock('http://sub.asdf.com')
115 | .get('/somepage')
116 | .reply(
117 | 200,
118 | `
119 |
120 |
121 | Simple HTML document
123 |
124 |
125 | Hello World!
126 |
127 | `
128 | )
129 |
130 | const { url } = await httpClient.get('http://sub.asdf.com/somepage')
131 | expect(url).toBe('http://sub.asdf.com/canonical')
132 | })
133 |
134 | it('ignores invalid matches (domain)', async () => {
135 | nock('http://sub.asdf.com')
136 | .get('/somepage')
137 | .reply(
138 | 200,
139 | `
140 |
141 |
142 | Simple HTML document
144 |
145 |
146 | Hello World!
147 |
148 | `
149 | )
150 |
151 | const { url } = await httpClient.get('http://sub.asdf.com/somepage')
152 | expect(url).toBe('http://sub.asdf.com/somepage')
153 | })
154 |
155 | it('ignores invalid matches (amp)', async () => {
156 | nock('http://asdf.com')
157 | .get('/somepage')
158 | .reply(
159 | 200,
160 | `
161 |
162 |
163 | Simple HTML document
165 |
166 |
167 | Hello World!
168 |
169 | `
170 | )
171 |
172 | const { url } = await httpClient.get('http://asdf.com/somepage')
173 | expect(url).toBe('http://asdf.com/somepage')
174 | })
175 |
176 | it('returns the most "relevant" link', async () => {
177 | nock('http://amp.asdf.com')
178 | .get('/somepage')
179 | .reply(
180 | 200,
181 | `
182 |
183 |
184 | Simple HTML document
186 | Hello World!
191 |
192 | `,
193 | {
194 | link: '< http://asdf.com/canonical>; rel="canonical"'
195 | }
196 | )
197 |
198 | const { url } = await httpClient.get('http://amp.asdf.com/somepage')
199 | expect(url).toBe('http://asdf.com/somepage')
200 | })
201 | })
202 |
--------------------------------------------------------------------------------
/utils/dns-lookup.js:
--------------------------------------------------------------------------------
1 | import { URL } from 'url'
2 | import { lookup as nativeLookup } from 'dns/promises'
3 | import { promisify } from 'util'
4 | import logger from './logger.js'
5 |
6 | const debug = logger('utils/dns-lookup.js')
7 |
8 | export default gotOptions => {
9 | let lookup
10 | if (gotOptions.dnsCache) {
11 | debug('Using dnsCache.lookupAsync for DNS lookups')
12 | lookup = gotOptions.dnsCache.lookupAsync
13 | } else if (gotOptions.dnsLookup) {
14 | debug('Promisifying user-provided dnsLookup')
15 | lookup = promisify(gotOptions.dnsLookup)
16 | } else {
17 | debug('dnsCache does not exist, falling back to dns/promises')
18 | lookup = nativeLookup
19 | }
20 |
21 | return async url => {
22 | debug('Looking up DNS for %s', url)
23 | try {
24 | const { hostname } = new URL(url)
25 | await lookup(hostname)
26 | debug('Lookup of host %s successful', hostname)
27 | return true
28 | } catch (err) {
29 | debug('Lookup of %s unsuccessful', url)
30 | return false
31 | }
32 | }
33 | }
34 |
--------------------------------------------------------------------------------
/utils/http-client.js:
--------------------------------------------------------------------------------
1 | import { got } from 'got'
2 | import { gotScraping } from 'got-scraping'
3 | import { gotSsrf } from 'got-ssrf'
4 | import canonicizeHookGen from './canonicize.js'
5 |
6 | export default function httpClient(normalize, gotOptions, canonicizeMemOpts) {
7 | return got
8 | .extend(gotOptions)
9 | .extend(gotSsrf)
10 | .extend(gotScraping)
11 | .extend({
12 | hooks: {
13 | afterResponse: [canonicizeHookGen(normalize, canonicizeMemOpts)]
14 | }
15 | })
16 | }
17 |
--------------------------------------------------------------------------------
/utils/logger.js:
--------------------------------------------------------------------------------
1 | import debug from 'debug'
2 |
3 | const BASE = 'normalize'
4 | export default function (name) {
5 | const fullName = `${BASE}:${name}`
6 | return debug(fullName)
7 | }
8 |
--------------------------------------------------------------------------------
/utils/normalize-url.js:
--------------------------------------------------------------------------------
1 | import normalizeUrl from 'normalize-url'
2 | import stripTrackersGen from './strip-trackers.js'
3 | import { URL } from 'url'
4 | import logger from './logger.js'
5 |
6 | const debug = logger('utils/normalize-url.js')
7 |
8 | export default function gen(
9 | normalizeUrlOptions,
10 | dnsLookup,
11 | httpClient,
12 | memOpts
13 | ) {
14 | const stripTrackers = stripTrackersGen(memOpts)
15 |
16 | return async function normalize(originalUrl) {
17 | // We default to non-www, https links
18 | const preferredOptions = {
19 | stripWWW: true,
20 | forceHttps: true
21 | }
22 |
23 | // Pass 1: try to force as much normalization as possible, knowing that this may break some links
24 | let url = normalizeUrl(originalUrl, {
25 | ...normalizeUrlOptions,
26 | ...preferredOptions
27 | })
28 | debug('Normalization pass 1: %s', url)
29 |
30 | // Check 1: if the www-stripped domain exists...
31 | if (originalUrl.includes('www')) {
32 | debug('Checking if www-stripped domain exists...')
33 | const { hostname } = new URL(url)
34 | try {
35 | await dnsLookup(hostname)
36 | debug('www-stripped domain exists!')
37 | } catch (err) {
38 | // Pass 2: we can't resolve the www-stripped host at the DNS level, so we enable it
39 | preferredOptions.stripWWW = false
40 | url = normalizeUrl(originalUrl, {
41 | ...normalizeUrlOptions,
42 | ...preferredOptions
43 | })
44 | debug('non-www domain does not exist, using %s', url)
45 | }
46 | }
47 |
48 | // Check 2: if the site doesn't support HTTPS...
49 | debug('Checking if https version exists...')
50 | try {
51 | await httpClient.head(url)
52 | debug('https version exists!')
53 | } catch (err) {
54 | // Pass 3: we can't reach the URL via HTTP HEAD request, so try downgrading to http
55 | preferredOptions.forceHttps = false
56 | url = normalizeUrl(originalUrl, {
57 | ...normalizeUrlOptions,
58 | ...preferredOptions
59 | })
60 | debug('https version does not exist, using %s', url)
61 | }
62 |
63 | // always strip trackers for consistency (even if it means worse performance)!
64 | // And don't forget to normalize the end result of stripping tracking for consistency!
65 | debug('stripping trackers from %s', url)
66 | return normalizeUrl(stripTrackers(url), {
67 | ...normalizeUrlOptions,
68 | ...preferredOptions
69 | })
70 | }
71 | }
72 |
--------------------------------------------------------------------------------
/utils/normalize-url.test.js:
--------------------------------------------------------------------------------
1 | import { expect, describe, it } from '@jest/globals'
2 | import gen from './normalize-url.js'
3 | import EmptyCache from './__fixtures__/empty-cache.js'
4 |
5 | const normalize = gen(
6 | { stripHash: true, removeQueryParameters: [] },
7 | async hostname => {
8 | // throw if non-WWW versions aren't available
9 | if (hostname === 'test2.com' || hostname === 'test3.com') throw new Error()
10 | },
11 | {
12 | head: async url => {
13 | // throw if site doesn't support HTTPS
14 | if (url === 'https://www.test3.com/asdf') throw new Error()
15 | }
16 | },
17 | { cache: new EmptyCache() }
18 | )
19 |
20 | describe('link normalization', () => {
21 | it('defaults to non-www, https', async () => {
22 | const url = await normalize('http://www.test1.com/asdf')
23 | expect(url).toBe('https://test1.com/asdf')
24 | })
25 |
26 | it('falls back to www if DNS cannot be resolved', async () => {
27 | const url = await normalize('www.test2.com/asdf')
28 | expect(url).toBe('https://www.test2.com/asdf')
29 | })
30 |
31 | it('falls back to http if https version cannot be reached', async () => {
32 | const url = await normalize('www.test3.com/asdf')
33 | expect(url).toBe('http://www.test3.com/asdf')
34 | })
35 | })
36 |
--------------------------------------------------------------------------------
/utils/strip-trackers.js:
--------------------------------------------------------------------------------
1 | import { URL } from 'url'
2 | import mem from 'mem'
3 | import load from '../data/loader.js'
4 | import logger from './logger.js'
5 |
6 | const providers = load()
7 | const debug = logger('utils/strip-trackers.js')
8 |
9 | const cachedRegex = mem(pattern => new RegExp(pattern))
10 |
11 | function clearUrl(url) {
12 | debug('Stripping trackers for %s', url)
13 |
14 | // Clean the given URL with the provided rules data.
15 | // URLs matching a provider's `urlPattern` and one or more of that
16 | // provider's redirection patterns will cause the URL to be replaced
17 | // with the match's first matched group
18 |
19 | // Shamelessly adopted from https://gitlab.com/CrunchBangDev/cbd-cogs/-/blob/master/Scrub/scrub.py
20 | // TODO: benchmark regex search
21 |
22 | providers.forEach(provider => {
23 | // Check provider urlPattern against provided URI
24 | if (!cachedRegex(provider.urlPattern).test(url)) return
25 | debug('Matched a provider %s', provider.urlPattern)
26 |
27 | // completeProvider is a boolean that determines if every url that
28 | // matches will be blocked. If you want to specify rules, exceptions
29 | // and/or redirections, the value of completeProvider must be false.
30 | if (provider.completeProvider) throw new Error('Link is blocked')
31 |
32 | // If any exceptions are matched, this provider is skipped
33 | for (const exception of provider.exceptions || []) {
34 | if (cachedRegex(exception).test(url)) {
35 | debug('Matched an exception %s. Skipping...', exception)
36 | return
37 | }
38 | }
39 |
40 | // the redirections from this handles cases like youtube redirects where you literally CAN'T be redirected by an HTTP call because youtube is a piece of fucking shit
41 | for (const redir of provider.redirections || []) {
42 | const regex = cachedRegex(redir)
43 | const match = regex.exec(url)
44 | if (match && match.length > 1) {
45 | url = decodeURIComponent(match[1])
46 | debug('Matched a redirect! %s', url)
47 | }
48 | }
49 |
50 | // Explode query paramters to be checked against rules
51 | const parsedUrl = new URL(url)
52 |
53 | // Check regular rules and referral marketing rules
54 | for (const rule of provider.rules || []) {
55 | const regex = cachedRegex(rule)
56 | for (const param of parsedUrl.searchParams.keys()) {
57 | if (regex.test(param)) {
58 | parsedUrl.searchParams.delete(param)
59 | debug('Deleting a query parameter %s', param)
60 | }
61 | }
62 | }
63 | for (const rule of provider.referralMarketing || []) {
64 | const regex = cachedRegex(rule)
65 | for (const param of parsedUrl.searchParams.keys()) {
66 | if (regex.test(param)) {
67 | parsedUrl.searchParams.delete(param)
68 | debug('Debugging a marketing query parameter %s', param)
69 | }
70 | }
71 | }
72 |
73 | // At this point, all of the querystrings *should* be sorted by normalize-url (the vanilla one)
74 |
75 | // Rebuild valid URI string with remaining query parameters
76 | url = parsedUrl.toString()
77 | debug('Reformed URL %s', url)
78 |
79 | // Strip raw fragments with rawRules
80 | for (const rule of provider.rawRules || []) {
81 | const regex = cachedRegex(rule)
82 | url = url.replace(regex, '')
83 | debug('Stripped raw fragment %s to get %s', rule, url)
84 | }
85 | })
86 |
87 | return url
88 | }
89 |
90 | export default function clearUrlGen(memOpts) {
91 | return mem(clearUrl, memOpts)
92 | }
93 |
--------------------------------------------------------------------------------
/utils/strip-trackers.test.js:
--------------------------------------------------------------------------------
1 | import { expect, describe, it } from '@jest/globals'
2 | import clearUrlGen from './strip-trackers.js'
3 | import EmptyCache from './__fixtures__/empty-cache.js'
4 |
5 | const clearUrl = clearUrlGen({ cache: new EmptyCache() })
6 |
7 | describe('stripping trackers', () => {
8 | it('blocks "complete providers"', () => {
9 | expect(() => clearUrl('https://thisshouldthrow.com/asdf')).toThrow(
10 | 'Link is blocked'
11 | )
12 | })
13 |
14 | it('skips on exceptions', () => {
15 | // This is one of the things I'm not sure on and I probably *won't* be sure on;
16 | // but I'm not sure where in the processing pipeline exception comes.
17 | // For now, I'm putting it right after completeProvider stage.
18 | expect(
19 | clearUrl('https://thisshouldmatch.com/butnotthis?fuckthis=true')
20 | ).toBe('https://thisshouldmatch.com/butnotthis?fuckthis=true')
21 | })
22 |
23 | it('strips querystrings, marketing or not', () => {
24 | expect(
25 | clearUrl('https://trackerstripping.com/asdf?red=sus&rule=1&rawRule=2')
26 | ).toBe('https://trackerstripping.com/asdf?red=sus')
27 | })
28 |
29 | it('strips on raw rules', () => {
30 | expect(
31 | clearUrl(
32 | 'https://www.amazon.com/Upgrade-Massager-Waterproof-Dillidos-Cellulite/dp/B09668ZY89/ref=sr_1_1?keywords=dildo&sr=8-1'
33 | )
34 | ).toBe(
35 | 'https://www.amazon.com/Upgrade-Massager-Waterproof-Dillidos-Cellulite/dp/B09668ZY89?keywords=dildo&sr=8-1'
36 | )
37 | })
38 |
39 | it('deals with redirects that CANNOT be resolved by HTTP semantics because webdevs are assholes and do not want you to auto-redirect', () => {
40 | expect(
41 | clearUrl(
42 | 'https://www.youtube.com/redirect?event=video_description&redir_token=QUFFLUhqbGdRQXRVT01hNk1pWjU4Ulh6a0ltbnRYT1BMd3xBQ3Jtc0trblJ5aU5KRjdXZTI3YzJyME5BcnQydmd6UnVFTW1pUmFqNkZZbDNJNUtXWm1RTmE0MTRYTUoyc25kbVU5ZUlmbzBQWmpRMUptaXRyLW1hYmNEMV9rZUFpLUgwV045enFVM0RpclB4a1VkR3RFaC1IRQ&q=https%3A%2F%2Fstore.gamersnexus.net%2F'
43 | )
44 | ).toBe('https://store.gamersnexus.net/')
45 | })
46 | })
47 |
--------------------------------------------------------------------------------
/utils/url-is-amp.js:
--------------------------------------------------------------------------------
1 | // Ripped from https://github.com/KilledMufasa/AmputatorBot/blob/7ee5760e653392e383fe22c4a82155300ff80c9a/static/static.txt
2 | const AMP_KEYWORDS = [
3 | '/amp',
4 | 'amp/',
5 | '.amp',
6 | 'amp.',
7 | '?amp',
8 | 'amp?',
9 | '=amp',
10 | 'amp=',
11 | '&',
12 | 'amp&',
13 | '%amp',
14 | 'amp%',
15 | '_amp',
16 | 'amp_'
17 | ]
18 |
19 | export default function urlIsAmp(url) {
20 | return AMP_KEYWORDS.some(kw => url.includes(kw))
21 | }
22 |
--------------------------------------------------------------------------------