hugo/bDS2
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: A1-8 add Liquid/Lua validation gates before template and script publish

Browse Source
This commit is contained in:
Chili Palmer
2026-05-29 09:16:07 +02:00
parent d7e30b94cb
commit 99d36e6e2f
6 changed files with 127 additions and 64 deletions
Download Patch File Download Diff File Expand all files Collapse all files

52
lib/bds/templates.ex
View File

@@ -62,28 +62,35 @@ defmodule BDS.Templates do
{:error, :not_found}
template ->
file_path = template_file_path(template.slug)
full_path = full_file_path(template.project_id, file_path)
updated_at = Persistence.now_ms()
content = template.content || ""
:ok =
Persistence.atomic_write(
full_path,
serialize_template_file(
%{template | status: :published, file_path: file_path, updated_at: updated_at},
content
)
)
case validate_liquid(content) do
:ok ->
file_path = template_file_path(template.slug)
full_path = full_file_path(template.project_id, file_path)
updated_at = Persistence.now_ms()
template
|> Template.changeset(%{
status: :published,
file_path: file_path,
content: nil,
updated_at: updated_at
})
|> Repo.update()
:ok =
Persistence.atomic_write(
full_path,
serialize_template_file(
%{template | status: :published, file_path: file_path, updated_at: updated_at},
content
)
)
template
|> Template.changeset(%{
status: :published,
file_path: file_path,
content: nil,
updated_at: updated_at
})
|> Repo.update()
{:error, reason} ->
{:error, {:invalid_liquid, reason}}
end
end
end
@@ -327,6 +334,13 @@ defmodule BDS.Templates do
not Repo.exists?(scoped_query)
end
defp validate_liquid(source) do
case Liquex.parse(source) do
{:ok, _ast} -> :ok
{:error, reason, line} -> {:error, "#{reason} at line #{line}"}
end
end
defp template_file_path(slug), do: Path.join(["templates", "#{slug}.liquid"])
defp full_file_path(project_id, relative_path) do