Merge pull request #48 from shriyanss/dev

v1.2.1-beta.1

### Added

### Changed

- Added `-k` as shorthand flag to the `run` module
- Added standard exit codes to the application

### Fixed

- Fix errors when the target is using a CDN
- Fix "possible EventEmitter memory leak detected" error
- Fix "Maximum call stack size exceeded" error in resolveNodeValue
- Fix "UND_ERR_HEADERS_OVERFLOW" error

Author: shriyanss

.github/workflows/build-and-prettify.yaml

@@ -11,11 +11,13 @@ jobs:
     steps:
       - uses: actions/checkout@v4
       - name: Check version mismatch
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
         run: |
           echo "[i] Checking if the version in the CHANGELOG.md and package.json version matches"
           PACKAGE_JSON_VERSION=$(cat package.json | jq ".version" -r)
           CHANGELOG_VERSION=$(cat CHANGELOG.md | grep -E "^## [0-9]+\.[0-9]+\.[0-9]+(-(alpha|beta)(\.[0-9]+)?)?" | head -n 1 | sed -E 's/^## ([0-9]+\.[0-9]+\.[0-9]+(-(alpha|beta)(\.[0-9]+)?)?).*/\1/')
-          GLOBALS_FILE_VERSION=$(grep -E '^const version =.+' src/globalConfig.ts | sed -E 's/^const version = "(.*)";/\1/')
+          GLOBALS_FILE_VERSION=$(grep -E '^const version =.+' src/globalConfig.ts | sed -E 's/^const version = \"(.*)\";/\1/')
           if [[ "$PACKAGE_JSON_VERSION" != "$CHANGELOG_VERSION" ]]; then
             echo "Version number mismatch between PACKAGE_JSON_VERSION and CHANGELOG_VERSION"
             exit 1
@@ -24,19 +26,25 @@ jobs:
             exit 1
           else
             echo "[✓] Version matches"
+            echo "[i] Checking if the version already exists on GitHub"
+            if gh release view "v$PACKAGE_JSON_VERSION" >/dev/null 2>&1; then
+              echo "Version v$PACKAGE_JSON_VERSION already exists on GitHub."
+              exit 1
+            else
+              echo "[✓] Version v$PACKAGE_JSON_VERSION does not exist on GitHub."
+            fi
           fi
 
   prettier:
     runs-on: ubuntu-latest
     needs: version_check
-    permissions:
-      contents: write
     steps:
       - name: Checkout
         uses: actions/checkout@v4
         with:
           # Make sure the action checks out the repository to the pull request branch
           ref: ${{ github.ref_name }}
+          ssh-key: ${{ secrets.DEPLOY_KEY }}
 
       - name: Set up Node.js
         uses: actions/setup-node@v4
@@ -83,3 +91,14 @@ jobs:
         run: npm ci
       - name: Build code
         run: npm run build
+  build-docker:
+    needs: build
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+        with:
+          # Make sure the action checks out the repository to the pull request branch
+          ref: ${{ github.ref_name }}
+      - name: Build docker container
+        run: docker build -t shriyanss/js-recon .

.github/workflows/pr_checker.yml

@@ -0,0 +1,22 @@
+name: PR Branch Checker
+
+on:
+  pull_request:
+    branches:
+      - main
+
+jobs:
+  check-branch:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Check source branch
+        if: github.head_ref != 'dev'
+        env:
+          GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          PR_URL: ${{ github.event.pull_request.html_url }}
+          BRANCH_NAME: ${{ github.head_ref }}
+        run: |
+          git config user.name "github-actions[bot]"
+          git config user.email "github-actions[bot]@users.noreply.github.com"
+          gh pr comment $PR_URL --body "This merge is not possible. Create a PR for $BRANCH_NAME -> dev"
+          gh pr close $PR_URL

.github/workflows/publish-js-recon.yml

@@ -139,11 +139,10 @@ jobs:
       - publish-docker
       - publish-ghcr
     runs-on: ubuntu-latest
-    permissions:
-      contents: write
     steps:
       - uses: actions/checkout@v4
         with:
+          ssh-key: ${{ secrets.DEPLOY_KEY }}
           fetch-depth: 0
       - name: Merge main and dev
         run: |

CHANGELOG.md

@@ -1,5 +1,21 @@
 # Change Log
 
+## 1.2.1-beta.1 - 2025.08.07
+
+### Added
+
+### Changed
+
+- Added `-k` as shorthand flag to the `run` module
+- Added standard exit codes to the application
+
+### Fixed
+
+- Fix errors when the target is using a CDN
+- Fix "possible EventEmitter memory leak detected" error
+- Fix "Maximum call stack size exceeded" error in resolveNodeValue
+- Fix "UND_ERR_HEADERS_OVERFLOW" error
+
 ## 1.2.1-alpha.2 - 2025.08.06
 
 ### Added

Dockerfile

@@ -16,4 +16,5 @@ USER pptruser
 RUN npx puppeteer browsers install chrome
 
 ENV IS_DOCKER=true
+ENV NODE_OPTIONS="--max-http-header-size=99999999"
 ENTRYPOINT ["node", "build/index.js"]

package.json

@@ -1,6 +1,6 @@
 {
     "name": "@shriyanss/js-recon",
-    "version": "1.2.1-alpha.2",
+    "version": "1.2.1-beta.1",
     "description": "JS Recon Tool",
     "main": "build/index.js",
     "type": "module",

src/analyze/index.ts

@@ -69,7 +69,7 @@ const analyze = async (
 
     if (!allValidated) {
         console.log(chalk.red("[!] Some rules are invalid"));
-        process.exit(1);
+        process.exit(20);
     }
 
     if (validate) {

src/api_gateway/genReq.ts

@@ -185,7 +185,7 @@ const get = async (url: string, headers: {} = {}): Promise<string> => {
 
     if (isFireWallBlocking) {
         console.log(chalk.magenta("[!] Please try again without API Gateway"));
-        process.exit(1);
+        process.exit(18);
     }
 
     return body;

src/globalConfig.ts

@@ -1,6 +1,6 @@
 const githubURL = "https://github.com/shriyanss/js-recon";
 const modulesDocs = "https://js-recon.io/docs/category/modules";
-const version = "1.2.1-alpha.2";
+const version = "1.2.1-beta.1";
 const toolDesc = "JS Recon Tool";
 const axiosNonHttpMethods = ["isAxiosError"]; // methods available in axios, which are not for making HTTP requests
 

src/index.ts

@@ -168,7 +168,7 @@ program
             for (const aiType of globalsUtil.getAi()) {
                 if (aiType !== "" && !validAiOptions.includes(aiType)) {
                     console.log(chalk.red(`[!] Invalid AI option: ${aiType}`));
-                    return;
+                    process.exit(1);
                 }
             }
         }
@@ -241,7 +241,7 @@ program
     .option("--openai-api-key <key>", "OpenAI API key")
     .option("--model <model>", "AI model to use", "gpt-4o-mini")
     .option("--map-openapi-chunk-tag", "Add chunk ID tag to OpenAPI spec for each request found (map module)", false)
-    .option("--insecure", "Disable SSL certificate verification", false)
+    .option("-k, --insecure", "Disable SSL certificate verification", false)
     .action(async (cmd) => {
         globalsUtil.setAi(cmd.ai?.split(",") || []);
         globalsUtil.setOpenaiApiKey(cmd.openaiApiKey);
@@ -256,7 +256,7 @@ program
             for (const aiType of globalsUtil.getAi()) {
                 if (aiType !== "" && !validAiOptions.includes(aiType)) {
                     console.log(chalk.red(`[!] Invalid AI option: ${aiType}`));
-                    return;
+                    process.exit(2);
                 }
             }
         }