release 0.6.6

Author: khanh2906

SECURITY.md

@@ -5,7 +5,7 @@
 | Version | Supported          |
 | ------- | ------------------ |
 | 0.5.3   | :white_check_mark: |
-| 0.5.5   | :white_check_mark: |
+| 0.6.6   | :white_check_mark: |
 
 
 ## Reporting a Vulnerability

lib/handlers/generateElements.js

@@ -388,9 +388,18 @@ async function generateSQLConfig() {
 
 		const templatePath = path.join(__dirname, './../stubs/template');
 		const sequelizeConfig = path.join(templatePath, '.sequelizerc')
+		const migrationFolder = path.join(templatePath, './src/database/migrations')
+		const dataAssociationFolder = path.join(templatePath, './src/app/ORMs/associations');
+		const userOrmPath = path.join(elementPath, './ORM/sql/User.stub');
 
 		fs.copy(sequelizeConfig, path.join(process.cwd(), '.sequelizerc'))
+		fs.copy(migrationFolder, path.join(process.cwd(), './src/database/migrations'))
+		fs.copy(dataAssociationFolder, path.join(process.cwd(), './src/app/ORMs/associations'))
 
+		const userOrm = await fs.readFile(userOrmPath, 'utf8');
+		const targetPath = path.join(process.cwd(), 'src/app/ORMs/User.js')
+		await fs.writeFile(targetPath, userOrm);
+		
 		const packageJsonPath = path.join(process.cwd(), 'package.json');
 		const packageJson = require(packageJsonPath);
 

lib/stubs/template/README.md

@@ -1,5 +1,5 @@
 <p align="center">
-  <img width="250"src="https://libs.knfs-tech.com/bamimi/img/bamimi-logo.png">
+  <img width="250"src="https://bamimi.github.io/assets/img/bamimi-logo.png">
   <br>
 </p>
 
@@ -15,7 +15,7 @@ Bamimi is a web application framework with expressive, elegant syntax. We believ
 
 ## Learning Bamimi
 
-Bamimi has the most extensive and thorough [documentation](https://libs.knfs-tech.com/bamimi) and video tutorial library of all modern web application frameworks, making it a breeze to get started with the framework.
+Bamimi has the most extensive and thorough [documentation](https://bamimi.github.io) and video tutorial library of all modern web application frameworks, making it a breeze to get started with the framework.
 
 ## Contributing
 

lib/stubs/template/package.json

@@ -1,8 +1,9 @@
 {
   "name": "bamimi",
-  "version": "0.5.5",
+  "version": "0.6.6",
   "description": "Power framework for nodejs",
   "main": "src/server.js",
+  "bamimiVersion": "0.6.6",
   "bin": {
     "bamimi-enjoy-": "./dist/routes/cli/index.js",
     "bamimi-enjoy-dev": "./src/routes/cli/index.js"
@@ -65,6 +66,7 @@
     "express-session": "^1.18.0",
     "express-validator": "^6.14.2",
     "fs-extra": "^11.2.0",
+    "helmet": "^8.0.0",
     "ioredis": "^5.3.2",
     "method-override": "^3.0.0",
     "morgan": "^1.10.0",
@@ -75,7 +77,8 @@
     "mongoose": "^8.8.2",
     "socket.io": "^4.7.5",
     "winston": "^3.13.0",
-    "socket.io-client": "^4.6.1"
+    "socket.io-client": "^4.6.1",
+    "xss": "^1.0.15"
   },
   "devDependencies": {
     "@babel/cli": "^7.26.4",

lib/stubs/template/src/app/http/controllers/web/demo.controller.js

@@ -1,11 +1,13 @@
 "use strict";
 
+const { bamimiVersion } = require("./../../../../../package.json")
+
 module.exports = {
     index: async function (req, res, next) {
         try {
             return await res.view({
                 view: "pages/home", data: {
-                    version: "v0.5.5"
+                    version: `v${bamimiVersion}`
                 }
             });
         } catch (error) {

lib/stubs/template/src/app/http/middleware/security.mid.js

@@ -0,0 +1,21 @@
+"use strict";
+const xss = require("@iUtils/xss")
+const securityConfig = require("@iConfigs/security");
+const helmet = require('helmet');
+
+const sanitizeRequest = (req, res, next) => {
+	if (!req.ignoreXss) {
+		if (req.body) xss(req.body, securityConfig.xssConfig);
+		if (req.query) xss(req.query, securityConfig.xssConfig);
+		if (req.params) xss(req.params, securityConfig.xssConfig);
+	}
+
+	next();
+};
+
+module.exports = () => {
+	return [
+		sanitizeRequest,
+		helmet(securityConfig.helmetConfig)
+	]
+}

lib/stubs/template/src/app/http/requests/.gitkeep

@@ -1,6 +1,7 @@
 "use strict";
 const { handle } = require("@iKernel/interface/apis");
 const interfaces = require("@iInterfaces/apis")
+const xss = require("@iUtils/xss")
 /**
  *  API response
  * 
@@ -14,6 +15,9 @@ const interfaces = require("@iInterfaces/apis")
 module.exports = (req, res, next) => {
 
     const format = (data = null) => {
+        if (!req.ignoreXss) {
+            xss(data)
+        }
         const message = handle(res.statusCode, data);
         return message
     };