From 1aeb2319d1c34c78002c7136561aede21c08b298 Mon Sep 17 00:00:00 2001
From: Juan Escalada <juanescalada175@gmail.com>
Date: Mon, 18 Aug 2025 14:40:31 +0900
Subject: [PATCH 1/3] chore: add validator library for string validation

---
 package-lock.json | 18 ++++++++++++++++++
 package.json      |  2 ++
 2 files changed, 20 insertions(+)

diff --git a/package-lock.json b/package-lock.json
index 717f6552f..eaa86dcf5 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -53,6 +53,7 @@
         "react-router-dom": "6.30.1",
         "simple-git": "^3.28.0",
         "uuid": "^11.1.0",
+        "validator": "^13.15.15",
         "yargs": "^17.7.2"
       },
       "bin": {
@@ -73,6 +74,7 @@
         "@types/node": "^22.17.0",
         "@types/react-dom": "^17.0.26",
         "@types/react-html-parser": "^2.0.7",
+        "@types/validator": "^13.15.2",
         "@types/yargs": "^17.0.33",
         "@typescript-eslint/eslint-plugin": "^8.38.0",
         "@typescript-eslint/parser": "^8.38.0",
@@ -2627,6 +2629,13 @@
         "@types/node": "*"
       }
     },
+    "node_modules/@types/validator": {
+      "version": "13.15.2",
+      "resolved": "https://registry.npmjs.org/@types/validator/-/validator-13.15.2.tgz",
+      "integrity": "sha512-y7pa/oEJJ4iGYBxOpfAKn5b9+xuihvzDVnC/OSvlVnGxVg0pOqmjiMafiJ1KVNQEaPZf9HsEp5icEwGg8uIe5Q==",
+      "dev": true,
+      "license": "MIT"
+    },
     "node_modules/@types/webidl-conversions": {
       "version": "7.0.3",
       "resolved": "https://registry.npmjs.org/@types/webidl-conversions/-/webidl-conversions-7.0.3.tgz",
@@ -12754,6 +12763,15 @@
       "dev": true,
       "license": "MIT"
     },
+    "node_modules/validator": {
+      "version": "13.15.15",
+      "resolved": "https://registry.npmjs.org/validator/-/validator-13.15.15.tgz",
+      "integrity": "sha512-BgWVbCI72aIQy937xbawcs+hrVaN/CZ2UwutgaJ36hGqRrLNM+f5LUT/YPRbo8IV/ASeFzXszezV+y2+rq3l8A==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.10"
+      }
+    },
     "node_modules/vary": {
       "version": "1.1.2",
       "resolved": "https://registry.npmjs.org/vary/-/vary-1.1.2.tgz",
diff --git a/package.json b/package.json
index cb966e403..fde1834bf 100644
--- a/package.json
+++ b/package.json
@@ -80,6 +80,7 @@
     "react-router-dom": "6.30.1",
     "simple-git": "^3.28.0",
     "uuid": "^11.1.0",
+    "validator": "^13.15.15",
     "yargs": "^17.7.2"
   },
   "devDependencies": {
@@ -96,6 +97,7 @@
     "@types/node": "^22.17.0",
     "@types/react-dom": "^17.0.26",
     "@types/react-html-parser": "^2.0.7",
+    "@types/validator": "^13.15.2",
     "@types/yargs": "^17.0.33",
     "@typescript-eslint/eslint-plugin": "^8.38.0",
     "@typescript-eslint/parser": "^8.38.0",

From 47ab4acff0d9c28c3d4df705ce386e599e766097 Mon Sep 17 00:00:00 2001
From: Juan Escalada <juanescalada175@gmail.com>
Date: Mon, 18 Aug 2025 14:41:07 +0900
Subject: [PATCH 2/3] fix: checkAuthorEmails validation errors and failing
 tests

---
 src/proxy/processors/push-action/checkAuthorEmails.ts | 11 ++++-------
 test/processors/checkAuthorEmails.test.js             |  8 ++++----
 test/testPush.test.js                                 |  2 ++
 3 files changed, 10 insertions(+), 11 deletions(-)

diff --git a/src/proxy/processors/push-action/checkAuthorEmails.ts b/src/proxy/processors/push-action/checkAuthorEmails.ts
index 9462ed4eb..86c5ae027 100644
--- a/src/proxy/processors/push-action/checkAuthorEmails.ts
+++ b/src/proxy/processors/push-action/checkAuthorEmails.ts
@@ -1,30 +1,27 @@
 import { Action, Step } from '../../actions';
 import { getCommitConfig } from '../../../config';
 import { Commit } from '../../actions/Action';
+import { isEmail } from 'validator';
 
 const commitConfig = getCommitConfig();
 
 const isEmailAllowed = (email: string): boolean => {
-  if (!email) {
+  if (!email || !isEmail(email)) {
     return false;
   }
 
   const [emailLocal, emailDomain] = email.split('@');
 
-  if (!emailLocal || !emailDomain) {
-    return false;
-  }
-
   if (
     commitConfig.author.email.domain.allow &&
-    !emailDomain.match(new RegExp(commitConfig.author.email.domain.allow, 'g'))
+    !new RegExp(commitConfig.author.email.domain.allow, 'g').test(emailDomain)
   ) {
     return false;
   }
 
   if (
     commitConfig.author.email.local.block &&
-    emailLocal.match(new RegExp(commitConfig.author.email.local.block, 'g'))
+    new RegExp(commitConfig.author.email.local.block, 'g').test(emailLocal)
   ) {
     return false;
   }
diff --git a/test/processors/checkAuthorEmails.test.js b/test/processors/checkAuthorEmails.test.js
index 4ef2e041e..ff54c828d 100644
--- a/test/processors/checkAuthorEmails.test.js
+++ b/test/processors/checkAuthorEmails.test.js
@@ -181,7 +181,7 @@ describe('checkAuthorEmails', () => {
           exec({}, action);
         }),
         {
-          numRuns: 100
+          numRuns: 1000
         }
       );
 
@@ -200,7 +200,7 @@ describe('checkAuthorEmails', () => {
           exec({}, action);
         }),
         {
-          numRuns: 100
+          numRuns: 1000
         }
       );
       expect(action.step.error).to.be.undefined;
@@ -215,7 +215,7 @@ describe('checkAuthorEmails', () => {
           exec({}, action);
         }),
         {
-          numRuns: 100
+          numRuns: 1000
         }
       );
 
@@ -232,7 +232,7 @@ describe('checkAuthorEmails', () => {
           exec({}, action);
         }),
         {
-          numRuns: 100
+          numRuns: 1000
         }
       );
       expect(action.step.error).to.be.undefined;
diff --git a/test/testPush.test.js b/test/testPush.test.js
index 4681f3de5..0ec93acb4 100644
--- a/test/testPush.test.js
+++ b/test/testPush.test.js
@@ -93,6 +93,8 @@ describe('auth', async () => {
     // set up a repo, user and push to test against
     await db.deleteRepo(TEST_REPO);
     await db.deleteUser(TEST_USERNAME_1);
+    await db.deleteUser(TEST_USERNAME_2);
+
     await db.createRepo({
       project: TEST_ORG,
       name: TEST_REPO,

From 2e5072c5ac5209937c90e22401ec6dcb2d033f14 Mon Sep 17 00:00:00 2001
From: Juan Escalada <juanescalada175@gmail.com>
Date: Mon, 18 Aug 2025 15:55:39 +0900
Subject: [PATCH 3/3] test(fuzz): remove invalid object type and tweak numRuns

---
 test/processors/checkCommitMessages.test.js | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/test/processors/checkCommitMessages.test.js b/test/processors/checkCommitMessages.test.js
index 9e9e1b2ec..b0dc6112c 100644
--- a/test/processors/checkCommitMessages.test.js
+++ b/test/processors/checkCommitMessages.test.js
@@ -164,7 +164,6 @@ describe('checkCommitMessages', () => {
                   fc.integer(),
                   fc.double(),
                   fc.boolean(),
-                  fc.object(),
                 ),
                 author: fc.string()
               }),
@@ -193,7 +192,8 @@ describe('checkCommitMessages', () => {
               [{ message: null, author: 'me' }],
               [{ message: {}, author: 'me' }],
               [{ message: 'SeCrEt', author: 'me' }]
-            ]
+            ],
+            numRuns: 1000
           }
         );
       });