This file provides guidance to Claude Code (claude.ai/code) when working with code in this repository.
Sign in to like and favorite skills
This file provides guidance to Claude Code (claude.ai/code) when working with code in this repository.
This is a monorepo containing two related security-focused npm packages for hardening markdown against data exfiltration attacks through LLM prompt injection:
react-markdownharden-react-markdown/markdown-to-markdown-sanitizer/Both packages use pnpm (not npm) as the package manager.
# Run tests for both packages pnpm test # Run tests for specific package pnpm run test:harden-react-markdown pnpm run test:markdown-to-markdown-sanitizer
cd harden-react-markdown # Build the package pnpm run build # Run tests pnpm test # Run tests in watch mode pnpm run test:watch # Run tests with UI pnpm run test:ui # Prepare for publishing (build + test) pnpm run prepublishOnly
cd markdown-to-markdown-sanitizer # Build the package pnpm run build # Run all tests pnpm test # Run tests in watch mode pnpm run test:watch # Run tests with UI pnpm run test:ui # Run tests with coverage pnpm run test:coverage # Type checking pnpm run check-types pnpm run check-types:tests pnpm run check-types:all # Linting pnpm run lint pnpm run lint:tests # Run single test file pnpm test -- tests/basic-sanitization.test.ts
react-markdownMarkdownSanitizerUrlNormalizerHtmlSanitizerBoth packages share the tests based on markdown-to-markdown-sanitizer/tests/bypass-attempts/*.md. Adding more examples hardens both packages
tests/bypass-attempts/Both packages are designed for defensive security use only:
#user-content-