Add validation for --file flag to script

Author: samirsilwal

src/commands/run-script.ts

@@ -4,6 +4,7 @@ import { bold, red, magenta, cyan } from 'chalk';
 import { runScriptAPI } from '../api';
 import { dbLogger } from '../util/logger';
 import { loadConfig, resolveConnections } from '..';
+import { validateScriptFileName } from '../util/fs';
 import { printLine, printError, printInfo } from '../util/io';
 import OperationResult from '../domain/operation/OperationResult';
 
@@ -17,7 +18,9 @@ class RunScript extends Command {
       description: 'Filter provided connection(s). Comma separated ids eg: id1,id2'
     }),
     file: flags.string({
+      required: true,
       helpValue: 'Script Name',
+      parse: validateScriptFileName,
       description: 'Name of the manual SQL/JS/TS script'
     }),
     'connection-resolver': flags.string({

src/util/fs.ts

@@ -2,6 +2,7 @@ import * as fs from 'fs';
 import * as os from 'os';
 import * as path from 'path';
 import { promisify } from 'util';
+import FileExtensions from '../enum/FileExtensions';
 
 export const mkdir = promisify(fs.mkdir);
 export const readDir = promisify(fs.readdir);
@@ -141,3 +142,19 @@ export function copy(fromPath: string, toPath: string): Promise<void> {
     });
   });
 }
+
+/**
+ * Validate the script filename provided from CLI.
+ *
+ * @param {string} filename
+ * @returns {string}
+ */
+export function validateScriptFileName(filename: string): string {
+  const ext = filename.split('.').pop();
+
+  if (!ext || ![FileExtensions.JS, FileExtensions.SQL, FileExtensions.JS].includes(ext as FileExtensions)) {
+    throw new Error('Invalid file name or extension');
+  }
+
+  return filename;
+}