BombShelter is a module which protects your uploaders from image bombs like https://www.bamsoftware.com/hacks/deflate.html and http://www.openwall.com/lists/oss-security/2016/05/03/18. It checks type and pixel dimensions of uploaded image before ImageMagick touches it.
BombShelter uses fastimage gem, which reads just a header of an image to get info about it. BombShelter compares type and pixel dimensions of the uploaded image with allowed ones and raises integrity error if image is too big or have unsupported type. Works perfectly with ActiveRecord validators.
Add this line to your application's Gemfile:
gem 'carrierwave-bombshelter'And then execute:
$ bundle
Or install it yourself as:
$ gem install carrierwave-bombshelter
Just include CarrierWave::BombShelter to your uploader and you're done:
class YourUploader < CarrierWave::Uploader::Base
include CarrierWave::BombShelter
endYou can change allowed image types by defining image_type_whitelist method (default are [:jpeg, :png, :gif]):
class YourUploader < CarrierWave::Uploader::Base
include CarrierWave::BombShelter
def image_type_whitelist
[:bmp, :jpeg, :png, :gif]
end
endNote: Whitelisted file types should be supported by fastimage.
Warning: Allowing svg and mvg is totally insecure.
You can change maximum allowed dimensions by defining max_pixel_dimensions method (default is 4096x4096):
class YourUploader < CarrierWave::Uploader::Base
include CarrierWave::BombShelter
def max_pixel_dimensions
[1024, 1024]
end
endBug reports and pull requests are welcome on GitHub at https://github.com/DarthSim/carrierwave-bombshelter. This project is intended to be a safe, welcoming space for collaboration, and contributors are expected to adhere to the Contributor Covenant code of conduct.
Please don't create PRs that add locales. I can't maintain locales of languages that I don't know, and I can't poke you every time when I need to add a new string.
The gem is available as open source under the terms of the MIT License.