Skip to content

Commit ff4206a

Browse files
Update packages/plugin-nft-collections/src/services/security-manager.ts
Co-authored-by: coderabbitai[bot] <136622811+coderabbitai[bot]@users.noreply.github.com>
1 parent 2e43339 commit ff4206a

File tree

1 file changed

+8
-4
lines changed

1 file changed

+8
-4
lines changed

packages/plugin-nft-collections/src/services/security-manager.ts

+8-4
Original file line numberDiff line numberDiff line change
@@ -64,9 +64,13 @@ export class SecurityManager {
6464

6565
verifySignature(data: any, timestamp: number, signature: string): boolean {
6666
const expectedSignature = this.generateSignature(data, timestamp);
67-
return crypto.timingSafeEqual(
68-
Buffer.from(signature),
69-
Buffer.from(expectedSignature)
70-
);
67+
const signatureBuffer = Buffer.from(signature);
68+
const expectedBuffer = Buffer.from(expectedSignature);
69+
70+
if (signatureBuffer.length !== expectedBuffer.length) {
71+
return false;
72+
}
73+
74+
return crypto.timingSafeEqual(signatureBuffer, expectedBuffer);
7175
}
7276
}

0 commit comments

Comments
 (0)