Sanitise input challenge.

Install dompurify used as sanitizer.
Update test to match

Author: bjornkpu

Diff for: node-ts/package-lock.json

@@ -23,13 +23,15 @@
   },
   "dependencies": {
     "axios": "^1.3.4",
+    "dompurify": "^3.0.1",
     "dotenv": "^16.0.3",
     "express": "^4.18.2",
     "slackify-markdown": "^4.3.1",
     "tslog": "^4.7.5"
   },
   "devDependencies": {
     "@tsconfig/recommended": "^1.0.2",
+    "@types/dompurify": "^2.4.0",
     "@types/express": "^4.17.17",
     "@types/jest": "^29.4.0",
     "@types/node": "^18.14.2",

Diff for: node-ts/package.json

@@ -8,15 +8,15 @@ describe('/', () => {
     test('Verify server', async () => {
         const mode = 'subscribe'
         const challenge = 'random_string'
-        const verify_token = process.env.VERIFY_TOKEN
+        const verify_token = process.env.WORKPLACE_VERIFY_TOKEN
         const query = '?'+[
             'hub.mode='+mode,
             'hub.challenge='+challenge,
             'hub.verify_token='+verify_token
         ].join('&')
 
         const res = await request(app)
-            .get("/workspace"+query)
+            .get("/workplace"+query)
             .expect(200);
 
         expect(res.text).toEqual(challenge)

Diff for: node-ts/src/routes/workplace.routes.spec.ts

@@ -1,12 +1,13 @@
 import { Router, Request, Response } from "express";
 import { Logger, ILogObj } from "tslog";
+import { sanitize } from "dompurify"
 import {WorkplaceBody} from "../entities/workplaceRequest";
 import {Topic} from "../enums/workplaceEnums";
 import {handleGroup} from "../handlers/workplace.handler";
 const log: Logger<ILogObj> = new Logger();
 
 const {
-    WORKPLACE_VERIFY_TOKEN, WORKPLACE_APP_SECRET,
+    WORKPLACE_VERIFY_TOKEN,
 } = process.env
 
 const router = Router();
@@ -26,7 +27,7 @@ router.get('/', (req, res) => {
     }
 
     log.debug('Validating webhook')
-    res.status(200).send(challenge)
+    res.status(200).send(sanitize(challenge.toString()))
 });