fix(knowledge): reject non-alphanumeric file extensions from document names

waleedlatif1 · waleedlatif1 · commit 5c824a20306d · 2026-03-27T16:46:37.000-07:00
diff --git a/apps/sim/lib/knowledge/documents/parser-extension.ts b/apps/sim/lib/knowledge/documents/parser-extension.ts
@@ -29,9 +29,8 @@ export function resolveParserExtension(
   mimeType?: string,
   fallback?: string
 ): string {
-  const filenameExtension = filename.includes('.')
-    ? filename.split('.').pop()?.toLowerCase()
-    : undefined
+  const raw = filename.includes('.') ? filename.split('.').pop()?.toLowerCase() : undefined
+  const filenameExtension = raw && /^[a-z0-9]+$/.test(raw) ? raw : undefined
 
   if (filenameExtension && isSupportedParserExtension(filenameExtension)) {
     return filenameExtension
diff --git a/apps/sim/lib/uploads/utils/validation.ts b/apps/sim/lib/uploads/utils/validation.ts
@@ -137,7 +137,8 @@ export interface FileValidationError {
  * Validate if a file type is supported for document processing
  */
 export function validateFileType(fileName: string, mimeType: string): FileValidationError | null {
-  const extension = path.extname(fileName).toLowerCase().substring(1) as SupportedDocumentExtension
+  const raw = path.extname(fileName).toLowerCase().substring(1)
+  const extension = (/^[a-z0-9]+$/.test(raw) ? raw : '') as SupportedDocumentExtension
 
   if (!SUPPORTED_DOCUMENT_EXTENSIONS.includes(extension)) {
     return {
@@ -221,7 +222,8 @@ export function validateMediaFileType(
   fileName: string,
   mimeType: string
 ): FileValidationError | null {
-  const extension = path.extname(fileName).toLowerCase().substring(1)
+  const raw = path.extname(fileName).toLowerCase().substring(1)
+  const extension = /^[a-z0-9]+$/.test(raw) ? raw : ''
 
   const isAudio = SUPPORTED_AUDIO_EXTENSIONS.includes(extension as SupportedAudioExtension)
   const isVideo = SUPPORTED_VIDEO_EXTENSIONS.includes(extension as SupportedVideoExtension)
