fix(web): Spam Assassin Parsing issue with multiline descriptions (#1933)

Author: gabrielmfern

apps/web/src/app/api/check-spam/__snapshots__/check-spam.spec.tsx.snap

@@ -1,6 +1,6 @@
 // Vitest Snapshot v1, https://vitest.dev/guide/snapshot.html
 
-exports[`checkSpam() 1`] = `
+exports[`checkSpam() > with most spammy email 1`] = `
 {
   "checks": [
     {
@@ -23,3 +23,11 @@ exports[`checkSpam() 1`] = `
   "points": 5.4,
 }
 `;
+
+exports[`checkSpam() > with real email template 1`] = `
+{
+  "checks": [],
+  "isSpam": false,
+  "points": 0,
+}
+`;

apps/web/src/app/api/check-spam/check-spam.spec.tsx

@@ -1,20 +1,30 @@
 import { render } from '@react-email/components';
+import { StripeWelcomeEmail } from '../../../../../demo/emails/welcome/stripe-welcome';
 import { checkSpam } from './check-spam';
 
-test('checkSpam()', async () => {
-  const template = (
-    <html lang="en">
-      <body>
-        This email is spam. We sell rolexss for cheap. Get your viagra. We also
-        sell weight loss pills today. Money back guaranteed. sEnd me $500 and
-        I'll send you back $700. don't tell anyone. Send this email to ten
-        friends
-      </body>
-    </html>
-  );
-  const html = await render(template);
-  // const plainText = await render(template, { plainText: true });
-  const plainText = 'Completely different content from the original';
+describe('checkSpam()', () => {
+  test('with most spammy email', async () => {
+    const template = (
+      <html lang="en">
+        <body>
+          This email is spam. We sell rolexss for cheap. Get your viagra. We
+          also sell weight loss pills today. Money back guaranteed. sEnd me $500
+          and I'll send you back $700. don't tell anyone. Send this email to ten
+          friends
+        </body>
+      </html>
+    );
+    const html = await render(template);
+    // const plainText = await render(template, { plainText: true });
+    const plainText = 'Completely different content from the original';
 
-  expect(await checkSpam(html, plainText)).toMatchSnapshot();
+    expect(await checkSpam(html, plainText)).toMatchSnapshot();
+  });
+
+  test('with real email template', async () => {
+    const html = await render(<StripeWelcomeEmail />);
+    const plainText = await render(<StripeWelcomeEmail />, { plainText: true });
+
+    expect(await checkSpam(html, plainText)).toMatchSnapshot();
+  });
 });

apps/web/src/utils/spam-assassin/__snapshots__/parse-pointing-table-rows.spec.ts.snap

@@ -1,6 +1,66 @@
 // Vitest Snapshot v1, https://vitest.dev/guide/snapshot.html
 
-exports[`parsePointingTableRows() 1`] = `
+exports[`parsePointingTableRows() > works with a multiline description 1`] = `
+[
+  {
+    "description": "Informational: message has no Received headers",
+    "pts": -0,
+    "ruleName": "NO_RECEIVED",
+  },
+  {
+    "description": "Missing Message-Id: header",
+    "pts": 0.1,
+    "ruleName": "MISSING_MID",
+  },
+  {
+    "description": "Missing Date: header",
+    "pts": 1.4,
+    "ruleName": "MISSING_DATE",
+  },
+  {
+    "description": "Missing From: header",
+    "pts": 1,
+    "ruleName": "MISSING_FROM",
+  },
+  {
+    "description": "Missing Subject: header",
+    "pts": 1.8,
+    "ruleName": "MISSING_SUBJECT",
+  },
+  {
+    "description": "Missing To: header",
+    "pts": 1.2,
+    "ruleName": "MISSING_HEADERS",
+  },
+  {
+    "description": "Informational: message was not relayed via SMTP",
+    "pts": -0,
+    "ruleName": "NO_RELAYS",
+  },
+  {
+    "description": "ADMINISTRATOR NOTICE: The query to URIBL was blocked. See http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block for more information. [URI: stripe.com]",
+    "pts": 0,
+    "ruleName": "URIBL_BLOCKED",
+  },
+  {
+    "description": "BODY: HTML included in message",
+    "pts": 0,
+    "ruleName": "HTML_MESSAGE",
+  },
+  {
+    "description": "Message appears to be missing most RFC-822 headers",
+    "pts": 0,
+    "ruleName": "NO_HEADERS_MESSAGE",
+  },
+  {
+    "description": "High bit body and no message ID header",
+    "pts": 3.9,
+    "ruleName": "DOS_BODY_HIGH_NO_MID",
+  },
+]
+`;
+
+exports[`parsePointingTableRows() > works with spammy emails 1`] = `
 [
   {
     "description": "Missing Subject: header",

apps/web/src/utils/spam-assassin/parse-pointing-table-rows.spec.ts

@@ -1,6 +1,8 @@
 import { parsePointingTableRows } from './parse-pointing-table-rows';
 
-const spamdResponse = `Received: from localhost by gabriels-computer
+describe('parsePointingTableRows()', () => {
+  test('works with spammy emails', () => {
+    const spamdResponse = `Received: from localhost by gabriels-computer
         with SpamAssassin (version 4.0.1);
         Mon, 10 Feb 2025 09:21:23 -0300
 X-Spam-Checker-Version: SpamAssassin 4.0.1 (2024-03-26) on gabriels-computer
@@ -83,7 +85,41 @@ Content-Type: text/html; charset="UTF-8"
 
 ------------=_67A9EF43.EC247F5D--
 `;
+    expect(parsePointingTableRows(spamdResponse)).toMatchSnapshot();
+  });
 
-test('parsePointingTableRows()', () => {
-  expect(parsePointingTableRows(spamdResponse)).toMatchSnapshot();
+  test('works with a multiline description', () => {
+    const partialSpamResponse = `‌â [...]
+
+Content analysis details:   (9.4 points, 5.0 required)
+
+ pts rule name              description
+---- ---------------------- --------------------------------------------------
+-0.0 NO_RECEIVED            Informational: message has no Received headers
+ 0.1 MISSING_MID            Missing Message-Id: header
+ 1.4 MISSING_DATE           Missing Date: header
+ 1.0 MISSING_FROM           Missing From: header
+ 1.8 MISSING_SUBJECT        Missing Subject: header
+ 1.2 MISSING_HEADERS        Missing To: header
+-0.0 NO_RELAYS              Informational: message was not relayed via SMTP
+ 0.0 URIBL_BLOCKED          ADMINISTRATOR NOTICE: The query to URIBL was blocked.
+                            See
+                            http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block
+                             for more information.
+                            [URI: stripe.com]
+ 0.0 HTML_MESSAGE           BODY: HTML included in message
+ 0.0 NO_HEADERS_MESSAGE     Message appears to be missing most RFC-822 headers
+ 3.9 DOS_BODY_HIGH_NO_MID   High bit body and no message ID header
+
+The original message was not completely plain text, and may be unsafe to
+open with some email clients; in particular, it may contain a virus,
+or confirm that your address can receive spam.  If you wish to view
+it, it may be safer to save it to a file and open it with an editor.
+
+
+------------=_67BF2F0C.CEF6CDE8
+Content-Type: message/rfc822; x-spam-type=original`;
+
+    expect(parsePointingTableRows(partialSpamResponse)).toMatchSnapshot();
+  });
 });

apps/web/src/utils/spam-assassin/parse-pointing-table-rows.ts

@@ -1,3 +1,5 @@
+import { rule } from 'postcss';
+
 export const parsePointingTableRows = (response: string) => {
   const tableHeader =
     /pts\s+rule\s+name\s+description\s+(?<ptsWidth>-+) (?<ruleNameWidth>-+) (?<descriptionWidth>-+) *(?:\r\n|\n|\r)*/;
@@ -13,24 +15,36 @@ export const parsePointingTableRows = (response: string) => {
 
   const ptsWidth = tableStartMatch.groups.ptsWidth!.length;
   const ruleNameWidth = tableStartMatch.groups.ruleNameWidth!.length;
-  const descriptionWidth = tableStartMatch.groups.descriptionWidth!.length;
   const columnsRegex = new RegExp(
-    `^(?<pts>.{${ptsWidth}}) (?<ruleName>.{${ruleNameWidth}}) (?<description>.{${descriptionWidth}}|.+$)`,
+    `^(?<pts>.{${ptsWidth}}) (?<ruleName>.{${ruleNameWidth}}) (?<description>.+}|.+$)`,
   );
 
-  const rows: {
+  interface Row {
     pts: number;
     ruleName: string;
     description: string;
-  }[] = [];
+  }
+
+  const rows: Row[] = [];
 
   const responseFromTableStart = response.slice(
     tableStartMatch.index + tableStartMatch[0].length,
   );
+  let currentRow: Row | undefined = undefined;
   for (const line of responseFromTableStart.split(/\r\n|\n|\r/)) {
     if (line.trim().length === 0) break;
 
     const match = line.match(columnsRegex);
+
+    // This means the description column was done with multi columns.
+    if (
+      currentRow &&
+      line.startsWith(' '.repeat(ptsWidth + ruleNameWidth + 2))
+    ) {
+      currentRow.description += ` ${line.trimStart()}`;
+      continue;
+    }
+
     if (match?.groups === undefined) {
       throw new Error('Could not match the columns in the row', {
         cause: {
@@ -44,11 +58,14 @@ export const parsePointingTableRows = (response: string) => {
     const description = match.groups.description!;
 
     try {
-      rows.push({
+      if (currentRow) {
+        rows.push(currentRow);
+      }
+      currentRow = {
         pts: Number.parseFloat(pts),
         ruleName: ruleName.trim(),
         description: description.trim(),
-      });
+      };
     } catch (exception) {
       throw new Error('could not parse points to insert into rows array', {
         cause: {
@@ -59,6 +76,9 @@ export const parsePointingTableRows = (response: string) => {
       });
     }
   }
+  if (currentRow) {
+    rows.push(currentRow);
+  }
 
   return rows;
 };