sourceSpecIsNewer: explicit false check on strtotime

premtsd-code · premtsd-code · commit fc6e5f7d0210 · 2026-04-22T13:26:22.000+01:00
Guard against malformed datetime strings (e.g. "0000-00-00 00:00:00")
that PHP's strtotime() returns false for. Without the explicit check,
false gets loose-compared as 0 and the helper silently returns false,
meaning a corrupted source updatedAt would always tolerate the existing
destination entry and never trigger drop+recreate.

Appwrite itself always emits parseable RFC 3339 timestamps, so this is
mainly defensive for non-Appwrite sources (Supabase, NHost, CSV).

Flagged by greptile P2.
diff --git a/src/Migration/Destinations/Appwrite.php b/src/Migration/Destinations/Appwrite.php
@@ -493,7 +493,16 @@ private function sourceSpecIsNewer(string $sourceUpdatedAt, string $destUpdatedA
         if ($sourceUpdatedAt === '' || $destUpdatedAt === '') {
             return false;
         }
-        return \strtotime($sourceUpdatedAt) > \strtotime($destUpdatedAt);
+        $src = \strtotime($sourceUpdatedAt);
+        $dst = \strtotime($destUpdatedAt);
+        if ($src === false || $dst === false) {
+            // Conservative: any unparseable timestamp → don't drop+recreate.
+            // Matters for non-Appwrite sources that may emit malformed dates
+            // (e.g. "0000-00-00 00:00:00"); Appwrite itself always emits
+            // parseable RFC 3339.
+            return false;
+        }
+        return $src > $dst;
     }
 
     /**
