vultr/openclaw
1
0
Fork 0
mirror of https://github.com/openclaw/openclaw.git synced 2026-05-06 05:30:42 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix(ci): guard qa matrix fault proxy fetch

Browse Source
This commit is contained in:
Vincent Koc
2026-04-16 13:59:07 -07:00
parent 8a37bb4ed6
commit 012b577e84
1 changed files with 16 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

22
extensions/qa-matrix/src/substrate/fault-proxy.ts
View File

@@ -4,6 +4,7 @@ import {
type IncomingMessage,
type ServerResponse,
} from "node:http";
import { fetchWithSsrFGuard } from "openclaw/plugin-sdk/ssrf-runtime";
const HOP_BY_HOP_HEADERS = new Set([
"connection",
@@ -114,12 +115,21 @@ async function forwardMatrixQaFaultProxyRequest(params: {
if (method !== "GET" && method !== "HEAD") {
init.body = bufferToArrayBuffer(params.body);
}
const response = await fetch(params.targetUrl, init);
return {
body: Buffer.from(await response.arrayBuffer()),
headers: response.headers,
status: response.status,
};
const { response, release } = await fetchWithSsrFGuard({
url: params.targetUrl.toString(),
init,
policy: { allowPrivateNetwork: true },
auditContext: "qa-matrix-fault-proxy-forward",
});
try {
return {
body: Buffer.from(await response.arrayBuffer()),
headers: response.headers,
status: response.status,
};
} finally {
await release();
}
}
function writeForwardedResponse(