vultr/openclaw
1
0
Fork 0
mirror of https://github.com/openclaw/openclaw.git synced 2026-03-12 07:20:45 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix: block ISATAP SSRF bypass via shared host/ip guard

Browse Source
This commit is contained in:
Peter Steinberger
2026-02-19 09:59:34 +01:00
parent 4cd5fad14b
commit d51929ecb5
9 changed files with 72 additions and 96 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
extensions/tlon/src/urbit/base-url.ts
View File

@@ -1,4 +1,4 @@
import { isBlockedHostname, isPrivateIpAddress } from "openclaw/plugin-sdk";
import { isBlockedHostnameOrIp } from "openclaw/plugin-sdk";
export type UrbitBaseUrlValidation =
| { ok: true; baseUrl: string; hostname: string }
@@ -53,5 +53,5 @@ export function isBlockedUrbitHostname(hostname: string): boolean {
if (!normalized) {
return false;
}
return isBlockedHostname(normalized) || isPrivateIpAddress(normalized);
return isBlockedHostnameOrIp(normalized);
}