Void-Homelab

Hynes/Void-Homelab

Fork 0

Commit Graph

Author	SHA1	Message	Date
root	afc20712cb	feat(api): capture POST + upload + SSRF-safe URL fetch safe_fetch.js validates URLs before fetch: rejects non-http(s), literal or DNS-resolved loopback / RFC1918 / link-local / CGNAT / metadata addresses; follows redirects manually with the same checks on each hop. Test fixtures gate the check with VOID_INGEST_ALLOW_PRIVATE for offline fixtures that hit 127.0.0.1. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	2026-06-01 03:42:54 +10:00
root	3ccfd20b5f	feat(jobs): ingest.url worker (fetch + readability + idempotent ref) Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	2026-06-01 03:35:44 +10:00

Author

SHA1

Message

Date

root

afc20712cb

feat(api): capture POST + upload + SSRF-safe URL fetch

safe_fetch.js validates URLs before fetch: rejects non-http(s), literal
or DNS-resolved loopback / RFC1918 / link-local / CGNAT / metadata
addresses; follows redirects manually with the same checks on each hop.
Test fixtures gate the check with VOID_INGEST_ALLOW_PRIVATE for offline
fixtures that hit 127.0.0.1.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

2026-06-01 03:42:54 +10:00

root

3ccfd20b5f

feat(jobs): ingest.url worker (fetch + readability + idempotent ref)

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

2026-06-01 03:35:44 +10:00

2 Commits