Danny Avila f7ab5e645a 🫷 fix: Validate User-Provided Base URL in Endpoint Init (#12248) ... * 🛡️ fix: Block SSRF via user-provided baseURL in endpoint initialization User-provided baseURL values (when endpoint is configured with `user_provided`) were passed through to the OpenAI SDK without validation. Combined with `directEndpoint`, this allowed arbitrary server-side requests to internal/metadata URLs. Adds `validateEndpointURL` that checks against known SSRF targets and DNS-resolves hostnames to block private IPs. Applied in both custom and OpenAI endpoint initialization paths. * 🧪 test: Add validateEndpointURL SSRF tests Covers unparseable URLs, localhost, private IPs, link-local/metadata, internal Docker/K8s hostnames, DNS resolution to private IPs, and legitimate public URLs. * 🛡️ fix: Add protocol enforcement and import order fix - Reject non-HTTP/HTTPS schemes (ftp://, file://, data:, etc.) in validateEndpointURL before SSRF hostname checks - Document DNS rebinding limitation and fail-open semantics in JSDoc - Fix import order in custom/initialize.ts per project conventions * 🧪 test: Expand SSRF validation coverage and add initializer integration tests Unit tests for validateEndpointURL: - Non-HTTP/HTTPS schemes (ftp, file, data) - IPv6 loopback, link-local, and unique-local addresses - .local and .internal TLD hostnames - DNS fail-open path (lookup failure allows request) Integration tests for initializeCustom and initializeOpenAI: - Guard fires when userProvidesURL is true - Guard skipped when URL is system-defined or falsy - SSRF rejection propagates and prevents getOpenAIConfig call * 🐛 fix: Correct broken env restore in OpenAI initialize spec process.env was captured by reference, not by value, making the restore closure a no-op. Snapshot individual env keys before mutation so they can be properly restored after each test. * 🛡️ fix: Throw structured ErrorTypes for SSRF base URL validation Replace plain-string Error throws in validateEndpointURL with JSON-structured errors using type 'invalid_base_url' (matching new ErrorTypes.INVALID_BASE_URL enum value). This ensures the client-side Error component can look up a localized message instead of falling through to the raw-text default. Changes across workspaces: - data-provider: add INVALID_BASE_URL to ErrorTypes enum - packages/api: throwInvalidBaseURL helper emits structured JSON - client: add errorMessages entry and localization key - tests: add structured JSON format assertion * 🧹 refactor: Use ErrorTypes enum key in Error.tsx for consistency Replace bare string literal 'invalid_base_url' with computed property [ErrorTypes.INVALID_BASE_URL] to match every other entry in the errorMessages map.		2026-03-15 18:41:59 -04:00
..
react-query	📦 chore: Bump Dependabot Packages (#11836)	2026-02-17 18:55:28 -05:00
specs	🔏 fix: MCP Server URL Schema Validation (#12204)	2026-03-12 23:19:31 -04:00
src	🫷 fix: Validate User-Provided Base URL in Endpoint Init (#12248)	2026-03-15 18:41:59 -04:00
.gitignore	🔄 refactor: Consolidate Ask/Edit Controllers (#1365)	2023-12-15 15:47:40 -05:00
babel.config.js	chore: add back data-provider	2023-07-30 11:50:24 -04:00
check_updates.sh	🔧 feat: Initial MCP Support (Tools) (#5015)	2024-12-17 13:12:57 -05:00
jest.config.js	⚡ refactor: Parallelize CI Workflows with Isolated Caching and Fan-Out Test Jobs (#12088)	2026-03-05 13:56:07 -05:00
package.json	✨ v0.8.3 (#12161)	2026-03-09 15:19:57 -04:00
rollup.config.js	⚙️ chore: Update Build Config due to Windows Tests (#9511)	2025-09-08 14:16:49 -04:00
server-rollup.config.js	🚀 feat: Add Code API Proxy Support and Update MCP SDK (#6203)	2025-03-06 12:47:59 -05:00
tsconfig.json	✨feat: OAuth for Actions (#5693)	2025-02-10 15:56:08 -05:00
tsconfig.spec.json	✨ feat: Assistants API, General File Support, Side Panel, File Explorer (#1696)	2024-02-13 20:42:27 -05:00