fix: Stricter SSRF validation (#2082)

* fix: Stricter SSRF validation * skip dns resolution if running in proxy context * more fixes * Add LRU cache * change the env variable for internal hostnames * make dns resolution timeout configerable * upgrade ipaddr * handle ipv6 * handle proxy bypass for request interceptor
author: Mohamed Bassem <me@mbassem.com> 2025-11-02 17:19:28 +0000
committer: GitHub <noreply@github.com> 2025-11-02 17:19:28 +0000
commit: b63a49fc3980296c6a6ea6ac0624142e8af94d52 (patch)
tree: 1b1266f09f7821c0c59220895e9f28f406ebb841 /apps/workers/package.json
parent: c6ebceb9f0b13da902edd6bf722cfc961d7eedc6 (diff)
download: karakeep-b63a49fc3980296c6a6ea6ac0624142e8af94d52.tar.zst
1 files changed, 2 insertions, 0 deletions
diff --git a/apps/workers/package.json b/apps/workers/package.json
index b02c3bc9..f35a52f4 100644
--- a/apps/workers/package.json
+++ b/apps/workers/package.json
@@ -23,8 +23,10 @@
     "hono": "^4.7.10",
     "http-proxy-agent": "^7.0.2",
     "https-proxy-agent": "^7.0.6",
+    "ipaddr.js": "^2.2.0",
     "jsdom": "^24.0.0",
     "liteque": "^0.6.2",
+    "lru-cache": "^11.2.2",
     "metascraper": "^5.49.5",
     "metascraper-amazon": "^5.49.5",
     "metascraper-author": "^5.49.5",
author	Mohamed Bassem <me@mbassem.com>	2025-11-02 17:19:28 +0000
committer	GitHub <noreply@github.com>	2025-11-02 17:19:28 +0000
commit	b63a49fc3980296c6a6ea6ac0624142e8af94d52 (patch)
tree	1b1266f09f7821c0c59220895e9f28f406ebb841 /apps/workers/package.json
parent	c6ebceb9f0b13da902edd6bf722cfc961d7eedc6 (diff)
download	karakeep-b63a49fc3980296c6a6ea6ac0624142e8af94d52.tar.zst