@codefresh-io/ssrf-safe
Advanced tools
nodejs lib for SSRF safe request and filter
Modify code:
try {
return await request({
method: 'GET',
uri,
});
} catch (cause) {
throw new NotFoundError({ cause });
}
By adding options
const { requestSsrfOptions } = require('@codefresh-io/ssrf-safe');
const options = requestSsrfOptions({ url: uri });
try {
return await request({
method: 'GET',
...options
});
} catch (cause) {
throw new NotFoundError({ cause });
}
add filter agent to the options
const options = { uri };
try {
return await request(
requestSsrfOptions({ options })
);
} catch (cause) {
throw new NotFoundError({ cause });
}
const options = { uri };
try {
return await request(
requestSsrfOptions({ options })
);
} catch (cause) {
logSsrfError(err, logger.warning);
throw new NotFoundError({ cause });
}
FAQs
Ssrf check for requests
We found that @codefresh-io/ssrf-safe demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 24 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
/Security News
Impostor NuGet package Tracer.Fody.NLog typosquats Tracer.Fody and its author, using homoglyph tricks, and exfiltrates Stratis wallet JSON/passwords to a Russian IP address.
Security News
Deno 2.6 introduces deno audit with a new --socket flag that plugs directly into Socket to bring supply chain security checks into the Deno CLI.
Security News
New DoS and source code exposure bugs in React Server Components and Next.js: what’s affected and how to update safely.