Molecule AI Core-DevOps 4474ddc189 fix(workspace): add SSRF validation before writing external workspace URL ... Issue #212: POST /workspaces with runtime=external and a URL wrote the URL directly to the DB without validateAgentURL checking (the same check that registry.go:324 applies to the heartbeat path). An attacker with AdminAuth could register a workspace URL at a cloud metadata endpoint (169.254.169.254) and exfiltrate IAM credentials when the platform fires pre-restart drain signals. Changes: - workspace.go: add validateAgentURL(payload.URL) guard before the UPDATE at line 386. 400 on unsafe URL, no DB write occurs. - workspace_test.go: add 3 regression tests: - TestWorkspaceCreate_ExternalURL_SSRFSafe: safe public URL → 201 - TestWorkspaceCreate_ExternalURL_SSRFMetadataBlocked: 169.254.169.254 → 400 - TestWorkspaceCreate_ExternalURL_SSRFLoopbackBlocked: 127.0.0.1 → 400 Both unsafe tests assert zero DB calls (the handler rejects before any transaction). Ref: issue #212. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>		2026-05-10 02:30:18 +00:00
..
cmd	docs(runbook): add admin-auth.md covering test-token route lockdown	2026-05-10 02:20:30 +00:00
internal	fix(workspace): add SSRF validation before writing external workspace URL	2026-05-10 02:30:18 +00:00
migrations	feat(plugins): plugin drift detector + queue + admin apply endpoint (#123)	2026-05-10 00:39:50 +00:00
pkg/provisionhook
.air.toml
.ci-force
.gitignore	feat(local-dev): containerize platform + canvas stack via docker-compose (closes #126)	2026-05-08 10:53:39 -07:00
.golangci.yaml
Dockerfile	ci(docker): pin base image digests in all Dockerfiles	2026-05-09 23:56:39 +00:00
Dockerfile.dev	ci(docker): pin base image digests in all Dockerfiles	2026-05-09 23:56:39 +00:00
Dockerfile.tenant	ci(docker): pin base image digests in all Dockerfiles	2026-05-09 23:56:39 +00:00
entrypoint-tenant.sh
go.mod	fix(deps): migrate gh-identity from GitHub to Gitea module path	2026-05-09 22:50:45 +00:00
go.sum