github/openclaw
1
0
Fork 0
mirror of https://github.com/openclaw/openclaw.git synced 2026-05-08 02:21:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

chore: Fix types in tests 33/N.

Browse Source
This commit is contained in:
cpojer
2026-02-17 15:45:36 +09:00
parent f44b58fd58
commit 49bd9f75f4
21 changed files with 148 additions and 42 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
src/infra/net/fetch-guard.ssrf.test.ts
View File

@@ -9,6 +9,8 @@ function redirectResponse(location: string): Response {
}
describe("fetchWithSsrFGuard hardening", () => {
type LookupFn = NonNullable<Parameters<typeof fetchWithSsrFGuard>[0]["lookupFn"]>;
it("blocks private IP literal URLs before fetch", async () => {
const fetchImpl = vi.fn();
await expect(
@@ -21,7 +23,9 @@ describe("fetchWithSsrFGuard hardening", () => {
});
it("blocks redirect chains that hop to private hosts", async () => {
const lookupFn = vi.fn(async () => [{ address: "93.184.216.34", family: 4 }]);
const lookupFn = vi.fn(async () => [
{ address: "93.184.216.34", family: 4 },
]) as unknown as LookupFn;
const fetchImpl = vi.fn().mockResolvedValueOnce(redirectResponse("http://127.0.0.1:6379/"));
await expect(
@@ -47,7 +51,9 @@ describe("fetchWithSsrFGuard hardening", () => {
});
it("allows wildcard allowlisted hosts", async () => {
const lookupFn = vi.fn(async () => [{ address: "93.184.216.34", family: 4 }]);
const lookupFn = vi.fn(async () => [
{ address: "93.184.216.34", family: 4 },
]) as unknown as LookupFn;
const fetchImpl = vi.fn(async () => new Response("ok", { status: 200 }));
const result = await fetchWithSsrFGuard({
url: "https://img.assets.example.com/pic.png",