fix: tighten security audit for loopback auth

2026-05-07 23:51:23 +00:00 · 2026-01-25 15:16:40 +00:00
parent 6aec34bc60
commit 885167dd58
5 changed files with 47 additions and 12 deletions
--- a/src/security/audit.ts
+++ b/src/security/audit.ts
@@ -236,6 +236,18 @@ function collectGatewayConfigFindings(cfg: ClawdbotConfig): SecurityAuditFinding
    });
  }

+  if (bind === "loopback" && controlUiEnabled && auth.mode === "none") {
+    findings.push({
+      checkId: "gateway.loopback_no_auth",
+      severity: "critical",
+      title: "Gateway auth disabled on loopback",
+      detail:
+        "gateway.bind is loopback and gateway.auth is disabled. " +
+        "If the Control UI is exposed through a reverse proxy, unauthenticated access is possible.",
+      remediation: "Set gateway.auth (token recommended) or keep the Control UI local-only.",
+    });
+  }
+
  if (tailscaleMode === "funnel") {
    findings.push({
      checkId: "gateway.tailscale_funnel",