opensource
/
dify
mirror of https://github.com/langgenius/dify.git
2
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
dify/docker/ssrf_proxy/conf.d.example
History
-LAN- 1a49febc02
chore: harden SSRF proxy configuration with strict defaults 
- Block all private/internal networks by default to prevent SSRF attacks
- Restrict ports to only HTTP (80) and HTTPS (443)
- Deny all requests by default unless explicitly whitelisted
- Add customization support via conf.d directory for local overrides
- Provide example configurations for common use cases
- Add CI/testing setup script to ensure tests pass with strict config
- Update docker-compose files to support custom config mounting
- Add comprehensive documentation with security warnings
 		2025-09-01 13:45:07 +08:00
..
00-testing-environment.conf.example chore: harden SSRF proxy configuration with strict defaults 2025-09-01 13:45:07 +08:00
10-allow-marketplace.conf.example chore: strengthen SSRF proxy default configuration 2025-09-01 13:45:07 +08:00
20-allow-internal-services.conf.example chore: strengthen SSRF proxy default configuration 2025-09-01 13:45:07 +08:00
30-allow-external-domains.conf.example chore: strengthen SSRF proxy default configuration 2025-09-01 13:45:07 +08:00
40-allow-additional-ports.conf.example chore: strengthen SSRF proxy default configuration 2025-09-01 13:45:07 +08:00