fix: update CodeQL custom model and comments in TestURLConnectivity for improved SSRF protection clarity

This commit is contained in:
GitHub Actions
2026-01-01 03:02:23 +00:00
parent 37f42dd62e
commit 5a3f0fed62
2 changed files with 9 additions and 2 deletions

View File

@@ -39,3 +39,6 @@ extensions:
data:
# network.IsPrivateIP is a validation function (neutral - doesn't propagate taint)
- ["github.com/Wikid82/charon/backend/internal/network", "IsPrivateIP", "manual"]
# TestURLConnectivity validates URLs internally via security.ValidateExternalURL
# and ssrfSafeDialer - it's a terminating function, not a pass-through
- ["github.com/Wikid82/charon/backend/internal/utils", "TestURLConnectivity", "manual"]