pengjunjie/ragflow
1
0
Fork 1
mirror of https://github.com/infiniflow/ragflow.git synced 2025-12-08 20:42:30 +08:00
Code Issues Packages Projects Releases Wiki Activity

Fix potential SSRF attack vulnerability (#4334)

Browse Source 
### What problem does this PR solve?

Fix potential SSRF attack vulnerability

### Type of change

- [x] Bug Fix (non-breaking change which fixes an issue)

Co-authored-by: liuhua <10215101452@stu.ecun.edu.cn>
This commit is contained in:
liuhua
2025-01-02 18:45:45 +08:00
committed by GitHub
parent 5083d92998
commit 8674156d1c
2 changed files with 25 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
agent/component/crawler.py
View File

@ -41,7 +41,7 @@ class Crawler(ComponentBase, ABC):
ans = self.get_input()
ans = " - ".join(ans["content"]) if "content" in ans else ""
if not is_valid_url(ans):
return Crawler.be_output("")
return Crawler.be_output("URL not valid")
try:
result = asyncio.run(self.get_web(ans))