AI/reader
1
0
Fork 0
mirror of https://git.mirrors.martin98.com/https://github.com/jina-ai/reader synced 2025-08-15 15:05:58 +08:00
Code Issues Packages Projects Releases Wiki Activity

fix: explicitly reject non http protocols

Browse Source
This commit is contained in:
yanlong.wang 2024-04-18 15:35:06 +08:00
parent abc817e960
commit d4ca381c38
No known key found for this signature in database
GPG Key ID: C0A623C0BADF9F37
1 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
backend/functions/src/cloud-functions/crawler.ts
View File

@ -195,6 +195,12 @@ ${this.content}
let urlToCrawl;
try {
urlToCrawl = new URL(normalizeUrl(noSlashURL.trim(), { stripWWW: false, removeTrailingSlash: false, removeSingleSlash: false }));
if (urlToCrawl.protocol !== 'http:' && urlToCrawl.protocol !== 'https:') {
throw new ParamValidationError({
message: `Invalid protocol ${urlToCrawl.protocol}`,
path: 'url'
});
}
} catch (err) {
throw new ParamValidationError({
message: `${err}`,