odysseus/routes at 55c7a4a5469aec0c54bcaeae7604122fdb607ea8 - odysseus - Gitea: Git with a cup of tea

MrSphay/odysseus

Files

History

Mubashir R 319ba50a44 fix: validate client-supplied image _endpoint to prevent SSRF (gallery proxies) (#1718 )

POST /api/image/harmonize and POST /api/image/inpaint read an `_endpoint` from
the request body and issue server-side httpx POSTs to it with no validation. A
caller can set `_endpoint` to http://169.254.169.254/ (cloud instance metadata)
or any internal/loopback address the server can reach, turning these routes into
an SSRF primitive.

routes/embedding_routes.py already runs its user-supplied endpoint through
src.url_safety.check_outbound_url; these two routes were missing the same guard.
Validate `_endpoint` the same way before any outbound request: non-HTTP(S)
schemes and the link-local metadata range are always rejected, and
IMAGE_BLOCK_PRIVATE_IPS=true blocks private/loopback for full lockdown (the
local-first default still allows LAN diffusion servers).

Co-authored-by: Claude Opus 4.8 <noreply@anthropic.com>

2026-06-03 13:34:17 +09:00

..

__init__.py

Odysseus v1.0

2026-05-31 23:58:26 +09:00

admin_wipe_routes.py

Admin: wipe gallery albums with images

2026-06-02 20:35:57 +09:00

api_token_routes.py

Odysseus v1.0

2026-05-31 23:58:26 +09:00

assistant_routes.py

Odysseus v1.0

2026-05-31 23:58:26 +09:00

auth_routes.py

fix(auth): case-insensitive owner migration on username rename (#1183 )

2026-06-02 23:18:15 +09:00

backup_routes.py

fix: backup import drops a user's memory when its text matches another user's (#1743 )

2026-06-03 13:29:14 +09:00

calendar_routes.py

fix(calendar): negotiate Digest auth in CalDAV test endpoint (#1767 )

2026-06-03 13:23:28 +09:00

chat_helpers.py

Harden session endpoint owner scope (#1308 )

2026-06-03 02:40:22 +09:00

chat_routes.py

fix: rewriting a message is lost on reload due to a non-existent DB column (#1729 )

2026-06-03 13:31:19 +09:00

cleanup_routes.py

Odysseus v1.0

2026-05-31 23:58:26 +09:00

compare_routes.py

feat(ai): add OpenRouter and Ollama Cloud providers (#231 )

2026-06-01 14:26:10 +09:00

contacts_routes.py

Add native Windows compatibility layer

2026-06-01 15:09:47 +09:00

cookbook_helpers.py

Add a 'Rebuild llama.cpp' Cookbook action to force a fresh GPU build (#1787 )

2026-06-03 13:28:19 +09:00

cookbook_routes.py

fix(cookbook): set UTF-8 encoding for detached download/serve subprocesses (#1599 )

2026-06-03 08:37:11 +09:00

diagnostics_routes.py

Fix email-thread HTML injection, attachment path traversal, and missing authz (#475 )

2026-06-01 22:20:17 +09:00

document_helpers.py

fix: _derive_title crashes on non-string content instead of returning Untitled (#1751 )

2026-06-03 13:25:41 +09:00

document_routes.py

fix: document library language facet undercounts text documents (#1758 )

2026-06-03 13:28:38 +09:00

editor_draft_routes.py

Odysseus v1.0

2026-05-31 23:58:26 +09:00

email_helpers.py

fix: IMAP connection leak in _imap_move on store/expunge failure (#1325 )

2026-06-03 02:35:36 +09:00

email_pollers.py

Reconnect after a failed SEARCH ALL so the email poller doesn't desync IMAP (#1613 ) (#1748 )

2026-06-03 13:28:53 +09:00

email_routes.py

fix: IMAP connection leak in _list_emails_sync on exception (#1330 )

2026-06-03 02:44:23 +09:00

embedding_routes.py

fix: SSRF hardening for the custom embedding endpoint URL (#132 ) (#1206 )

2026-06-02 23:46:33 +09:00

emoji_routes.py

Odysseus v1.0

2026-05-31 23:58:26 +09:00

font_routes.py

Odysseus v1.0

2026-05-31 23:58:26 +09:00

gallery_helpers.py

fix: gallery tag filters and tag-cleanup are empty in single-user mode (#1771 )

2026-06-03 13:23:08 +09:00

gallery_routes.py

fix: validate client-supplied image _endpoint to prevent SSRF (gallery proxies) (#1718 )

2026-06-03 13:34:17 +09:00

history_routes.py

fix: history DB fallback returned hidden (compaction) messages to the client (#1726 )

2026-06-03 13:30:11 +09:00

hwfit_routes.py

fix(hwfit): honor manual "metal" backend in the hardware simulator (#1090 )

2026-06-02 23:12:34 +09:00

mcp_routes.py

Fix email-thread HTML injection, attachment path traversal, and missing authz (#475 )

2026-06-01 22:20:17 +09:00

memory_routes.py

Auth: use require_user for remaining guarded routes

2026-06-02 20:55:50 +09:00

model_routes.py

fix: Cookbook local GGUF serving inside Docker (#1264 )

2026-06-03 02:08:09 +09:00

note_routes.py

fix: fire-reminder endpoint crashes with NameError on _gcu (#1250 )

2026-06-03 01:02:25 +09:00

personal_routes.py

fix: personal-docs path confinement used abspath, allowing symlink escape (#1728 )

2026-06-03 13:29:57 +09:00

prefs_routes.py

fix: disabling auth wipes all users' preferences on next pref save (#1764 )

2026-06-03 13:23:50 +09:00

preset_routes.py

Odysseus v1.0

2026-05-31 23:58:26 +09:00

research_routes.py

fix(auth): honor AUTH_ENABLED=false on owner-scoped endpoints (no /login loop) (#880 )

2026-06-02 12:26:26 +09:00

search_routes.py

Odysseus v1.0

2026-05-31 23:58:26 +09:00

session_routes.py

fix: _sanitize_export_filename crashes on a non-string session name (#1607 )

2026-06-03 08:35:47 +09:00

shell_routes.py

Add a 'Rebuild llama.cpp' Cookbook action to force a fresh GPU build (#1787 )

2026-06-03 13:28:19 +09:00

signature_routes.py

Odysseus v1.0

2026-05-31 23:58:26 +09:00

skills_routes.py

fix: skill test-task / precision helpers crash on a non-dict skill (#1638 )

2026-06-03 08:59:24 +09:00

stt_routes.py

Odysseus v1.0

2026-05-31 23:58:26 +09:00

task_routes.py

Polish email tasks and window controls

2026-06-01 20:56:46 +09:00

tts_routes.py

Odysseus v1.0

2026-05-31 23:58:26 +09:00

upload_routes.py

Fix multi-file uploads tripping the per-IP concurrency guard (#1346 ) (#1362 )

2026-06-03 04:04:19 +09:00

vault_routes.py

Keep Bitwarden unlock password off argv (#1311 )

2026-06-03 02:13:51 +09:00

webhook_routes.py

Treat Venice as a tool-capable SOTA cloud provider (#1173 )

2026-06-02 23:03:46 +09:00