neko/internal/safehttp, branch claude/add-css-themes-QGTmP self-hosted, single user rss reader Fix link underlines in v3 UI and SSRF proxy bypass 2026-02-17T06:27:32+00:00 Claude noreply@anthropic.com 2026-02-17T06:27:32+00:00 fde324d1a764841debefedf588c4b06a3f73484c - Add text-decoration: none to .item-description a links in v3 CSS to match v1 style (no underlines on feed item content links) - Fix safehttp to disable proxy on safe client; without this, HTTP proxy env vars bypass the DialContext SSRF check for IPs like 10.0.0.1, causing TestSafeClient to fail https://claude.ai/code/session_01DpWhB9uGGMBnzqS28HxnuV 
- Add text-decoration: none to .item-description a links in v3 CSS
  to match v1 style (no underlines on feed item content links)
- Fix safehttp to disable proxy on safe client; without this, HTTP
  proxy env vars bypass the DialContext SSRF check for IPs like
  10.0.0.1, causing TestSafeClient to fail

https://claude.ai/code/session_01DpWhB9uGGMBnzqS28HxnuV
security: add HTTP security headers (fixing NK-7xuajb) 2026-02-14T17:20:40+00:00 Adam Mathes adam@adammathes.com 2026-02-14T17:20:40+00:00 08032aab10f0e1429d25ecae1acf6c40d63e9ff4 






security: mitigate SSRF in image proxy and feed fetcher (fixing NK-0ca7nq)
2026-02-14T17:17:56+00:00

Adam Mathes
adam@adammathes.com

2026-02-14T17:17:56+00:00

cac85dc06b519d9bd6db4d017d501dffbbd8bac4