Merge pull request #9 from adammathes/claude/fix-open-tickets-IVV1C

Update benchmarks, fix SSRF proxy bypass, and refactor frontend sidebar layout
author: Adam Mathes <adam@adammathes.com> 2026-02-17 07:57:52 -0800
committer: GitHub <noreply@github.com> 2026-02-17 07:57:52 -0800
commit: 5c3b6234caf8b6c27f37d67d4e04c853e59888ef (patch)
tree: 3abc994bd8ac3699449cf37ca25ce34610657588 /internal/safehttp
parent: c15995fe944a6e8f3e68cf0c44fd454e53f21081 (diff)
parent: 7f0b9ae0f53f26304d26a8d45191f268821425c8 (diff)
download: neko-5c3b6234caf8b6c27f37d67d4e04c853e59888ef.tar.gz
neko-5c3b6234caf8b6c27f37d67d4e04c853e59888ef.tar.bz2
neko-5c3b6234caf8b6c27f37d67d4e04c853e59888ef.zip
1 files changed, 1 insertions, 0 deletions
diff --git a/internal/safehttp/safehttp.go b/internal/safehttp/safehttp.go
index e0859c4..f2c316b 100644
--- a/internal/safehttp/safehttp.go
+++ b/internal/safehttp/safehttp.go
@@ -80,6 +80,7 @@ func NewSafeClient(timeout time.Duration) *http.Client {
 
 	transport := http.DefaultTransport.(*http.Transport).Clone()
 	transport.DialContext = SafeDialer(dialer)
+	transport.Proxy = nil // Disable proxy to ensure SSRF checks are not bypassed
 
 	return &http.Client{
 		Timeout:   timeout,
author	Adam Mathes <adam@adammathes.com>	2026-02-17 07:57:52 -0800
committer	GitHub <noreply@github.com>	2026-02-17 07:57:52 -0800
commit	5c3b6234caf8b6c27f37d67d4e04c853e59888ef (patch)
tree	3abc994bd8ac3699449cf37ca25ce34610657588 /internal/safehttp
parent	c15995fe944a6e8f3e68cf0c44fd454e53f21081 (diff)
parent	7f0b9ae0f53f26304d26a8d45191f268821425c8 (diff)
download	neko-5c3b6234caf8b6c27f37d67d4e04c853e59888ef.tar.gz neko-5c3b6234caf8b6c27f37d67d4e04c853e59888ef.tar.bz2 neko-5c3b6234caf8b6c27f37d67d4e04c853e59888ef.zip