Skip to content

fix: add Host header validation to prevent DNS rebinding attacks#1287

Merged
cristipufu merged 1 commit intomainfrom
fix/dns-rebinding-host-validation
Feb 11, 2026
Merged

fix: add Host header validation to prevent DNS rebinding attacks#1287
cristipufu merged 1 commit intomainfrom
fix/dns-rebinding-host-validation

Conversation

@cristipufu
Copy link
Member

@cristipufu cristipufu commented Feb 10, 2026

Summary

  • Add aiohttp middleware to validate the Host header on all incoming requests to the CLI server
  • Reject requests where the Host is not 127.0.0.1, localhost, or [::1] with a 403 Forbidden response
  • Mitigates DNS rebinding attacks (CVSS 6.5) where an attacker-controlled domain resolving to 127.0.0.1 could bypass same-origin policy and execute arbitrary commands on the local server

Test plan

  • Added test_rejects_invalid_host_header — verifies attacker-controlled domains get 403
  • Added test_allows_localhost_host_header — verifies localhost variants are accepted
  • All existing server tests continue to pass
  • Full test suite passes (1921 passed)

🤖 Generated with Claude Code

@cristipufu cristipufu self-assigned this Feb 10, 2026
@github-actions github-actions bot added test:uipath-langchain Triggers tests in the uipath-langchain-python repository test:uipath-llamaindex Triggers tests in the uipath-llamaindex-python repository labels Feb 10, 2026
@cristipufu cristipufu force-pushed the fix/dns-rebinding-host-validation branch from ef54f06 to 0e7fecc Compare February 10, 2026 14:28

This comment was marked as outdated.

Sign in to view

@cristipufu cristipufu force-pushed the fix/dns-rebinding-host-validation branch 2 times, most recently from ddf3430 to fc3cafe Compare February 11, 2026 05:25
@cristipufu @claude
fix: add Host header validation to prevent DNS rebinding attacks
1997edb 
The server binds to 127.0.0.1 but did not validate the Host header,
making it vulnerable to DNS rebinding attacks (CVSS 6.5). An attacker
could use a domain that resolves to 127.0.0.1 to bypass same-origin
policy and execute commands on the local server.

Add aiohttp middleware that rejects requests where the Host header is
not 127.0.0.1, localhost, or [::1].

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@cristipufu cristipufu force-pushed the fix/dns-rebinding-host-validation branch from fc3cafe to 1997edb Compare February 11, 2026 06:38
@cristipufu cristipufu merged commit c81bbed into main Feb 11, 2026
59 of 65 checks passed
@cristipufu cristipufu deleted the fix/dns-rebinding-host-validation branch February 11, 2026 06:46
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@cotovanu-cristian cotovanu-cristian cotovanu-cristian approved these changes

@robert-ursu robert-ursu Awaiting requested review from robert-ursu

Assignees

@cristipufu cristipufu

Labels

test:uipath-langchain Triggers tests in the uipath-langchain-python repository test:uipath-llamaindex Triggers tests in the uipath-llamaindex-python repository

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@cristipufu @cotovanu-cristian