less-lethal/allowlist.txt at main · pnc/less-lethal · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
# Allowlist rules — one per line.
#
# Format:   METHOD https://hostname/path/pattern
#
# Wildcards (*) are allowed in the path but NOT in the hostname.
# Each line grants access to exactly one HTTP method + URL pattern.
#
# Be specific: scope rules to the API version or resource path,
# not the entire domain.  Separate methods onto their own lines.
#
# Examples:
#   GET  https://api.github.com/repos/myorg/myrepo/pulls
#   POST https://api.github.com/repos/myorg/myrepo/issues
#   GET  https://api.openweathermap.org/data/2.5/weather

# ── Claude Code ────────────────────────────────────────────────────
# Anthropic API — scoped to the v1 API prefix so only API calls are
# permitted, not arbitrary requests to the domain.
GET https://claude.ai/install.sh
GET https://platform.claude.com/v1/oauth/hello
POST https://platform.claude.com/v1/oauth/token
POST https://api.anthropic.com/v1/*
GET  https://api.anthropic.com/v1/*
GET https://api.anthropic.com/api/*
POST https://api.anthropic.com/api/*

# Claude Code binary downloads from Google Cloud Storage.  GET-only
# to prevent POST-based exfiltration.  Scoped to the known Anthropic
# release bucket; paths vary by version and platform.
GET https://storage.googleapis.com/claude-code-dist-86c565f3-f756-42ad-8dfa-d59b1c096819/*
GET https://downloads.claude.ai/claude-code-releases/*
GET https://api.anthropic.com/api/hello

# ── uv (Python package manager) ───────────────────────────────────
# Installer script and binary download.  The install script lives at
# astral.sh and redirects to a GitHub release asset whose URL varies
# by version and platform.
GET https://astral.sh/uv/install.sh
GET https://github.com/astral-sh/uv/releases/*
GET https://release-assets.githubusercontent.com/github-production-release-asset/*