Skip to content

Extension framework P2 security utilities (P2-3..P2-4) #6947

Description

@jongio

Parent: #6853
Related: #6856

Objective

Implement reusable security utility APIs for extension authors.

Proposal IDs covered

  • P2-3 Security validation package
  • P2-4 SSRF protection helpers

In scope

  • Security validation helper interfaces and threat assumptions.
  • SSRF safety helpers with secure defaults.
  • Positive/negative tests and guidance for safe adoption.

Out of scope

Deliverables

  • Validation helper API + implementation.
  • SSRF protection helper API + implementation.
  • Test coverage for normal + adversarial paths.
  • Security guidance for extension consumers.

Verification checklist

  • Safe defaults documented and enabled by default.
  • DNS/IP and URL policy behavior is deterministic and test-backed.
  • mage preflight passes.

Definition of done

  • P2-3 and P2-4 are complete, tested, and documented.

Metadata

Metadata

Assignees

Labels

No labels
No labels

Type

No type

Fields

No fields configured for issues without a type.

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions