875c7f9b91
- Add full Telegram bot functionality with Z.AI API integration
- Implement 4 tools: Bash, FileEdit, WebSearch, Git
- Add 3 agents: Code Reviewer, Architect, DevOps Engineer
- Add 6 skills for common coding tasks
- Add systemd service file for 24/7 operation
- Add nginx configuration for HTTPS webhook
- Add comprehensive documentation
- Implement WebSocket server for real-time updates
- Add logging system with Winston
- Add environment validation
🤖 zCode CLI X - Agentic coder with Z.AI + Telegram integration
32 lines
1.2 KiB
TypeScript
32 lines
1.2 KiB
TypeScript
import { RequestHandler } from 'express';
|
|
/**
|
|
* Express middleware for DNS rebinding protection.
|
|
* Validates Host header hostname (port-agnostic) against an allowed list.
|
|
*
|
|
* This is particularly important for servers without authorization or HTTPS,
|
|
* such as localhost servers or development servers. DNS rebinding attacks can
|
|
* bypass same-origin policy by manipulating DNS to point a domain to a
|
|
* localhost address, allowing malicious websites to access your local server.
|
|
*
|
|
* @param allowedHostnames - List of allowed hostnames (without ports).
|
|
* For IPv6, provide the address with brackets (e.g., '[::1]').
|
|
* @returns Express middleware function
|
|
*
|
|
* @example
|
|
* ```typescript
|
|
* const middleware = hostHeaderValidation(['localhost', '127.0.0.1', '[::1]']);
|
|
* app.use(middleware);
|
|
* ```
|
|
*/
|
|
export declare function hostHeaderValidation(allowedHostnames: string[]): RequestHandler;
|
|
/**
|
|
* Convenience middleware for localhost DNS rebinding protection.
|
|
* Allows only localhost, 127.0.0.1, and [::1] (IPv6 localhost) hostnames.
|
|
*
|
|
* @example
|
|
* ```typescript
|
|
* app.use(localhostHostValidation());
|
|
* ```
|
|
*/
|
|
export declare function localhostHostValidation(): RequestHandler;
|
|
//# sourceMappingURL=hostHeaderValidation.d.ts.map
|