Skip to content

Conversation

@VibeCodingWithPhil
Copy link
Owner

Potential fix for https://github.com/VibeCodingWithPhil/agentwise/security/code-scanning/24

To fix the vulnerability, ensure that origins provided by the client (req.headers.origin) are never blindly reflected.

  • Only allow credentialed requests from origins that are strictly whitelisted in a static, validated manner, and never reflect dynamic or user-controlled origins.
  • If origin matches the exact value in a static whitelist and is not "null" (which is always unsafe in credentialed CORS scenarios), then set Access-Control-Allow-Origin to that origin and allow credentials.
  • For non-whitelisted origins (including any dynamic localhost variants), set Access-Control-Allow-Origin to a safe default (possibly don't set the header, or set to "false" or omit the header entirely), and set Access-Control-Allow-Credentials to 'false'.
  • Remove "file://" from allowed origins if credentials will ever be used.
  • Never ever reflect the "null" origin, even if an attacker tries to trick your logic.

Specifically, in handleHttpRequest inside src/context/SharedContextServer.ts, ensure that:

  • "null" is never in the whitelist.
  • "file://" is never in the whitelist.
  • Only reflect origins exactly matching a static whitelist.
  • For any other or dynamic origins, do not reflect nor allow credentials.
  • If you wish to allow local development flexibility, consider a secondary implementation that never sends credential headers for those variants.
  • Thus, edit lines 162–182 so that credentials are only ever allowed for strictly whitelisted, safe origins.

Suggested fixes powered by Copilot Autofix. Review carefully before merging.

…or credentials transfer

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant