Review Finding
PR: #75 (feat: MCP server source control + 5 new session tools)
File: src/atlas_session/contract/atlascoin.py
Line: 13
Severity: must-fix
Description
ATLASCOIN_URL is read directly from the environment and used without validation as the base for all HTTP requests, including those that send soul_purpose, evidence, and escrow amounts. An attacker who can set environment variables can redirect these to an arbitrary server. Validate the URL scheme and host at startup (allow only http://localhost:* or require an explicit allowlist), and reject requests if the URL is not well-formed.
Auto-created by Claude Code Review.
Review Finding
PR: #75 (feat: MCP server source control + 5 new session tools)
File:
src/atlas_session/contract/atlascoin.pyLine: 13
Severity: must-fix
Description
ATLASCOIN_URLis read directly from the environment and used without validation as the base for all HTTP requests, including those that sendsoul_purpose,evidence, andescrowamounts. An attacker who can set environment variables can redirect these to an arbitrary server. Validate the URL scheme and host at startup (allow onlyhttp://localhost:*or require an explicit allowlist), and reject requests if the URL is not well-formed.Auto-created by Claude Code Review.