fix: resolve CodeQL URL substring sanitization vulnerabilities

roomote · roomote · commit 63199357a62a · 2025-07-21T20:53:19.000Z
- Replace insecure .includes() checks with proper hostname validation
- Add _isAzureHost() method to safely check for Azure domains
- Add _isVolcesHost() method to safely check for Volces domains
- Prevent security vulnerabilities from malicious URLs like malicious-azure.com.attacker.com
diff --git a/src/api/providers/openai.ts b/src/api/providers/openai.ts
@@ -45,9 +45,7 @@ export class OpenAiHandler extends BaseProvider implements SingleCompletionHandl
 		const isAzureOpenAi = !!(
 			this.options.azureApiVersion ||
 			options.openAiUseAzure ||
-			(urlHost &&
-				(urlHost.includes("azure.com") || urlHost.includes("azure.us")) &&
-				!this.options.openAiModelId?.toLowerCase().includes("deepseek"))
+			(urlHost && this._isAzureHost(urlHost) && !this.options.openAiModelId?.toLowerCase().includes("deepseek"))
 		)
 
 		const headers = {
@@ -97,7 +95,7 @@ export class OpenAiHandler extends BaseProvider implements SingleCompletionHandl
 			const enabledLegacyFormat = this.options.openAiLegacyFormat ?? false
 			const isAzureAiInference = this._isAzureAiInference(modelUrl)
 			const deepseekReasoner = modelId.includes("deepseek-reasoner") || enabledR1Format
-			const ark = modelUrl.includes(".volces.com")
+			const ark = this._isVolcesHost(modelUrl)
 
 			// Handle reasoning models (o1, o3, o4) separately
 			// These models don't support system messages in the traditional way
@@ -337,7 +335,7 @@ export class OpenAiHandler extends BaseProvider implements SingleCompletionHandl
 		const isAzureOpenAi = !!(
 			this.options.azureApiVersion ||
 			this.options.openAiUseAzure ||
-			(urlHost && (urlHost.includes("azure.com") || urlHost.includes("azure.us")))
+			(urlHost && this._isAzureHost(urlHost))
 		)
 
 		if (this.options.openAiStreamingEnabled ?? true) {
@@ -516,6 +514,25 @@ export class OpenAiHandler extends BaseProvider implements SingleCompletionHandl
 			requestOptions.max_completion_tokens = this.options.modelMaxTokens || modelInfo.maxTokens
 		}
 	}
+
+	/**
+	 * Checks if the host is an Azure domain
+	 * Properly validates the hostname to prevent security issues
+	 */
+	private _isAzureHost(host: string): boolean {
+		// Check for exact Azure domain suffixes
+		return host.endsWith(".azure.com") || host.endsWith(".azure.us") || host === "azure.com" || host === "azure.us"
+	}
+
+	/**
+	 * Checks if the URL is from Volces (Ark) service
+	 * Properly validates the hostname to prevent security issues
+	 */
+	private _isVolcesHost(baseUrl?: string): boolean {
+		const urlHost = this._getUrlHost(baseUrl)
+		// Check for exact Volces domain suffix
+		return urlHost.endsWith(".volces.com") || urlHost === "volces.com"
+	}
 }
 
 export async function getOpenAiModels(baseUrl?: string, apiKey?: string, openAiHeaders?: Record<string, string>) {
