fix: use unoptimized prop for HTTP images instead of open proxy

Reverts the http://** wildcard in remotePatterns which exposed the
_next/image endpoint as an SSRF-capable outbound proxy. HTTP-only
thumbnails on the graphics page now render with unoptimized prop,
bypassing server-side fetch while still displaying correctly.

Author: thostetler

next.config.mjs

@@ -163,10 +163,6 @@ const nextConfig = {
         protocol: 'https',
         hostname: '**',
       },
-      {
-        protocol: 'http',
-        hostname: '**',
-      },
     ],
   },
   compiler: {

src/pages/abs/[id]/graphics.tsx

@@ -92,7 +92,13 @@ const GraphicsPage: NextPage<{ statusCode?: number }> = ({ statusCode }) => {
                       as={SimpleLink}
                       href={figure.images[0].highres}
                     >
-                      <NextImage src={figure.images[0].thumbnail} width="150" height="150" alt={figure.figure_label} />
+                      <NextImage
+                        src={figure.images[0].thumbnail}
+                        width="150"
+                        height="150"
+                        alt={figure.figure_label}
+                        unoptimized={figure.images[0].thumbnail.startsWith('http://')}
+                      />
                       <Box aria-hidden="true">{figure.figure_label}</Box>
                     </Flex>
                   );