Skip to content

Commit 2d0dcc6

Browse files
danbarrdanbarr
authored
Update network permission profiles in the registry (#801)
1 parent 8871e97 commit 2d0dcc6

File tree

1 file changed

+33
-46
lines changed

1 file changed

+33
-46
lines changed

pkg/registry/data/registry.json

Lines changed: 33 additions & 46 deletions
Original file line numberDiff line numberDiff line change
@@ -95,8 +95,8 @@
9595
"network": {
9696
"outbound": {
9797
"allow_host": [
98-
"atlassian.net",
99-
"atlassian.com"
98+
".atlassian.net",
99+
".atlassian.com"
100100
],
101101
"allow_port": [
102102
443
@@ -348,12 +348,8 @@
348348
"network": {
349349
"outbound": {
350350
"allow_host": [],
351-
"allow_port": [
352-
443
353-
],
354-
"allow_transport": [
355-
"tcp"
356-
],
351+
"allow_port": [],
352+
"allow_transport": [],
357353
"insecure_allow_all": false
358354
}
359355
},
@@ -397,9 +393,7 @@
397393
"permissions": {
398394
"network": {
399395
"outbound": {
400-
"allow_host": [
401-
"github.com"
402-
],
396+
"allow_host": [],
403397
"allow_port": [
404398
443
405399
],
@@ -444,12 +438,8 @@
444438
"network": {
445439
"outbound": {
446440
"allow_host": [],
447-
"allow_port": [
448-
443
449-
],
450-
"allow_transport": [
451-
"tcp"
452-
],
441+
"allow_port": [],
442+
"allow_transport": [],
453443
"insecure_allow_all": false
454444
}
455445
},
@@ -542,14 +532,16 @@
542532
"permissions": {
543533
"network": {
544534
"outbound": {
545-
"allow_host": [],
535+
"allow_host": [
536+
"api.firecrawl.dev"
537+
],
546538
"allow_port": [
547539
443
548540
],
549541
"allow_transport": [
550542
"tcp"
551543
],
552-
"insecure_allow_all": true
544+
"insecure_allow_all": false
553545
}
554546
},
555547
"read": [],
@@ -714,8 +706,8 @@
714706
"network": {
715707
"outbound": {
716708
"allow_host": [
717-
"docs.github.com",
718-
"github.com"
709+
".github.com",
710+
".githubusercontent.com"
719711
],
720712
"allow_port": [
721713
443
@@ -1346,7 +1338,9 @@
13461338
"permissions": {
13471339
"network": {
13481340
"outbound": {
1349-
"allow_host": [],
1341+
"allow_host": [
1342+
"api.netbird.io"
1343+
],
13501344
"allow_port": [
13511345
443
13521346
],
@@ -1476,16 +1470,14 @@
14761470
"permissions": {
14771471
"network": {
14781472
"outbound": {
1479-
"allow_host": [
1480-
"*"
1481-
],
1473+
"allow_host": [],
14821474
"allow_port": [
14831475
443
14841476
],
14851477
"allow_transport": [
14861478
"tcp"
14871479
],
1488-
"insecure_allow_all": false
1480+
"insecure_allow_all": true
14891481
}
14901482
},
14911483
"read": [],
@@ -1879,7 +1871,7 @@
18791871
"allow_transport": [
18801872
"tcp"
18811873
],
1882-
"insecure_allow_all": false
1874+
"insecure_allow_all": true
18831875
}
18841876
},
18851877
"read": [],
@@ -1943,7 +1935,10 @@
19431935
"transport": "stdio"
19441936
},
19451937
"semgrep": {
1946-
"args": [],
1938+
"args": [
1939+
"--transport",
1940+
"sse"
1941+
],
19471942
"description": "An MCP server for using Semgrep to scan code for security vulnerabilities. Semgrep is a fast, deterministic static analysis tool that semantically understands many languages and comes with over 5,000 rules.",
19481943
"env_vars": [
19491944
{
@@ -1963,8 +1958,7 @@
19631958
"network": {
19641959
"outbound": {
19651960
"allow_host": [
1966-
"semgrep.dev",
1967-
"semgrep.com"
1961+
"semgrep.dev"
19681962
],
19691963
"allow_port": [
19701964
443
@@ -2062,12 +2056,8 @@
20622056
"network": {
20632057
"outbound": {
20642058
"allow_host": [],
2065-
"allow_port": [
2066-
443
2067-
],
2068-
"allow_transport": [
2069-
"tcp"
2070-
],
2059+
"allow_port": [],
2060+
"allow_transport": [],
20712061
"insecure_allow_all": false
20722062
}
20732063
},
@@ -2120,8 +2110,7 @@
21202110
"network": {
21212111
"outbound": {
21222112
"allow_host": [
2123-
"api.slack.com",
2124-
"slack.com"
2113+
".slack.com"
21252114
],
21262115
"allow_port": [
21272116
443
@@ -2222,14 +2211,16 @@
22222211
"permissions": {
22232212
"network": {
22242213
"outbound": {
2225-
"allow_host": [],
2214+
"allow_host": [
2215+
"registry.terraform.io"
2216+
],
22262217
"allow_port": [
22272218
443
22282219
],
22292220
"allow_transport": [
22302221
"tcp"
22312222
],
2232-
"insecure_allow_all": true
2223+
"insecure_allow_all": false
22332224
}
22342225
},
22352226
"read": [],
@@ -2273,12 +2264,8 @@
22732264
"network": {
22742265
"outbound": {
22752266
"allow_host": [],
2276-
"allow_port": [
2277-
443
2278-
],
2279-
"allow_transport": [
2280-
"tcp"
2281-
],
2267+
"allow_port": [],
2268+
"allow_transport": [],
22822269
"insecure_allow_all": false
22832270
}
22842271
},

0 commit comments

Comments
 (0)