Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

OPA-01-002: Query API vulnerable to SSRF attack #919

Closed
tsandall opened this issue Aug 30, 2018 · 0 comments
Closed

OPA-01-002: Query API vulnerable to SSRF attack #919

tsandall opened this issue Aug 30, 2018 · 0 comments
Assignees
@ashutosh-narkar

Comments

@tsandall
Copy link
Member

The Query API allows callers to execute ad-hoc Rego queries. Currently the queries are not sanitized which means that callers could include built-in calls like http.send (which execute on behalf of OPA). We can mitigate this kind of attack by rejecting incoming queries that invoke potentially unsafe calls like http.send.
@ashutosh-narkar ashutosh-narkar self-assigned this Sep 4, 2018
@ashutosh-narkar ashutosh-narkar mentioned this issue Sep 4, 2018
Merged
ashutosh-narkar added a commit to ashutosh-narkar/opa that referenced this issue Sep 4, 2018
@ashutosh-narkar
Validate queries by checking unsafe builtins
5e30b00 
Fixes open-policy-agent#919

Signed-off-by: Ashutosh Narkar <[email protected]>
tsandall pushed a commit that referenced this issue Sep 4, 2018
@ashutosh-narkar @tsandall
Validate queries by checking unsafe builtins
2e03819 
Fixes #919

Signed-off-by: Ashutosh Narkar <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@ashutosh-narkar ashutosh-narkar

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@tsandall @ashutosh-narkar