Merge PR #22: feat: improve web_fetch URL validation and security

2026-02-03 17:13:38 +00:00 · 2026-02-03 17:13:38 +00:00 · 020d8d46cf
commit 020d8d46cf
parent d9d744d536 1a784fca1e
1 changed files with 28 additions and 4 deletions
--- a/nanobot/agent/tools/web.py
+++ b/nanobot/agent/tools/web.py
@ -5,6 +5,7 @@ import json
 import os
 import re
 from typing import Any
+from urllib.parse import urlparse

 import httpx

@ -12,6 +13,7 @@ from nanobot.agent.tools.base import Tool

 # Shared constants
 USER_AGENT = "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_7_2) AppleWebKit/537.36"
+MAX_REDIRECTS = 5  # Limit redirects to prevent DoS attacks


 def _strip_tags(text: str) -> str:
@ -28,6 +30,19 @@ def _normalize(text: str) -> str:
    return re.sub(r'\n{3,}', '\n\n', text).strip()


+def _validate_url(url: str) -> tuple[bool, str]:
+    """Validate URL: must be http(s) with valid domain."""
+    try:
+        p = urlparse(url)
+        if p.scheme not in ('http', 'https'):
+            return False, f"Only http/https allowed, got '{p.scheme or 'none'}'"
+        if not p.netloc:
+            return False, "Missing domain"
+        return True, ""
+    except Exception as e:
+        return False, str(e)
+
+
 class WebSearchTool(Tool):
    """Search the web using Brave Search API."""
    
@ -95,12 +110,21 @@ class WebFetchTool(Tool):
    
    async def execute(self, url: str, extractMode: str = "markdown", maxChars: int | None = None, **kwargs: Any) -> str:
        from readability import Document
-        
+
        max_chars = maxChars or self.max_chars
-        
+
+        # Validate URL before fetching
+        is_valid, error_msg = _validate_url(url)
+        if not is_valid:
+            return json.dumps({"error": f"URL validation failed: {error_msg}", "url": url})
+
        try:
-            async with httpx.AsyncClient() as client:
-                r = await client.get(url, headers={"User-Agent": USER_AGENT}, follow_redirects=True, timeout=30.0)
+            async with httpx.AsyncClient(
+                follow_redirects=True,
+                max_redirects=MAX_REDIRECTS,
+                timeout=30.0
+            ) as client:
+                r = await client.get(url, headers={"User-Agent": USER_AGENT})
                r.raise_for_status()
            
            ctype = r.headers.get("content-type", "")