ssrf-agent

prevent SSRF in http(s) request

Usage no npm install needed!

<script type="module">
  import ssrfAgent from 'https://cdn.skypack.dev/ssrf-agent';
</script>

README

ssrf-agent

prevent SSRF in http(s) request

Install

npm install ssrf-agent --save

Usage

const ssrfAgent = require('ssrf-agent');
const request = require('request');
// with request module
const url = 'http://www.welefen.com'
request(url, {
  agent: ssrfAgent(url)
}, (err, response, body) => {
  
})

const ssrfAgent = require('ssrf-agent');
const fetch = require('node-fetch');
// with node-fetch module
const url = 'http://www.welefen.com'
fetch(url, {
  agent: ssrfAgent(url)
}).then(res => res.text).then(data => {

}).catch(err => {

})

Options

const getAgent = require('ssrf-agent');
const agent = getAgent(ipChecker, agent);

ipChecker(ip) {Function} check ip is allowed, default is require('ip').isPrivate
agent {String | Object} default is http, support http https or agent instance