admin/labFusion
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

chore: Update host binding in service-adapters main.py
Some checks failed
Integration Tests / integration-tests (push) Failing after 27s
Details
Integration Tests / performance-tests (push) Has been skipped
Details
Service Adapters (Python FastAPI) / test (3.11) (push) Failing after 39s
Details
Service Adapters (Python FastAPI) / test (3.12) (push) Failing after 40s
Details
Service Adapters (Python FastAPI) / test (3.14) (push) Failing after 11s
Details
Service Adapters (Python FastAPI) / test (3.13) (push) Failing after 41s
Details
Service Adapters (Python FastAPI) / build (push) Has been skipped
Details
Docker Build and Push / build-and-push (push) Failing after 3m1s
Details

Browse Source 
### Summary of Changes
- Changed the host binding in `main.py` from `0.0.0.0` to `127.0.0.1` to restrict access to localhost, enhancing security by preventing external access.

### Expected Results
- Improved security posture of the service-adapters module by limiting the network exposure of the application.
This commit is contained in:
GSRN
2025-09-16 23:55:41 +02:00
parent e5ae5e3a0c
commit 8306137ef3
2 changed files with 1 additions and 231 deletions
Download Patch File Download Diff File Expand all files Collapse all files

230
services/service-adapters/bandit-report.json
View File

@@ -1,230 +0,0 @@
{
"errors": [],
"generated_at": "2025-09-12T15:43:08Z",
"metrics": {
".\\main.py": {
"CONFIDENCE.HIGH": 0,
"CONFIDENCE.LOW": 0,
"CONFIDENCE.MEDIUM": 1,
"CONFIDENCE.UNDEFINED": 0,
"SEVERITY.HIGH": 0,
"SEVERITY.LOW": 0,
"SEVERITY.MEDIUM": 1,
"SEVERITY.UNDEFINED": 0,
"loc": 28,
"nosec": 0,
"skipped_tests": 0
},
".\\main_old.py": {
"CONFIDENCE.HIGH": 0,
"CONFIDENCE.LOW": 0,
"CONFIDENCE.MEDIUM": 1,
"CONFIDENCE.UNDEFINED": 0,
"SEVERITY.HIGH": 0,
"SEVERITY.LOW": 0,
"SEVERITY.MEDIUM": 1,
"SEVERITY.UNDEFINED": 0,
"loc": 368,
"nosec": 0,
"skipped_tests": 0
},
".\\models\\__init__.py": {
"CONFIDENCE.HIGH": 0,
"CONFIDENCE.LOW": 0,
"CONFIDENCE.MEDIUM": 0,
"CONFIDENCE.UNDEFINED": 0,
"SEVERITY.HIGH": 0,
"SEVERITY.LOW": 0,
"SEVERITY.MEDIUM": 0,
"SEVERITY.UNDEFINED": 0,
"loc": 0,
"nosec": 0,
"skipped_tests": 0
},
".\\models\\schemas.py": {
"CONFIDENCE.HIGH": 0,
"CONFIDENCE.LOW": 0,
"CONFIDENCE.MEDIUM": 0,
"CONFIDENCE.UNDEFINED": 0,
"SEVERITY.HIGH": 0,
"SEVERITY.LOW": 0,
"SEVERITY.MEDIUM": 0,
"SEVERITY.UNDEFINED": 0,
"loc": 51,
"nosec": 0,
"skipped_tests": 0
},
".\\routes\\__init__.py": {
"CONFIDENCE.HIGH": 0,
"CONFIDENCE.LOW": 0,
"CONFIDENCE.MEDIUM": 0,
"CONFIDENCE.UNDEFINED": 0,
"SEVERITY.HIGH": 0,
"SEVERITY.LOW": 0,
"SEVERITY.MEDIUM": 0,
"SEVERITY.UNDEFINED": 0,
"loc": 0,
"nosec": 0,
"skipped_tests": 0
},
".\\routes\\events.py": {
"CONFIDENCE.HIGH": 0,
"CONFIDENCE.LOW": 0,
"CONFIDENCE.MEDIUM": 0,
"CONFIDENCE.UNDEFINED": 0,
"SEVERITY.HIGH": 0,
"SEVERITY.LOW": 0,
"SEVERITY.MEDIUM": 0,
"SEVERITY.UNDEFINED": 0,
"loc": 59,
"nosec": 0,
"skipped_tests": 0
},
".\\routes\\frigate.py": {
"CONFIDENCE.HIGH": 0,
"CONFIDENCE.LOW": 0,
"CONFIDENCE.MEDIUM": 0,
"CONFIDENCE.UNDEFINED": 0,
"SEVERITY.HIGH": 0,
"SEVERITY.LOW": 0,
"SEVERITY.MEDIUM": 0,
"SEVERITY.UNDEFINED": 0,
"loc": 58,
"nosec": 0,
"skipped_tests": 0
},
".\\routes\\general.py": {
"CONFIDENCE.HIGH": 0,
"CONFIDENCE.LOW": 0,
"CONFIDENCE.MEDIUM": 0,
"CONFIDENCE.UNDEFINED": 0,
"SEVERITY.HIGH": 0,
"SEVERITY.LOW": 0,
"SEVERITY.MEDIUM": 0,
"SEVERITY.UNDEFINED": 0,
"loc": 42,
"nosec": 0,
"skipped_tests": 0
},
".\\routes\\home_assistant.py": {
"CONFIDENCE.HIGH": 0,
"CONFIDENCE.LOW": 0,
"CONFIDENCE.MEDIUM": 0,
"CONFIDENCE.UNDEFINED": 0,
"SEVERITY.HIGH": 0,
"SEVERITY.LOW": 0,
"SEVERITY.MEDIUM": 0,
"SEVERITY.UNDEFINED": 0,
"loc": 66,
"nosec": 0,
"skipped_tests": 0
},
".\\routes\\immich.py": {
"CONFIDENCE.HIGH": 0,
"CONFIDENCE.LOW": 0,
"CONFIDENCE.MEDIUM": 0,
"CONFIDENCE.UNDEFINED": 0,
"SEVERITY.HIGH": 0,
"SEVERITY.LOW": 0,
"SEVERITY.MEDIUM": 0,
"SEVERITY.UNDEFINED": 0,
"loc": 57,
"nosec": 0,
"skipped_tests": 0
},
".\\services\\__init__.py": {
"CONFIDENCE.HIGH": 0,
"CONFIDENCE.LOW": 0,
"CONFIDENCE.MEDIUM": 0,
"CONFIDENCE.UNDEFINED": 0,
"SEVERITY.HIGH": 0,
"SEVERITY.LOW": 0,
"SEVERITY.MEDIUM": 0,
"SEVERITY.UNDEFINED": 0,
"loc": 0,
"nosec": 0,
"skipped_tests": 0
},
".\\services\\config.py": {
"CONFIDENCE.HIGH": 0,
"CONFIDENCE.LOW": 0,
"CONFIDENCE.MEDIUM": 0,
"CONFIDENCE.UNDEFINED": 0,
"SEVERITY.HIGH": 0,
"SEVERITY.LOW": 0,
"SEVERITY.MEDIUM": 0,
"SEVERITY.UNDEFINED": 0,
"loc": 25,
"nosec": 0,
"skipped_tests": 0
},
".\\services\\redis_client.py": {
"CONFIDENCE.HIGH": 0,
"CONFIDENCE.LOW": 0,
"CONFIDENCE.MEDIUM": 0,
"CONFIDENCE.UNDEFINED": 0,
"SEVERITY.HIGH": 0,
"SEVERITY.LOW": 0,
"SEVERITY.MEDIUM": 0,
"SEVERITY.UNDEFINED": 0,
"loc": 7,
"nosec": 0,
"skipped_tests": 0
},
"_totals": {
"CONFIDENCE.HIGH": 0,
"CONFIDENCE.LOW": 0,
"CONFIDENCE.MEDIUM": 2,
"CONFIDENCE.UNDEFINED": 0,
"SEVERITY.HIGH": 0,
"SEVERITY.LOW": 0,
"SEVERITY.MEDIUM": 2,
"SEVERITY.UNDEFINED": 0,
"loc": 761,
"nosec": 0,
"skipped_tests": 0
}
},
"results": [
{
"code": "37 \n38 uvicorn.run(app, host=\"0.0.0.0\", port=8000)\n",
"col_offset": 26,
"end_col_offset": 35,
"filename": ".\\main.py",
"issue_confidence": "MEDIUM",
"issue_cwe": {
"id": 605,
"link": "https://cwe.mitre.org/data/definitions/605.html"
},
"issue_severity": "MEDIUM",
"issue_text": "Possible binding to all interfaces.",
"line_number": 38,
"line_range": [
38
],
"more_info": "https://bandit.readthedocs.io/en/1.8.6/plugins/b104_hardcoded_bind_all_interfaces.html",
"test_id": "B104",
"test_name": "hardcoded_bind_all_interfaces"
},
{
"code": "454 \n455 uvicorn.run(app, host=\"0.0.0.0\", port=8000)\n",
"col_offset": 26,
"end_col_offset": 35,
"filename": ".\\main_old.py",
"issue_confidence": "MEDIUM",
"issue_cwe": {
"id": 605,
"link": "https://cwe.mitre.org/data/definitions/605.html"
},
"issue_severity": "MEDIUM",
"issue_text": "Possible binding to all interfaces.",
"line_number": 455,
"line_range": [
455
],
"more_info": "https://bandit.readthedocs.io/en/1.8.6/plugins/b104_hardcoded_bind_all_interfaces.html",
"test_id": "B104",
"test_name": "hardcoded_bind_all_interfaces"
}
]
}

2
services/service-adapters/main.py
View File

@@ -35,4 +35,4 @@ app.include_router(events.router)
if __name__ == "__main__": if __name__ == "__main__":
import uvicorn import uvicorn
uvicorn.run(app, host="0.0.0.0", port=8000) uvicorn.run(app, host="127.0.0.1", port=8000)