better ip discrimination

2024-09-03 20:06:12 +02:00 · 2024-01-18 03:06:27 +01:00 · 2024-01-18 03:06:27 +01:00 · 23b2f7d6bb
commit 23b2f7d6bb
parent 8b38cf0924
1 changed files with 9 additions and 7 deletions
--- a/package_linter.py
+++ b/package_linter.py
@ -1549,13 +1549,15 @@ class Configurations(TestSuite):
                    ( "0.0.0.0" in line or "::" in line )
                    and not line.strip().startswith(comment)
                ):
-                    yield Info(
-                        f"{filename}:{number}: Binding to '0.0.0.0' or '::' can result "
-                        "in a security issue as the reverse proxy and the SSO can be "
-                        "bypassed by knowing a public IP (typically an IPv6) and the "
-                        "app port. lease be sure that this behavior is intentional. "
-                        "Maybe use '127.0.0.1' or '::1' instead."
-                    )
+                    for ip in re.split("[ \t,='\"(){}\[\]]", line):
+                        if ip == "::" or "0.0.0.0" in ip:
+                            yield Info(
+                                f"{filename}:{number}: Binding to '0.0.0.0' or '::' can result "
+                                "in a security issue as the reverse proxy and the SSO can be "
+                                "bypassed by knowing a public IP (typically an IPv6) and the "
+                                "app port. lease be sure that this behavior is intentional. "
+                                "Maybe use '127.0.0.1' or '::1' instead."
+                            )

 #############################################
 #   __  __             _  __          _     #