Skip to content

Fix/security validate profile image url#382

Open
Sharaf0 wants to merge 23 commits into
acryldata:masterfrom
Sharaf0:fix/security-validate-profile-image-url
Open

Fix/security validate profile image url#382
Sharaf0 wants to merge 23 commits into
acryldata:masterfrom
Sharaf0:fix/security-validate-profile-image-url

Conversation

@Sharaf0

@Sharaf0 Sharaf0 commented Apr 29, 2026

Copy link
Copy Markdown

Summary

Adds server-side validation for pictureLink URL fields on corpUserEditableInfo and corpGroupEditableInfo aspects to prevent browser-side SSRF, credential harvesting, and content injection attacks via the "Edit Profile → Image URL" field.

Previously, any arbitrary URL (including javascript:, data:, file:, or internal network addresses) could be stored as a profile image URL with no validation at any layer.

What Changed

New: UrlValidator (metadata-io)

An AspectPayloadValidator plugin that validates pictureLink URLs before persistence:

  • HTTPS-only: Rejects http://, javascript:, data:, file:, and other non-HTTPS schemes
  • Internal host blocking: Blocks localhost, 127.0.0.1, ::1, 169.254.169.254 (cloud metadata endpoint), and all RFC 1918 private ranges (10.x, 172.16-31.x, 192.168.x)
  • DNS resolution check: Rejects URLs with unresolvable hostnames
  • Default avatar allowed: The relative path assets/… used for default avatars continues to work

Modified: SpringStandardPluginConfiguration (metadata-service/factories)

Registered the UrlValidator bean for corpuser/corpUserEditableInfo and corpGroup/corpGroupEditableInfo on CREATE, CREATE_ENTITY, UPSERT, UPDATE, and PATCH operations.

Updated: docs/how/updating-datahub.md

Added an entry under "Other Notable Changes" documenting the behavioral change.

Testing

  • 12 unit tests covering: valid HTTPS URLs, default avatar path, HTTP rejection, javascript: rejection, data: rejection, file: rejection, localhost blocking, cloud metadata IP blocking, loopback IP blocking, private network IP blocking, corp group validation, and isInternalHost() unit tests
  • All 12 tests pass locally (TestNG + Mockito)

Checklist

  • The PR conforms to DataHub's Contributing Guideline (particularly PR Title Format)
  • Links to related issues (if applicable) — No existing issue; discovered during security audit
  • Tests for the changes have been added/updated (if applicable)
  • Docs related to the changes have been added/updated (if applicable)
  • For any breaking change/potential downtime/deprecation/big changes an entry has been made in Updating DataHub

@Sharaf0 Sharaf0 force-pushed the fix/security-validate-profile-image-url branch from 7c892fb to 15f6eed Compare April 29, 2026 22:01
Sharaf0 added 6 commits May 1, 2026 01:25
@Sharaf0
fix(security): validate profile image URLs to prevent SSRF
896b1f9 
Add server-side validation for pictureLink URLs on corpUserEditableInfo
and corpGroupEditableInfo aspects. The new UrlValidator:

- Enforces HTTPS-only scheme (blocks http, javascript, data, file, etc.)
- Blocks internal/private network addresses (localhost, 127.0.0.1, ::1,
  169.254.169.254, RFC1918 ranges) to prevent SSRF attacks
- Allows the default avatar relative path (assets/...)
- Rejects URLs with unresolvable hostnames

Includes 12 unit tests covering valid URLs, scheme enforcement, and
internal host blocking.
@Sharaf0
docs: add updating-datahub entry for profile image URL validation
f1bff31
@Sharaf0
fix(frontend): keep edit profile modal open on save failure Move onCl…
cde0d35 
…ose() from after the mutation promise chain into the .then() block so the modal stays open when the server rejects the input (e.g. URL validation failure). Previously the modal closed immediately on save, giving the false impression that the change was persisted.
@Sharaf0
fix(frontend): reset form state on failed profile update
165cd29 
When the mutation to update profile is rejected by the server (e.g.
invalid URL), reset both the React state and antd form fields back to
the original editModalData values. This prevents the rejected value
from persisting in the modal when it is reopened.
@Sharaf0
fix(security): allow empty/blank pictureLink in UrlValidator
e0dd72c 
Skip validation for empty or blank URLs so users can clear their
profile image. Adds testEmptyPictureLinkAllowed test case.
@Sharaf0
feat: make UrlValidator configurable via application.yaml
0f87933 
Add configuration flags for the UrlValidator under
metadataChangeProposal.validation.urlValidation:
- enabled: enable/disable the validator (default: true)
- allowHttp: allow http:// URLs in addition to https:// (default: false)
- extraDenyHosts: additional hostnames/IPs to block
- extraDenyCidrs: reserved for future CIDR-based blocking

Wire configuration through UrlValidationConfig POJO,
MCPValidationConfig, and SpringStandardPluginConfiguration with
@ConditionalOnProperty for the enabled flag.

Add 3 new tests covering allowHttp and extraDenyHosts configuration.
@Sharaf0 Sharaf0 force-pushed the fix/security-validate-profile-image-url branch from 75ebcca to bf29741 Compare April 30, 2026 23:26
@Sharaf0
test: classify urlValidation config properties as non-sensitive
afeb023 
Add metadataChangeProposal.validation.urlValidation.* properties
to NON_SENSITIVE_PROPERTIES in PropertiesCollectorConfigurationTest
to fix CI validation.
@Sharaf0 Sharaf0 force-pushed the fix/security-validate-profile-image-url branch from bf29741 to afeb023 Compare April 30, 2026 23:50
AdrianMachado and others added 4 commits May 8, 2026 16:45
@AdrianMachado @jayacryl
docs(observe): rework assertions docs around Anomaly Detection and fe…
79e4866 
…ature-availability stages (datahub-project#17091)

Co-authored-by: Jay <159848059+jayacryl@users.noreply.github.com>
@dennisliu-wag
docs(athena): refine permissions policy (datahub-project#17341)
9c53761
@aviraj-gour
feat(stateful-ingestion): add per-entity-type deletion summary to ing…
d5cf03d 
…estion report (datahub-project#16910)
@Sharaf0 @claude
refactor: replace buildSchemes() with hand-written setAllowHttp
c902e48 
Lombok skips generating setAllowHttp when it sees a hand-written one,
so allowedSchemes stays in sync automatically — no separate buildSchemes()
call to forget. Also removes unused extraDenyCidrs config.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
aikido-pr-checks[bot]
aikido-pr-checks Bot reviewed May 11, 2026
View reviewed changes
Comment thread metadata-io/src/main/java/com/linkedin/metadata/aspect/validation/UrlValidator.java
}

try {
InetAddress address = InetAddress.getByName(host);

@aikido-pr-checks aikido-pr-checks Bot May 11, 2026

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

HTTP request might enable SSRF attack - critical severity
If an attacker can control the URL input leading into this http request, the attack might be able to perform an SSRF attack. This kind of attack is even more dangerous is the application returns the result of the URL fetch to the user. It can serve as an initial access point for an attacker for stealing credentials in the cloud.

Show fix

Remediation: If possible, only allow requests to verified domains. If not, consult the article linked above to learn about other mitigating techniques such as disabling redirects, blocking private IPs and making sure private services have internal authentication. If you return data coming from the request to the user, validate the data before returning it to make sure you don't return random data.

Reply @AikidoSec ignore: [REASON] to ignore this issue.
More info

rajatoss and others added 11 commits May 11, 2026 13:59
@rajatoss
refactor(ingest/bigquery): stop writing service account secret to env…
5b924d4 
… var and disk (datahub-project#17375)
@sachetansabhahit
feat(smoke-test): add degree and skip_cache params to search_across_l…
47f3894 
…ineage (datahub-project#17378)
@v-tarasevich-blitz-brain
test(playwright): add changes required for glossary playwright tests (d…
5e8a744 
…atahub-project#17377)
@alokr-dhub @ligfx
feat(ingest/athena): add upstream lineage for Iceberg/Glue (datahub-p…
0570a83 
…roject#16842)

Co-authored-by: Michael Maltese <michaeljosephmaltese@gmail.com>
@AdrianMachado
docs(ingestion): Add capability for operations (datahub-project#17366)
d8970db
@david-leifker @cursoragent
docs(executor): add ingestion executor security and hardening guide (d…
5cd96bf 
…atahub-project#17384)

Co-authored-by: Cursor <cursoragent@cursor.com>
@alexjst
fix(search): compute SP diffs independently of mappingsDiff [PFP-3594] (
f2c8c76 
datahub-project#17383)
@david-leifker @cursoragent
fix(deps): bump Vert.x to 4.5.27 for CVE-2026-6860 (datahub-project#1…
f5dd5b8 
…7386)

Co-authored-by: Cursor <cursoragent@cursor.com>
@david-leifker @cursoragent
feat(search): remove Criterion singular value field (datahub-project#…
79917cb 
…17365)

Co-authored-by: Cursor <cursoragent@cursor.com>
@ani-malgari
perf(frontend): reduce listRecommendations fan-out and consolidate ho…
2cf39ae 
…me-page queries (datahub-project#17336)
@Sharaf0
Merge branch 'upstream/master' into fix/security-validate-profile-ima…
7585b6a 
…ge-url
@Sharaf0 Sharaf0 force-pushed the fix/security-validate-profile-image-url branch from 5e7bd21 to 7585b6a Compare May 12, 2026 00:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@aikido-pr-checks aikido-pr-checks[bot] aikido-pr-checks[bot] left review comments

Reviewers whose approvals may not affect merge requirements

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

devops docs product

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.