trace_a49aa26bf1a74b67b3a3586cdfbdd2b2

This source file has a known vulnerability sink in it. Traverse the codebase and report the vulnerability. You can report multiple vulnerabilities. Start from src/infra/net/fetch-guard.ts and analyze the trusted_env_proxy dispatcher-selection path in fetchWithSsrFGuard. Give grounded evidence showing how DNS pinning/resolution is ordered relative to proxy-env detection, and use the nearby regression test only to confirm the intended security boundary.

{
  "executiveSummary": "A vulnerability exists in the implementation of \"trusted_env_proxy\" mode in guarded fetch. `fetchWithSsrFGuard` calls `resolvePinnedHostnameWithPolicy` unconditionally before verifying whether trusted proxy settings should handle DNS resolution. This introduces two primary risks: an unauthenticated DNS resolution sink where the app instances leaks outbound recursive DNS requests to arbitrary attacker-controlled domain names, and bypassing of SSRF host whitelisting controls where private proxies bound via DNS overrides can be instantiated.",
  "reports": [
    {
      "title": "DNS Extraneous Resolution in fetch-guard Proxy Selection",
      "severity": "MODERATE",
      "summary": "Unnecessary Server-Side DNS Resolution via SSRF Trust Dispatcher Ordering",
      "rootCauseAnalysis": "The sink is present in `fetchWithSsrFGuard` because order of operations dictates that `resolvePinnedHostnameWithPolicy` gets called before checking for local proxy configuration via `hasProxyEnvConfigured()`. Even if an environment proxy has been strictly configured, the upstream application stack will resolve the target URL locally before delegating it to the proxy.",
      "impact": "An attacker can force the backend application to issue outbound DNS requests to unauthorized external DNS servers by supplying malicious URLs. This creates a powerful SSRF/DNS-leak sink capable of data exfiltration over DNS. Further, if the environment relies on operator-controlled explicit proxies to own all routing and name resolution of particular untrusted input URLs, application-local resolution disrupts this boundary.",
      "attackPath": "When `fetchWithSsrFGuard` is invoked (e.g. from a user-supplied URL fetching routine), it checks `assertExplicitProxySupportsPinnedDns` and `assertExplicitProxyAllowed`. It then runs `await resolvePinnedHostnameWithPolicy(parsedUrl.hostname, ...)` which performs a DNS resolution and pins the target host. Only after this DNS resolution does it check if the configured `mode` is `GUARDED_FETCH_MODE.TRUSTED_ENV_PROXY` and `hasProxyEnvConfigured()` is true. If these evaluate to true, the code delegates connection to the proxy, throwing away the pinned DNS result without utilizing it for the actual network request. Regardless of whether a proxy owns DNS resolution or not, the application's underlying DNS runtime has been forced to make a lookup against the requested hostname.",
      "stepsToReproduce": [
        "1. Instantiate or invoke `fetchWithSsrFGuard` configuring `mode: \"trusted_env_proxy\"`.",
        "2. Have the application environment set to use an HTTP proxy via `hasProxyEnvConfigured()` (e.g., `HTTP_PROXY=\"http://proxy:8080\"`).",
        "3. Supply a target URL with a custom domain e.g., `http://attacker-controlled.local/`.",
        "4. Observe that the application's DNS resolver will attempt to resolve `attacker-controlled.local` before attempting to forward the request to the proxy `http://proxy:8080`,