Harden security controls from REPORT findings

2026-03-01 13:32:08 -03:00
parent da5cbc2c01
commit bdd97d1c62
20 changed files with 1455 additions and 97 deletions
--- a/backend/app/worker/queue.py
+++ b/backend/app/worker/queue.py
@@ -3,16 +3,17 @@
 from redis import Redis
 from rq import Queue

-from app.core.config import get_settings
+from app.core.config import get_settings, validate_redis_url_security


 settings = get_settings()


 def get_redis() -> Redis:
-    """Creates a Redis connection from configured URL."""
+    """Creates a Redis connection after enforcing URL security policy checks."""

-    return Redis.from_url(settings.redis_url)
+    secure_redis_url = validate_redis_url_security(settings.redis_url)
+    return Redis.from_url(secure_redis_url)


 def get_processing_queue() -> Queue: