Enforce the use of Instance Metadata Service Version 2 (IMDSv2) , which requires a session token and is specifically designed to mitigate SSRF attacks.
Long-term (1–3 months)
The callback “handler” (OS-level helper or CLI daemon) interprets the file:// scheme:
If you're working with AWS and need to set up a credentials file, ensure you're following best practices for security, such as:
Enforce the use of Instance Metadata Service Version 2 (IMDSv2) , which requires a session token and is specifically designed to mitigate SSRF attacks.
Long-term (1–3 months)
The callback “handler” (OS-level helper or CLI daemon) interprets the file:// scheme:
If you're working with AWS and need to set up a credentials file, ensure you're following best practices for security, such as:
