config: clarify sensitive redirect headers match net/http

The stripped header list (including Proxy-Authorization and
Proxy-Authenticate) now matches makeHeadersCopier in net/http, which
gained the Proxy-* entries in the fix for CVE-2025-4673.

Signed-off-by: Julien Pivotto <291750+roidelapluie@users.noreply.github.com>
1 file changed
tree: 1ae3759a7dcee28b5f8183566adcff9b54c25d7a
  1. .github/
  2. assets/
  3. config/
  4. expfmt/
  5. helpers/
  6. model/
  7. promslog/
  8. route/
  9. scripts/
  10. server/
  11. version/
  12. .gitignore
  13. .golangci.yml
  14. .yamllint
  15. CHANGELOG.md
  16. CODE_OF_CONDUCT.md
  17. CONTRIBUTING.md
  18. go.mod
  19. go.sum
  20. LICENSE
  21. MAINTAINERS.md
  22. Makefile
  23. Makefile.common
  24. NOTICE
  25. README.md
  26. RELEASE.md
  27. SECURITY.md
README.md

Common

circleci OpenSSF Scorecard

This repository contains Go libraries that are shared across Prometheus components and libraries. They are considered internal to Prometheus, without any stability guarantees for external usage.

  • assets: Embedding of static assets with gzip support
  • config: Common configuration structures
  • expfmt: Decoding and encoding for the exposition format
  • model: Shared data structures
  • promslog: A logging wrapper around log/slog
  • route: A routing wrapper around httprouter using context.Context
  • server: Common servers
  • version: Version information and metrics