Spin applications with specific configuration vulnerable to potential network sandbox escape
Some specifically configured Spin applications that use self requests without a specified URL authority can be induced to make requests to arbitrary hosts via the Host HTTP header. If an application's manifest contains a component with configuration such as allowed_outbound_hosts = ["http://self", "https://self"] and code such as let res: Response = spin_sdk::http::send( Request::new(Method::Get, "/") // Note: the request URI does not contain a URL authority ).await?; Then that application can …