diff --git a/app/model_downloader/database/models.py b/app/model_downloader/database/models.py index 2b0c9fffe..546c8ba0c 100644 --- a/app/model_downloader/database/models.py +++ b/app/model_downloader/database/models.py @@ -6,7 +6,7 @@ Three tables: - ``download_segments`` per-segment byte progress, for segmented resume. - ``host_credentials`` one API key per host, reused across downloads. -On completion a finished file is registered into the assets catalog; +On completion a finished file is registered into the assets catalog; ``downloads`` is kept only as job history. """ diff --git a/app/model_downloader/security/allowlist.py b/app/model_downloader/security/allowlist.py index 4c17508e2..2bf26cc33 100644 --- a/app/model_downloader/security/allowlist.py +++ b/app/model_downloader/security/allowlist.py @@ -56,7 +56,7 @@ def _allowed_hosts() -> dict[str, set[str]]: def is_host_allowed(host: str | None, scheme: str | None) -> bool: """True iff ``host`` is allowlisted for ``scheme``. - Used both for the initial URL and re-checked on every redirect hop, + Used both for the initial URL and re-checked on every redirect hop, so a whitelisted URL cannot 30x into an off-list host. """ if not host or not scheme: