Security Hardening

Caution

By default, Snippbot binds to 127.0.0.1 and is not reachable from the network. Only change this if you intend to expose it — and follow all hardening steps below when you do.

Network exposure model

Scenario	Recommended config
Local only (single machine)	Default — no changes needed
LAN access (home/office)	Bind to LAN IP, firewall to local subnet
Internet-facing	Reverse proxy with HTTPS, firewall, IP allowlist

Use a reverse proxy

Never expose the Snippbot port directly to the internet. Use nginx or Caddy to terminate TLS:

# Snippbot listens on localhost only
snippbot start --host 127.0.0.1 --port 18781

Your reverse proxy handles HTTPS and forwards to localhost:18781. See Reverse Proxy.

Firewall configuration

Allow only trusted IPs to reach the proxy:

# Ubuntu — ufw
ufw allow from YOUR_IP_HERE to any port 443
ufw deny 443

# Block direct access to Snippbot ports
ufw deny 18781
ufw deny 18790

The channel adapter (port 18790) needs to accept webhook traffic from specific platform IPs:

• Slack: see Slack IP ranges
• Discord: no fixed IP ranges — accept from anywhere, verify signatures
• Telegram: 149.154.160.0/20 and 91.108.4.0/22

TLS / HTTPS

Always use HTTPS for internet-facing deployments:

# With Caddy (automatic Let's Encrypt)
caddy run --config Caddyfile

# With nginx + certbot
certbot --nginx -d snippbot.yourdomain.com

Redirect all HTTP to HTTPS — never serve on plain HTTP in production.

API key management

1. Use strong API keys — the auto-generated snip_ keys are cryptographically random (256 bits). Don’t create short or guessable keys.

2. Rotate keys regularly — revoke old keys and issue new ones:

   # Revoke via UI: Settings → API Keys → Revoke
   # Or via API:
   curl -X DELETE http://localhost:18781/api/auth/keys/key_abc123 \
     -H "Authorization: Bearer $CURRENT_KEY"

3. Use one key per client — don’t share keys between scripts, CI/CD, and users. This way you can revoke one without disrupting others.

4. Store keys securely — use environment variables or a secrets manager. Never commit keys to version control.

Rate limiting

Add rate limiting at the reverse proxy layer:

# nginx — limit to 30 requests/second per IP
limit_req_zone $binary_remote_addr zone=snippbot:10m rate=30r/s;

server {
    location /api/ {
        limit_req zone=snippbot burst=60 nodelay;
        proxy_pass http://localhost:18781;
    }
}

Authentication hardening

~/.snippbot/config.toml

# Require auth for all endpoints (default: true)
api_key_required = true

# Shorter session expiry for shared machines
session_expiry = 3600    # 1 hour

# Shorter inactivity timeout
inactivity_timeout = 900  # 15 minutes

Sandbox isolation

For the code execution sandbox, use Docker (not the process backend) and restrict network access:

SNIPPBOT_SANDBOX_BACKEND=docker
SNIPPBOT_SANDBOX_NETWORK=none      # No outbound network from sandbox containers
SNIPPBOT_SANDBOX_MEMORY_MB=512     # Memory cap per container

Monitoring for threats

Enable debug logging for the auth subsystem:

SNIPPBOT_LOG_LEVEL=debug snippbot start 2>&1 | grep -i 'auth\|unauthorized\|failed'

Review the access log periodically:

grep '401\|403' ~/.snippbot/logs/daemon.log | tail -50