Replace real backend IPs with placeholders in docs and tests

The backend host and LAN IPs are kept out of source by convention; the prior commit committed the real primary/fallback IPs into AGENTS.md and the new test. Swap them for neutral wording and the RFC 5737 documentation IP (192.0.2.1). These IPs remain in commit c44a975 (already pushed); purging them from history is a separate filter-repo + force-push decision.
2026-06-13 16:04:44 -05:00
parent c44a97575c
commit ddee2c4871
2 changed files with 8 additions and 8 deletions
@@ -12,24 +12,24 @@ final class InsecureTrustDelegateTests: XCTestCase {
    }

    func testFiresForMatchingHost() {
-        let d = InsecureTrustDelegate(allowedHost: "192.168.1.72")
-        XCTAssertTrue(d.allowsTrustOverride(for: space(host: "192.168.1.72")))
+        let d = InsecureTrustDelegate(allowedHost: "192.0.2.1")
+        XCTAssertTrue(d.allowsTrustOverride(for: space(host: "192.0.2.1")))
    }

    func testRejectsMismatchedHost() {
-        let d = InsecureTrustDelegate(allowedHost: "192.168.1.72")
+        let d = InsecureTrustDelegate(allowedHost: "192.0.2.1")
        XCTAssertFalse(d.allowsTrustOverride(for: space(host: "evil.example.com")))
    }

    func testNilAllowedHostNeverFires() {
        let d = InsecureTrustDelegate(allowedHost: nil)
-        XCTAssertFalse(d.allowsTrustOverride(for: space(host: "192.168.1.72")))
+        XCTAssertFalse(d.allowsTrustOverride(for: space(host: "192.0.2.1")))
    }

    func testOnlyServerTrustMethodFires() {
        // Matching host but a non-server-trust challenge (e.g. HTTP Basic) must not override.
-        let d = InsecureTrustDelegate(allowedHost: "192.168.1.72")
+        let d = InsecureTrustDelegate(allowedHost: "192.0.2.1")
        XCTAssertFalse(d.allowsTrustOverride(
-            for: space(host: "192.168.1.72", method: NSURLAuthenticationMethodHTTPBasic)))
+            for: space(host: "192.0.2.1", method: NSURLAuthenticationMethodHTTPBasic)))
    }
 }