Asserts that a remote HTTP(S) URL is safe to fetch.
The check rejects localhost, private address ranges, and hostnames that resolve to private
addresses to reduce SSRF risk when capabilities download remote images.
Parameters
rawUrl: string
URL to validate.
Returns Promise<void>
Throws
When the URL is malformed, non-HTTP(S), or resolves to an unsafe target.
Asserts that a remote HTTP(S) URL is safe to fetch.
The check rejects localhost, private address ranges, and hostnames that resolve to private addresses to reduce SSRF risk when capabilities download remote images.