fix(router): harden proxy-table matching

[chimurai]

closes: #160
closes: #629

Summary by CodeRabbit

Release Notes

• Bug Fixes

  • Hardened proxy-table matching in the router to prevent routing bypass vulnerabilities by enforcing exact host matches and prefix-only path matching rules.

• Tests

  • Added comprehensive E2E and unit test coverage to verify proxy-table host matching security improvements.

• Documentation

  • Updated CHANGELOG with details about proxy-table security enhancements.

[coderabbitai]

Important

Review skipped

Auto reviews are disabled on base/target branches other than the default branch.

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 1fd986d4-058a-4b62-b780-a759dd24ff66

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Use the checkbox below for a quick retry:

• ✅ Review completed - (🔄 Check again to review again)

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch 3.x-fix-router

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[pkg-pr-new]

npm i https://pkg.pr.new/http-proxy-middleware@1254

commit: be89fa2

[coveralls]

coverage: 97.203% (+0.05%) from 97.15% — 3.x-fix-router into 3.x