Reject local file references in package parsing by defaultsb/compute-auth

- Add ParseFlags enum with kAllowLocalReferences opt-in flag
- Default to rejecting local refs in ParsePackageMessage and
  CbPackageReader, protecting against path traversal from untrusted
  remote clients
- Add HttpService::AcceptsLocalFileReferences() virtual (default false)
- Override to true in HttpStructuredCacheService and HttpProjectService,
  which need local refs for the local UE cooker optimization
- Both server ingest paths now require IsLocalMachineRequest() AND
  AcceptsLocalFileReferences() before allowing local refs

0 files changed, 0 insertions, 0 deletions