feat: upload from url, prevent internal access

libraries/nestjs-libraries/src/dtos/media/upload.dto.ts

@@ -1,9 +1,14 @@
 import { IsDefined, IsString, Validate } from 'class-validator';
 import { ValidUrlExtension } from '@gitroom/helpers/utils/valid.url.path';
+import { IsSafeWebhookUrl } from '@gitroom/nestjs-libraries/dtos/webhooks/webhook.url.validator';
 
 export class UploadDto {
   @IsString()
   @IsDefined()
   @Validate(ValidUrlExtension)
+  @IsSafeWebhookUrl({
+    message:
+      'URL must be a public HTTPS URL and cannot point to internal network addresses',
+  })
   url: string;
 }