YOU CSHALL NOT PASS (THE COMEBACK) - DOJO #9

Chall

EvilCorp2.0 has received your security reports and has therefore decided to revise its script by adding new SSRF protections. Would you be able to recover the secret?

If you find a way to get (again) the secret using this script, let us know!

Goal

Find a way to bypass all security mechanisms to retrieve the /secret.

BRUTEFORCE IS NOT ALLOWED