From 8dfa33d3731ba1128e35da8888057406698a0816 Mon Sep 17 00:00:00 2001
From: Peter Steinberger <steipete@gmail.com>
Date: Tue, 24 Feb 2026 00:17:03 +0000
Subject: [PATCH] test(sandbox): add root bind mount regression

---
 src/agents/sandbox/validate-sandbox-security.test.ts | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/src/agents/sandbox/validate-sandbox-security.test.ts b/src/agents/sandbox/validate-sandbox-security.test.ts
index 1c3e3fe0676..03992bd996a 100644
--- a/src/agents/sandbox/validate-sandbox-security.test.ts
+++ b/src/agents/sandbox/validate-sandbox-security.test.ts
@@ -47,6 +47,11 @@ describe("validateBindMounts", () => {
 
   it("blocks dangerous bind source paths", () => {
     const cases = [
+      {
+        name: "host root mount",
+        binds: ["/:/mnt/host"],
+        expected: /blocked path "\/"/,
+      },
       {
         name: "etc mount",
         binds: ["/etc/passwd:/mnt/passwd:ro"],