fix(sandbox): harden fs bridge path checks and bind mount policy

2026-05-31 14:13:32 +00:00 · 2026-02-24 02:21:33 +00:00
parent dd9d9c1c60
commit c070be1bc4
11 changed files with 496 additions and 18 deletions
--- a/src/config/types.sandbox.ts
+++ b/src/config/types.sandbox.ts
@@ -42,6 +42,16 @@ export type SandboxDockerSettings = {
  extraHosts?: string[];
  /** Additional bind mounts (host:container:mode format, e.g. ["/host/path:/container/path:rw"]). */
  binds?: string[];
+  /**
+   * Dangerous override: allow bind mounts that target reserved container paths
+   * like /workspace or /agent.
+   */
+  dangerouslyAllowReservedContainerTargets?: boolean;
+  /**
+   * Dangerous override: allow bind mount sources outside runtime allowlisted roots
+   * (workspace + agent workspace roots).
+   */
+  dangerouslyAllowExternalBindSources?: boolean;
 };

 export type SandboxBrowserSettings = {