Skip to content

feat(docker): verify reviewed changes are already implemented in bundle-aware tool setup#41

Closed
Copilot wants to merge 2 commits intomasterfrom
copilot/sub-pr-34
Closed

feat(docker): verify reviewed changes are already implemented in bundle-aware tool setup#41
Copilot wants to merge 2 commits intomasterfrom
copilot/sub-pr-34

Conversation

Copy link
Copy Markdown

Copilot AI commented Mar 8, 2026
edited
Loading

PR review comments on the bundle-aware Docker tool installation flagged three security/correctness issues. All three were already addressed in the current branch — this PR confirms their implementation is correct and complete.

Fixes confirmed in crates/arcbox-docker-tools/src/manager.rs

  • Symlink attack on install pathtry_install_from_bundle writes to dest.bundle.tmp (never following a pre-existing symlink at dest), verifies the checksum, then atomically rename()s into place
  • Unverified/partial file left on failure — every error path (copy failure, checksum mismatch, hash-read failure, rename failure) removes the temp file before falling through to CDN download
  • tgz cache detection brokenis_cached now reads a {name}.sha256 sidecar for tgz-format tools (e.g. docker) instead of hashing the extracted binary against the archive checksum; write_sidecar writes this file after every successful install

✨ Let Copilot coding agent set things up for you — coding agent works faster and does higher quality work when set up for your repo.

AprilNEA and others added 2 commits March 8, 2026 23:04
@AprilNEA
feat(docker): bundle-aware tool setup with NDJSON progress
ee44ff8 
- DockerToolManager: add bundle_dir support for installing from app
  bundle xbin/ before CDN download. Uses temp file + atomic rename
  to avoid symlink attacks. Binary tools are SHA-verified; tgz tools
  trust the code-signed bundle.
- Fix tgz cache validation: use sidecar .sha256 files instead of
  comparing extracted binary hash against archive hash (which always
  mismatches).
- CLI docker setup: auto-detect xbin/ in app bundle, support
  --format json for NDJSON progress streaming.
- validate_all: use sidecar-aware validation for tgz tools.
Initial plan
2669dc0
Copilot AI mentioned this pull request Mar 8, 2026
Merged
7 tasks
Copilot AI changed the title [WIP] Add auto-install for CLI tools on Desktop launch feat(docker): verify reviewed changes are already implemented in bundle-aware tool setup Mar 8, 2026
Base automatically changed from feat/desktop-docker-auto-setup to master March 9, 2026 03:18
@AprilNEA AprilNEA closed this Mar 9, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Awaiting requested review from Copilot Copilot will automatically review once the pull request is marked ready for review

Assignees

@AprilNEA AprilNEA

Copilot code review Copilot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@AprilNEA