Skip to content

Add sandbox.container.excluded_files to mask worktree files from containers#134

Open
joshuavial wants to merge 2 commits intoraine:mainfrom
joshuavial:configurable-env-exclusion
Open

Add sandbox.container.excluded_files to mask worktree files from containers#134
joshuavial wants to merge 2 commits intoraine:mainfrom
joshuavial:configurable-env-exclusion

Conversation

@joshuavial
Copy link
Copy Markdown

@joshuavial joshuavial commented Apr 12, 2026

Summary

  • New sandbox.container.excluded_files config: list of worktree-relative paths that get shadowed by a read-only /dev/null bind mount, so an agent running inside the container cannot read them (e.g. .env files). Default unset — no behavior change.
  • Paths that escape the worktree (absolute or ..) are rejected; missing files are skipped with a warning.
  • Gracefully skipped (with warning) on runtimes without file-level bind mounts (Apple Container).
  • Config key is documented in docs/guide/sandbox/container.md and discoverable via workmux config reference / workmux init.

Test plan

  • Unit tests cover default, successful masking, missing files, escape-path rejection, Apple-Container skip, and config merge (9 new tests, all passing)
  • cargo fmt --check clean
  • Full cargo test suite (946 tests) passes
  • Manually verified on a real project: inside the container the .env file shows size 0 while the host file is unchanged; non-excluded files like README.md remain readable

@joshuavial joshuavial force-pushed the configurable-env-exclusion branch from 18dd8d0 to 44c47d7 Compare April 12, 2026 11:10
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@joshuavial