third/nanoclaw
1
0
Fork 0
mirror of https://github.com/qwibitai/nanoclaw.git synced 2026-06-12 18:11:51 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
02d8528684b74b265b37645c38de2abbf0c156cb
nanoclaw/docs
T
History
gavrielc 5fb10645cd fix: mount project root read-only to prevent container escape (#392) 
The main group's project root was mounted read-write, allowing the
container agent to modify host application code (e.g. dist/container-runner.js)
to inject arbitrary mounts on next restart — a full sandbox escape.

Fix: mount the project root read-only. Writable paths the agent needs
(group folder, IPC, .claude/) are already mounted separately. The
agent-runner source is now copied into a per-group writable location
so agents can still customize container-side behavior without affecting
host code or other groups.

Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>
2026-02-22 20:57:57 +02:00
..
APPLE-CONTAINER-NETWORKING.md
Add Apple Container Networking Setup documentation (#178)
2026-02-12 10:55:31 +02:00
DEBUG_CHECKLIST.md
Adds Agent Swarms
2026-02-09 02:50:43 +02:00
nanoclaw-architecture-final.md
Skills engine v0.1 + multi-channel infrastructure (#307)
2026-02-19 01:55:00 +02:00
nanorepo-architecture.md
Documentation improvements
2026-02-19 15:26:57 +02:00
REQUIREMENTS.md
feat: add /convert-to-apple-container skill, remove /convert-to-docker (#324)
2026-02-20 14:57:05 +02:00
SDK_DEEP_DIVE.md
Adds Agent Swarms
2026-02-09 02:50:43 +02:00
SECURITY.md
fix: mount project root read-only to prevent container escape (#392)
2026-02-22 20:57:57 +02:00
SPEC.md
feat: add /convert-to-apple-container skill, remove /convert-to-docker (#324)
2026-02-20 14:57:05 +02:00