Merge PR #956: fix(security): prevent path traversal bypass via startswith check

2026-02-22 15:34:36 +00:00
parent fff6207c6b e0743d6345
commit ef64739736
1 changed files with 5 additions and 2 deletions
--- a/nanobot/agent/tools/filesystem.py
+++ b/nanobot/agent/tools/filesystem.py
@@ -13,8 +13,11 @@ def _resolve_path(path: str, workspace: Path | None = None, allowed_dir: Path |
    if not p.is_absolute() and workspace:
        p = workspace / p
    resolved = p.resolve()
-    if allowed_dir and not str(resolved).startswith(str(allowed_dir.resolve())):
-        raise PermissionError(f"Path {path} is outside allowed directory {allowed_dir}")
+    if allowed_dir:
+        try:
+            resolved.relative_to(allowed_dir.resolve())
+        except ValueError:
+            raise PermissionError(f"Path {path} is outside allowed directory {allowed_dir}")
    return resolved