juergbi commented on PR #1945: URL: https://github.com/apache/buildstream/pull/1945#issuecomment-2275110097
Exposing the unfiltered buildbox-casd socket would result in exposing access to the host filesystem via the LocalCAS protocol. An option that may be safe (to be reviewed) would be to change the instance name to a random token, generated in each BuildStream session, and then use `GetInstanceNameForNamespace()` to create a second instance that is then exposed to the sandbox. Ideally, REAPI upstream would define a standard way how REAPI access can be exposed to a the action command. This shouldn't be buildbox-casd-specific and should also be supported with remote execution. Maybe configured by platform property. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
