You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
fix(qa): scope vite-qa fs allowlist instead of disabling strict
The worktree dev server is reached over the Tailscale tunnel during iPad
testing (VITE_TUNNEL), not just localhost. `server.fs.strict: false` made Vite
serve ANY local file over `/@fs/...` (verified: it returned /etc/hosts), so an
attacker on the tailnet could read arbitrary files (.env, ~/.ssh, …).
Keep strict on and set an explicit `server.fs.allow`: the worktree plus the
nearest ancestor whose node_modules holds real packages (the main checkout,
since a worktree's own node_modules is cache-only and deps resolve up). Vite's
default deny list then blocks everything outside that subtree.
Verified: /etc/hosts and ~/.zshrc now 403; the app and its main-checkout deps
(e.g. vite client) still serve 200.
Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
0 commit comments