You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
From the Codex and claude-review automated reviews on PR #920:
- Route the cloud project lookup through the resolved workspace (Codex P2):
_get_cloud_project now takes workspace_id and passes it to get_client, so the
project metadata is read from the same tenant the bucket/remote target. Without
this, --workspace (or a non-default config) could read a different tenant's
project and transfer against the wrong bucket.
- Validate workspace slugs before splicing into a remote name (claude-review,
security): remote_name_for_workspace rejects slugs with characters invalid in
an rclone remote section, failing fast instead of writing a broken rclone.conf.
- Fix the now-stale rclone_commands module docstring (single-remote bullet).
- Clarify that generate_mount_credentials' tenant_id is the X-Workspace-ID
routing key.
- Note (TODO #919) why sync/bisync/check still use default-tenant mount info.
- Tests: pull --workspace routing, slug validation rejects unsafe slugs.
Signed-off-by: phernandez <paul@basicmachines.co>
0 commit comments