Skip to content

fix(filesystem): normalize paths to NFC for Unicode consistency #4016

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
Will-hxw wants to merge 3 commits into from
+8 −5
Closed

fix(filesystem): normalize paths to NFC for Unicode consistency #4016

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
328a284
fix(filesystem): guard roots/list_changed against CLI directory override
Will-hxw Apr 22, 2026
1014ce8
fix(filesystem): normalize paths to NFC for Unicode consistency
Will-hxw Apr 22, 2026
3e3d74e
fix(filesystem): update test assertion for NFC normalization
Will-hxw Apr 24, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
4 changes: 2 additions & 2 deletions src/filesystem/__tests__/path-validation.test.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -199,9 +199,9 @@ describe('Path Validation', () => {
expect(isPathWithinAllowedDirectories('/home/user/café', allowed)).toBe(true);
expect(isPathWithinAllowedDirectories('/home/user/café/file', allowed)).toBe(true);

// Different unicode representation won't match (not normalized)
// Different unicode representations now match after NFC normalization
const decomposed = '/home/user/cafe\u0301'; // e + combining accent
expect(isPathWithinAllowedDirectories(decomposed, allowed)).toBe(false);
expect(isPathWithinAllowedDirectories(decomposed, allowed)).toBe(true);
});

it('handles paths with spaces correctly', () => {
Expand Down
5 changes: 4 additions & 1 deletion src/filesystem/index.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -717,7 +717,10 @@ async function updateAllowedDirectoriesFromRoots(requestedRoots: Root[]) {
// Handles dynamic roots updates during runtime, when client sends "roots/list_changed" notification, server fetches the updated roots and replaces all allowed directories with the new roots.
server.server.setNotificationHandler(RootsListChangedNotificationSchema, async () => {
try {
// Request the updated roots list from the client
// Only update from MCP roots if no CLI directories were set
if (allowedDirectories.length > 0) {
return;
}
const response = await server.server.listRoots();
if (response && 'roots' in response) {
await updateAllowedDirectoriesFromRoots(response.roots);
Expand Down
4 changes: 2 additions & 2 deletions src/filesystem/path-validation.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -27,7 +27,7 @@ export function isPathWithinAllowedDirectories(absolutePath: string, allowedDire
// Normalize the input path
let normalizedPath: string;
try {
normalizedPath = path.resolve(path.normalize(absolutePath));
normalizedPath = path.resolve(path.normalize(absolutePath)).normalize("NFC");
} catch {
return false;
}
Expand All @@ -51,7 +51,7 @@ export function isPathWithinAllowedDirectories(absolutePath: string, allowedDire
// Normalize the allowed directory
let normalizedDir: string;
try {
normalizedDir = path.resolve(path.normalize(dir));
normalizedDir = path.resolve(path.normalize(dir)).normalize("NFC");
} catch {
return false;
}
Expand Down
Loading