[devbox cloud] require git in home and fs-root dirs to use as devbox project dir (#522)

savil · web-flow · commit 7ac24ea3dbb9 · 2023-01-25T16:44:30.000-08:00
## Summary Problem: When running `devbox cloud shell` (and other commands) if we don't find a `devbox.json` in the current directory and no `--config` flag is specified, then we walk up the directory tree to find a `devbox.json` file. If we do find one, we use that directory as the `projectDir`. This has the danger that we may sync a sensitive directory like a user's homedir or the filesystem-root dir (i.e. `/`). The syncing may inadvertently delete something in the directories under this sensitive dir. @Lagoja ran into this since he has a devbox.json in his homedir. Solution: This PR protects against this by requiring a `.git` repository to be present in the same dir. We presume this would protect against data loss. Without a `.git` we display a user error. ## How was it tested? ``` ❯ devbox cloud shell Devbox Cloud Remote development environments powered by Nix Error: Found a config (devbox.json) file at /Users/savil, but since it is a sensitive directory we require it to be part of a git repository before we sync it to devbox cloud ```
diff --git a/internal/cloud/cloud.go b/internal/cloud/cloud.go
@@ -33,6 +33,10 @@ func Shell(w io.Writer, projectDir string, githubUsername string) error {
 	fmt.Fprintln(w, "Remote development environments powered by Nix")
 	fmt.Fprint(w, "\n")
 
+	if err := ensureProjectDirIsNotSensitive(projectDir); err != nil {
+		return err
+	}
+
 	username, vmHostname := parseVMEnvVar()
 	// The flag for githubUsername overrides any env-var, since flags are a more
 	// explicit action compared to an env-var which could be latently present.
@@ -473,3 +477,38 @@ func vmHostnameFromSSHControlPath() string {
 func hyphenatePath(path string) string {
 	return strings.ReplaceAll(path, "/", "-")
 }
+
+func ensureProjectDirIsNotSensitive(dir string) error {
+
+	// isSensitiveDir checks if the dir is the rootdir or the user's homedir
+	isSensitiveDir := func(dir string) bool {
+		dir = filepath.Clean(dir)
+		if dir == "/" {
+			return true
+		}
+
+		home, err := os.UserHomeDir()
+		if err != nil {
+			return false
+		}
+		return dir == filepath.Clean(home)
+	}
+
+	if isSensitiveDir(dir) {
+		// check for a git repository in this folder before using this project config
+		// (and potentially syncing all the code to devbox-cloud)
+		_, err := os.Stat(filepath.Join(dir, ".git"))
+		if err != nil {
+			if os.IsNotExist(err) {
+				return usererr.New(
+					"Found a config (devbox.json) file at %s, "+
+						"but since it is a sensitive directory we require it to be part of a git repository "+
+						"before we sync it to devbox cloud",
+					dir,
+				)
+			}
+			return errors.WithStack(err)
+		}
+	}
+	return nil
+}
