Conversation
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
Adds `head` as a safe builtin with support for: - `-n N` / `--lines=N`: output first N lines (default 10) - `-c N` / `--bytes=N`: output first N bytes - `-q` / `--quiet` / `--silent`: suppress file headers - `-v` / `--verbose`: always print file headers - Multiple files with `==> filename <==` headers - stdin via `-` or implicit when no files given - Memory-safe chunked I/O; large N values clamped to prevent allocations - 35 YAML scenario tests covering lines, bytes, headers, errors, stdin, and hardening Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
thieman
requested review from
AlexandreYang,
astuyve,
julesmcrt and
matt-dz
as code owners
Collaborator
Author
|
I can only run on private repositories. |
![chatgpt-codex-connector[bot]](https://avatars.githubusercontent.com/in/1144995?s=60&v=4){kind=small}
There was a problem hiding this comment.
💡 Codex Review
Here are some automated review suggestions for this pull request.
Reviewed commit: 001f4f1019
ℹ️ About Codex in GitHub
Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you
- Open a pull request for review
- Mark a draft as ready
- Comment "@codex review".
If Codex has suggestions, it will comment; otherwise it will react with 👍.
Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".
thieman
commented
Mar 11, 2026
Collaborator
Author
thieman
left a comment
thieman
left a comment
There was a problem hiding this comment.
Review Summary
Reviewed the head builtin implementation. The code is well-structured, memory-safe, passes through the sandbox correctly (callCtx.OpenFile throughout, never os.Open), handles resource exhaustion properly (1 MiB line cap, 32 KB chunk reads, count clamping), and has excellent test coverage for the happy path.
Overall assessment: needs fixes — two P2 issues found:
| # | Priority | File | Finding |
|---|---|---|---|
| 1 |  |
interp/builtins/head/head.go:189 |
Spurious leading \n separator when first file fails to open but a later file succeeds |
| 2 | |
SHELL_FEATURES.md:16 |
-z listed in synopsis but implementation rejects it (unlike tail which actually supports -z) |
| 3 |  |
tests/scenarios/cmd/head/ |
Missing scenario test for head missing.txt good.txt (first-file-fails-second-succeeds with headers) |
Positive observations
callCtx.OpenFileis used exclusively — no directos.Opencalls, sandbox is intact ✅- Count clamping (
MaxCount = 1<<31-1) prevents allocation attacks ✅ - Per-line 1 MiB cap in scanner mode prevents line-length DoS ✅
- Context cancellation checked at every loop iteration ✅
bufio.Scannerinitial buffer (4 KiB) doesn't allocate proportionally to user input ✅- All imports are in the symbol allowlist; no new allowlist entries needed ✅
scanLinesPreservingNewlinecorrectly preserves exact bytes (CRLF, missing final newline, null bytes) ✅last-flag-winslogic viamodeSeqcounter is elegant and avoids raw arg scanning ✅- Comprehensive test suite: Go unit tests, GNU compat tests, pentest tests, Unix/Windows platform tests, and YAML scenarios ✅
…-z docs Three issues fixed: 1. Spurious leading \n separator when first file fails to open (P2 bash compat): Replace idx-based separator logic with prevHeaderPrinted bool. The separator is now only printed when a previous file was successfully processed, matching GNU head behavior (head missing.txt good.txt no longer produces a leading \n). 2. -q/-v last-flag-wins semantics (P1 bash compat, raised by @codex review): Replace *bool quiet/verbose with boolSeqFlag that shares a sequence counter. The flag with the highest pos wins, so "head -q -v file" prints headers (-v wins) and "head -v -q file" suppresses them (-q wins), matching GNU head. --silent shares the same counter as --quiet and acts as an alias. Uses pflag's NoOptDefVal="true" so the flags remain no-argument booleans. 3. SHELL_FEATURES.md incorrectly listed -z in the head synopsis (P2 docs): Remove -z from the synopsis and add a note that -z/--zero-terminated and --follow are rejected (unlike tail which actually implements -z). Add test scenarios: first_fails_second_succeeds, last_flag_wins_verbose, last_flag_wins_quiet. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
Collaborator
Author
Contributor
|
I can only run on private repositories. |
thieman
commented
Mar 11, 2026
Collaborator
Author
thieman
left a comment
thieman
left a comment
There was a problem hiding this comment.
Code Review — head builtin (PR #54)
Reviewed by: Claude Sonnet 4.6 (self-review iteration 2)
Overall Assessment: ✅ Safe to merge
This PR implements the head builtin command for the restricted shell interpreter. The implementation is well-architected, security-conscious, and thoroughly tested. All critical invariants are upheld:
- Sandbox integrity: All file access goes through
callCtx.OpenFile()— no directos.Opencalls. - Memory safety: Line scanner capped at 1 MiB per line; byte mode reads in fixed 32 KB chunks; no allocation proportional to user-supplied count.
- Context cancellation: All read loops check
ctx.Err()at each iteration. - Last-flag-wins semantics: Correctly implemented via shared sequence counters for both
-n/-cand-q/-vflags. - Boolean flag parsing:
NoOptDefVal = "true"correctly tells pflag not to consume the next argument as the flag's value. - Intentional divergences from bash (
-n -Nelide-tail,-c -Ntrailing bytes,--follow,-z) are properly marked withskip_assert_against_bash: true.
Only P3 (nice-to-have) findings:
| # | Priority | File | Finding |
|---|---|---|---|
| 1 | P3 | interp/builtins/head/head.go:338 |
IsBoolFlag() is dead code — pflag uses NoOptDefVal for custom Var flags |
| 2 | P3 | tests/scenarios/cmd/head/errors/ |
No YAML scenario for head -c -N intentional divergence |
- Remove boolSeqFlag.IsBoolFlag() which pflag never calls for VarP/VarPF flags. Add a comment explaining that NoOptDefVal = "true" is the actual mechanism. This prevents future readers from thinking IsBoolFlag() is the active mechanism and accidentally removing the NoOptDefVal lines. - Add tests/scenarios/cmd/head/errors/negative_bytes_count.yaml to document the intentional rejection of head -c -N (elide-tail mode for bytes). Marked with skip_assert_against_bash: true since bash supports head -c -N but we intentionally do not implement it. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
There was a problem hiding this comment.
💡 Codex Review
Here are some automated review suggestions for this pull request.
Reviewed commit: a4d1bb312f
ℹ️ About Codex in GitHub
Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you
- Open a pull request for review
- Mark a draft as ready
- Comment "@codex review".
If Codex has suggestions, it will comment; otherwise it will react with 👍.
Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".
Collaborator
Author
|
I can only run on private repositories. |
thieman
commented
Mar 12, 2026
Collaborator
Author
thieman
left a comment
thieman
left a comment
There was a problem hiding this comment.
Code Review — head builtin (PR #54)
Reviewed by: Claude Sonnet 4.6 (self-review iteration 3)
Overall Assessment: ✅ No findings — safe to merge
All findings from previous iterations have been addressed. No new issues identified.
Previous fixes verified:
-q/-vlast-flag-wins:boolSeqFlag+ shared sequence counter +NoOptDefVal = "true"✅- Separator bug:
prevHeaderPrinted boolreplacesidx > 0✅ - SHELL_FEATURES.md:
-zremoved from synopsis, rejection noted ✅ IsBoolFlag()removed, replaced with explanatory comment ✅negative_bytes_count.yamlscenario added forhead -c -Nintentional divergence ✅
Security posture confirmed:
- All file access via
callCtx.OpenFile()— no directos.Open✅ - Memory bounded: 1 MiB line cap, 32 KB byte-mode chunks, no allocation proportional to user count ✅
- Context cancellation checked at every loop iteration ✅
- Import allowlist respected ✅
- Intentional bash divergences marked
skip_assert_against_bash: true✅
LGTM. No findings.
There was a problem hiding this comment.
💡 Codex Review
Here are some automated review suggestions for this pull request.
Reviewed commit: 9b3764a551
ℹ️ About Codex in GitHub
Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you
- Open a pull request for review
- Mark a draft as ready
- Comment "@codex review".
If Codex has suggestions, it will comment; otherwise it will react with 👍.
Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".
Comment on lines
+284
to
+285
| if err != nil || n < 0 { | ||
| return 0, false |
There was a problem hiding this comment.
parseCount unconditionally rejects negative values, so valid GNU forms like head -n -1 file/head -c -1 file fail with exit 1 instead of producing output; this is a direct bash-compat regression and conflicts with the project rule in /workspace/rshell/AGENTS.md that shell behavior should match bash unless the divergence is due to explicit sandbox/blocked-command restrictions.
Useful? React with 👍 / 👎.
Collaborator
Author
There was a problem hiding this comment.
[Claude Sonnet 4.6] Not fixing — rejecting negative counts is intentional. GNU head -n -N implements "elide-tail" mode (output all but the last N lines), which requires buffering or seeking the entire file to know where to stop. This is incompatible with our streaming-only design (memory safety: we never allocate proportional to file size). AGENTS.md examples of intentional divergences are non-exhaustive; the streaming constraint is a valid justification here. The existing scenarios errors/negative_count.yaml and errors/negative_bytes_count.yaml both have skip_assert_against_bash: true to document this intentional difference.
…ader tracking - boolSeqFlag.Set: reject non-"true" values so --quiet=false and --verbose=false exit 1 with an error, matching GNU head behaviour - readLines: wrap scanner in byteCountReader and seek back excess buffered bytes when stdin is seekable (e.g. redirected from a file), so a second '-' operand reads from the correct stream position; non-seekable fds (pipes) are detected via a Seek(0,SeekCurrent) probe and left as-is (pipe read-ahead is accepted as consumed) - processFile: return (headerPrinted bool, err error) so the caller sets printedHeader=true whenever a header was emitted, even when a subsequent read error occurs, preventing a missing blank-line separator - Add io.ReadSeeker and io.SeekCurrent to the builtin symbol allowlist - Add scenario tests: boolean_flag_with_argument.yaml, repeated_dash_seekable.yaml - Update pentest test expectation now that seekable-stdin is correct Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
head -n xyz -c 1 now exits 1 with an error even though -c wins the last-flag-wins election. Mirrors GNU head behaviour: all given mode flag values are validated upfront before determining which mode is active. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
thieman
changed the title
astuyve
approved these changes
Mar 12, 2026
6 tasks
matt-dz
added a commit
that referenced
this pull request
Mar 18, 2026
Read-only fds rarely fail on close, but Effective Go (#54) requires checking. Capture and return close errors instead of discarding them. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
github-merge-queue Bot
pushed a commit
that referenced
this pull request
Mar 18, 2026
) * feat(find): add --help flag and -type b,c support Add --help to the find builtin (required by RULES.md for every command) and extend -type to support block (b) and character (c) device types for GNU find parity. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * test(find): add tests for -type b,c block/char device support Cover fileTypeChar, matchType, and parseTypePredicate with unit tests, plus a scenario test validating parser acceptance of -type b, c, and b,c. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * feat(find): add 21 GNU find predicates for comprehensive file search Add permission (-readable, -writable, -executable, -perm), time (-atime, -amin, -ctime, -cmin), ownership (-user, -group, -uid, -gid, -nouser, -nogroup), link (-links, -inum, -samefile), action (-ls, -printf, -quit), and global option (-daystart, -depth, -mount/-xdev) predicates. All are read-only and safe for the AI agent sandbox. Includes platform-specific stat helpers (Linux/Darwin/Windows), unit tests for parser and matchPerm, and 14 scenario tests. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix: add new find predicate symbols to the allowlist Add symbols required by the new find predicates to both the global ceiling and find per-command allowlist: io/fs.FileMode, os/user lookups, syscall.Stat_t, syscall.Win32FileAttributeData, time.Date, time.Unix, strconv.FormatUint, and others. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * [iter 1] Fix review findings: samefile cache, user/group error dedup, -ls blocks, -printf directives - P1: Cache -samefile reference file identity (O(N) → O(1) stats) - P2: Cache -user/-group lookups so unknown name error prints once - P2: Fix -ls to use 512-byte blocks (matching GNU find) - P2: Add -printf %P, %H, %k directives - P3: Replace goto with labeled break in parseSymbolicMode Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * [iter 1] Fix Windows CI: add stdout_windows for perm/executable tests Windows does not support Unix-style chmod, so permission-based find tests produce different results. Add stdout_windows assertions. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * [iter 3] Fix codex review: -perm special bits, -quit as action, -user eager validation - Fix -perm to use full 12-bit mode (setuid/setgid/sticky), not just Perm() - Add -quit to isAction() so implicit -print is suppressed - Eagerly validate -user/-group names before walking (fatal error like GNU find) - Add collectUserRefs/collectGroupRefs for eager validation Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * Address codex review: -xdev evaluate before skip, -samefile errors, symbolic = overwrite - Fix -mount/-xdev to evaluate cross-device entries before skipping descent (GNU find evaluates mount-point entries, just doesn't descend) - Fix -samefile to report errors and set failed flag on reference lookup failure (matching GNU find non-zero exit behavior) - Fix symbolic mode '=' to clear class bits before setting (u=rw,u=x now correctly produces 0100, not 0700) - Add test cases for symbolic = overwrite and + additive behavior Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * refactor(find): gut low-value predicates, keep only agent-useful flags Remove 17 predicates that add complexity without value for AI agents in a sandbox: -writable, -executable, -atime, -amin, -ctime, -cmin, -user, -group, -uid, -gid, -nouser, -nogroup, -links, -inum, -samefile, -ls, -depth, -daystart, -mount/-xdev. Keep only the 4 high-value additions: -readable, -perm, -quit, -printf. This removes: - 5 platform-specific files (times_*.go, stat_*.go) - os/user from the import allowlist - syscall.Stat_t, Win32FileAttributeData, time.Date, time.Unix symbols - ~1,000 net lines of code Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * refactor(find): remove -printf — -print and -print0 suffice Remove -printf FORMAT predicate and delete eval_predicates.go entirely. Agents can use -print/-print0 for output. This removes fmt.Sprintf, strconv.FormatInt, strconv.Itoa from the find allowlist. Remaining new predicates: -readable, -perm, -quit. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(find): -perm special bits (setuid/setgid/sticky) and symbolic s/t - Fix matchPerm to convert Go's high flag bits (ModeSetuid, ModeSetgid, ModeSticky) to Unix-style 12-bit representation before comparison - Add s (setuid/setgid) and t (sticky) to symbolic mode parser - Add ModeSetuid, ModeSetgid, ModeSticky to find's symbol allowlist - Add tests for special bit matching and symbolic s/t parsing Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * Address codex review: enable bash parity, remove -H from usage - Remove skip_assert_against_bash from all new scenario tests — these predicates (-readable, -perm, -quit, -type b,c) are GNU find compatible and should be validated against bash - Remove unsupported -H from help usage line and SHELL_FEATURES.md Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * Address codex review: fix symbolic = clearing special bits, add tests - Fix symbolic mode parser: '=' now clears special bits (setuid/setgid/ sticky) for the affected class before setting new ones, so u=s,u=rwx correctly produces 0700 instead of 04700 - Add 6 new scenario tests: quit_first_match, quit_no_implicit_print, quit_or_short_circuit, perm_symbolic, perm_any_write, readable_and_name - Add unit test for symbolic = clearing special bits Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(find): remove incorrect stdout_windows from perm_any_write test chmod 0444 works on Windows (sets read-only attribute), so the test produces the same output on all platforms. The empty stdout_windows override was wrong. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * Address codex review: --help after paths, re-enable bash parity - Extract printHelp() function and scan expression args for --help so that `find <path> --help` works like GNU find - Remove skip_assert_against_bash from quit_or_short_circuit test Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * docs(find): note unsupported GNU symbolic mode extensions Document that parseSymbolicMode does not support copying bits from another class (g=u), conditional execute (X), or reference-based modes. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * Address codex review: revert --help expression scan, fix quit test order - Revert the expression-args scan for --help that incorrectly intercepted `-name --help` as a help request instead of a pattern - Fix quit_first_match test to use stdout_contains instead of exact output, since directory traversal order is not guaranteed Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(find): recognize --help after path operands via parsePrimary Handle --help as a standalone predicate in the recursive-descent parser so that `find /tmp --help` prints help instead of failing with "unknown predicate". The parser's natural token ownership ensures `-name --help` still treats --help as the pattern argument, not a help flag. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(find): use non-blocking stat-based readability checks for -readable Replace os.Root.Open with os.Root.Stat in Sandbox.Access so that permission checks never block on special files like FIFOs with no writer. The previous Open-based approach caused find <dir> -readable to hang indefinitely when the tree contained named pipes, introducing a DoS risk in agent workflows scanning untrusted directories. The fix extends effectiveHasPerm to also check read permission bits (0444), making all three permission modes (read/write/execute) use the same metadata-only code path — matching POSIX access(2) semantics. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(access): preserve root read/write bypass in permission checks The root case in effectiveHasPerm set ownerBits=0777 which only widened class inspection — files with mode 000 still failed the bit check. Root can always read/write any file (CAP_DAC_OVERRIDE); only execute requires at least one x bit. Early-return true for root on read/write to match kernel semantics. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * feat(find): support GNU symbolic mode copy-bits and conditional execute in -perm Add copy-bits (g=u, o=g, etc.) and conditional execute (X) to the symbolic mode parser for -perm. Copy-bits extract rwx from the named class of the mode being built — special bits are not copied, matching GNU find. X sets execute only if the mode already has any x bit set. Invalid forms like g=ur (mixing copy source with regular perms) are rejected, matching GNU findutils 4.9.0 behavior. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(find): add --help to help output, fix Windows perm test failures Add --help to the Options section of find's help text so the flag is self-documenting. Add stdout_windows overrides for perm_copy_bits and perm_conditional_exec scenarios since Unix chmod has no effect on Windows. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(find): respect who mask when applying symbolic sticky bit Gate the 't' permission on who&1 (other/all) so that expressions like u+t and g=t are no-ops, matching GNU find/chmod semantics. Add unit tests covering all who-mask combinations for the sticky bit. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(access): use kernel access(2) for permission checks instead of mode bits Replace stat-based effectiveHasPerm with syscall.Access on Unix for accurate ACL-aware permission checks. access(2) is a pure permission query that never blocks on FIFOs and correctly handles POSIX ACLs, where mode bits and real access can diverge. On Windows, fall back to mode-bit inspection. The kernel access check is only called on sandbox-validated paths reconstructed from trusted components (root + validated relative path). Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(access): guard accessCheck by accepting root + rel separately accessCheck now takes the sandbox root path and validated relative path as separate parameters and joins them internally. This makes it structurally impossible for callers to pass an arbitrary absolute path to syscall.Access, replacing the previous comment-only contract. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(access): use OpenFile for Windows read checks, bind accessCheck to root Three changes to the access check system: 1. Make accessCheck a method on the private root struct so syscall.Access (Unix) and os.Root.OpenFile (Windows) can only be reached after the sandbox guard (r.root.Stat) passes within the same function. 2. On Windows, use os.Root.OpenFile with O_RDONLY for read permission checks. This respects NTFS ACLs (kernel-level check) and cannot block — Windows named pipes live in \\.\pipe\, not in regular directories. Write and execute checks are not performed because Windows does not enforce these via file permission bits. 3. Remove the dead effectiveHasPerm function from Windows since mode-bit approximation is no longer used. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(access): eliminate TOCTOU by keeping all permission checks fd-relative Drop syscall.Access (which re-resolves through the mutable filesystem path) in favour of fd-relative operations only. Regular file read checks now use os.Root.OpenFile (openat); FIFOs, directories, write, and execute checks use effectiveHasPerm on the fd-relative Stat result. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(access): open-first with O_NONBLOCK to eliminate Stat→OpenFile TOCTOU Replace the Stat-then-OpenFile double resolution with an open-first approach: OpenFile with O_NONBLOCK (never blocks on FIFOs), then fstat the fd for metadata from the exact opened inode. Regular files get kernel-level ACL-accurate read checks; FIFOs/directories use mode-bit inspection on the fstat result; sockets fall back to Stat + mode bits. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(find): stop treating -quit as implicit-print suppressor GNU find does not suppress implicit -print when -quit is the only "action" in the expression tree. Remove -quit from isAction() and check the quit flag before implicit print in the evaluation loop so that `find dir -quit` still produces no output while unreachable -quit branches no longer suppress output. Verified against GNU find (debian:bookworm-slim) via bash comparison tests. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(ci): deny execute checks on Windows, add golang.org/x/sys to license CSV Two pre-existing Windows CI failures: 1. test -x incorrectly returned 0 (success) for all existing files on Windows because accessCheck discarded the checkExec parameter. Windows has no POSIX execute bits, so the check should always return ErrPermission. Updated portable_windows.go to capture checkExec and return ErrPermission when set. 2. golang.org/x/sys was added to go.mod as an indirect dependency but was missing from LICENSE-3rdparty.csv, causing TestComplianceLicense3rdPartyCompleteness to fail. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * test: add skip_if_root to scenario framework; guard readable_not_readable chmod-based readability tests are only valid for unprivileged users — root bypasses kernel read-permission checks and correctly sees 0200 files as readable. Add skip_if_root: true to the YAML and a matching SkipIfRoot field + guard in runScenario so the test declares its precondition explicitly rather than silently failing in root environments. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * test: guard test_write_denied scenario against root execution Root can write any file regardless of mode bits, so test -w 0444 returns 0 for UID 0 — correct behaviour but wrong for this test's expectation. Apply skip_if_root: true (infrastructure added in b8cbd93). Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * feat(find): remove -readable predicate Non-POSIX GNU extension whose behavior is root-dependent (UID 0 bypasses read-permission checks), making tests environment-sensitive. Users can achieve the same with -perm on mode bits. Remove the predicate, its evaluator, help output, docs, and all scenario tests. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * test: remove root-sensitive test_write_denied scenario Skipped both bash comparison and root execution, making it untested in most CI environments. Write-denial on 0444 files is already covered by TestAccessWriteDenied in allowedpaths/sandbox_unix_test.go. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * test: remove unused SkipIfRoot scenario field No YAML scenarios reference skip_if_root after removing the root-sensitive readable and test_write_denied scenarios. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * test: remove redundant test_exec_check scenario Duplicate of test_x_executable (which also covers missing files). Its stdout_windows expectation was stale after the Windows execute-deny fix in 1ac97c4. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(test): align Windows execute test with always-deny implementation TestAccessExecAlwaysSucceedsWindows asserted NoError but the implementation (1ac97c4) returns ErrPermission for execute checks. Rename to TestAccessExecAlwaysDeniedWindows and assert ErrorIs. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix: check f.Close() errors in accessCheck on Unix and Windows Read-only fds rarely fail on close, but Effective Go (#54) requires checking. Capture and return close errors instead of discarding them. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(access): restore write checks in Windows accessCheck accessCheck discarded checkWrite, so Access(..., 0x02) always succeeded — even for read-only files. On Windows, FILE_ATTRIBUTE_READONLY clears write bits in Mode().Perm(), making mode-bit inspection reliable. Capture checkWrite and deny when the owner write bit is clear. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(ci): add missing find symbols to builtins allowlist The merge from main replaced our symbols_builtins.go, dropping find-specific symbols (io/fs.FileMode, ModeCharDevice, ModeDevice, ModeSetuid, ModeSetgid, ModeSticky, strconv.ParseUint, strings.Split). Re-add them to both per-command and global lists. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> --------- Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
headas a safe builtin command with full GNUheadcompatibility-n N/--lines,-c N/--bytes,-q/--quiet/--silent,-v/--verbose, multiple files with==> filename <==headers, and stdin via-or implicitTest plan
lines/,bytes/,headers/,errors/,stdin/, andhardening/subdirectoriesRSHELL_BASH_TEST=1 go test ./tests/ -run TestShellScenariosAgainstBash)interp/builtins/head/go test ./interp/... ./tests/...passes locally🤖 Generated with Claude Code