guettli/sharedinbox
1
0
Fork 0
Code Issues 21 Pull Requests 6 Actions Packages Projects Releases Wiki Activity

fix: enforce non-root execution in Taskfile and shell scripts #433

Merged
guettlibot merged 6 commits from issue-414-ensure-not-run-as-root into main 2026-06-05 16:41:39 +00:00
Conversation 0 Commits 6 Files Changed 6
+574 -5870
guettlibot commented 2026-06-04 20:46:32 +00:00 (Migrated from codeberg.org)
Copy Link
Copy Source

Closes #414

Summary

  • Added a non-root precondition to _preflight in Taskfile.yml, which is the shared dependency for all local task commands (analyze, test, test-widget, build-linux, check, etc.). This is the single choke point that rejects root before any local work begins.
  • Added an identical id -u guard to five scripts that can be invoked directly outside of task: deploy.sh, scripts/setup_dagger_remote.sh, stalwart-dev/test.sh, stalwart-dev/integration_ui_test.sh, stalwart-dev/integration_android_test.sh.
  • Added rm -f ~/.ssh/dagger_key before the write in scripts/setup_dagger_remote.sh so an existing stale file or symlink is cleanly removed rather than clobbered via redirection.

No SSH-as-root patterns were found in any scripts (audit passed clean — setup_dagger_remote.sh uses dagger@$DAGGER_ENGINE_HOST, deploy.sh uses the configurable $SSH_USER, and DEVELOPMENT.md already recommends ssh $DEV_USER@localhost).

Test plan

  • Verify task check (or any task command) prints "Do not run as root" and exits non-zero when run as root.
  • Verify stalwart-dev/test.sh and sibling scripts print the same error when run as root.
  • Verify normal non-root execution is unaffected.

🤖 Generated with Claude Code

Closes #414 ## Summary - Added a non-root precondition to `_preflight` in `Taskfile.yml`, which is the shared dependency for all local `task` commands (`analyze`, `test`, `test-widget`, `build-linux`, `check`, etc.). This is the single choke point that rejects root before any local work begins. - Added an identical `id -u` guard to five scripts that can be invoked directly outside of `task`: `deploy.sh`, `scripts/setup_dagger_remote.sh`, `stalwart-dev/test.sh`, `stalwart-dev/integration_ui_test.sh`, `stalwart-dev/integration_android_test.sh`. - Added `rm -f ~/.ssh/dagger_key` before the write in `scripts/setup_dagger_remote.sh` so an existing stale file or symlink is cleanly removed rather than clobbered via redirection. No SSH-as-root patterns were found in any scripts (audit passed clean — `setup_dagger_remote.sh` uses `dagger@$DAGGER_ENGINE_HOST`, `deploy.sh` uses the configurable `$SSH_USER`, and `DEVELOPMENT.md` already recommends `ssh $DEV_USER@localhost`). ## Test plan - [ ] Verify `task check` (or any `task` command) prints "Do not run as root" and exits non-zero when run as root. - [ ] Verify `stalwart-dev/test.sh` and sibling scripts print the same error when run as root. - [ ] Verify normal non-root execution is unaffected. 🤖 Generated with [Claude Code](https://claude.com/claude-code)
Sign in to join this conversation.
Reviewers
No Reviewers
Labels
Clear labels
NeedSupervisor
Issue escalated to a human supervisor; agentloop will skip it until cleared.
 State/InProgress
State/Later
State/Planned
automerge
Eligible for automatic merge by CI
 ci-failure
Issue opened by agentloop to track a failing CI workflow; used for deduplication.
 do-not-merge
Plan PR — review only, do not merge.
 loop/code
Add to run the built-in "code" prompt; override at prompts/code.md.
 loop/code-ci-pending
Prompt "code" finished; waiting for the PR's CI to pass before advancing.
 loop/code-done
Prompt "code" finished successfully.
 loop/code-in-process
Agent for the "code" prompt is currently running on this issue.
 loop/merge
Managed by agentloop
 loop/merge-done
Managed by agentloop
 loop/merge-in-process
Managed by agentloop
 loop/plan
Add to run the built-in "plan" prompt; override at prompts/plan.md.
 loop/plan-done
Prompt "plan" finished successfully.
 loop/plan-in-process
Agent for the "plan" prompt is currently running on this issue.
No labels
Milestone
No items
No Milestone
Projects
Clear projects
No projects
Assignees
Clear assignees
guettlibot guettli
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: guettli/sharedinbox#433