js · network-aiHeads-up
network-ai: Path traversal vulnerability in AgentRuntime sandbox
Path containment checks in AgentRuntime and SandboxPolicy used raw string prefix tests (startsWith), allowing sibling directories sharing the base path prefix to bypass sandbox boundaries.
What changed
Path containment checks in AgentRuntime and SandboxPolicy used raw string prefix tests (startsWith), allowing sibling directories sharing the base path prefix to bypass sandbox boundaries. Fixed in v5.12.2 with separator-anchored prefix checks.
Who it affects
Applications using Network-AI AgentRuntime file operations (readFile, listDir) with a configured sandbox basePath, especially when autoApproveReads is enabled.
What to do today
Upgrade to [email protected] immediately to fix the path traversal vulnerability.
The trail
Collected→
Audited→
Written→
Published