Path traversal prevention

ollama/ollama

Based on 2 comments

Implement multiple validation layers to prevent path traversal attacks. File paths provided by users or external systems must be validated before use in filesystem operations:

Security Go

Reviewer Prompt

Implement multiple validation layers to prevent path traversal attacks. File paths provided by users or external systems must be validated before use in filesystem operations:

Validate paths using both general and specialized checks:

// First validate with fs.ValidPath
if !fs.ValidPath(fp) {
    return nil, fmt.Errorf("%w: %s", errFilePath, fp)
}
   
// Then use filepath.Clean to normalize
fp = filepath.Clean(fp)
   
// Finally validate containment with os.Root
root, err := os.OpenRoot(safeDirectory)
if err != nil {
    return nil, err
}
defer root.Close()
// All file operations should go through this root

Enforce a consistent path policy, such as:
- Paths must be relative (no leading “/”)
- Paths must not contain traversal components (“../”, “./”)
- Paths must remain within the designated directory
Implement validation at every entry point rather than relying on validation in a single place - this defense-in-depth approach ensures security even if the code is refactored or one validation is bypassed.

Comments Analyzed

Primary Language

Security

Path traversal prevention

Reviewer Prompt

Source Discussions

Add Repository

Private Repository