lifecycle icon indicating copy to clipboard operation
lifecycle copied to clipboard

Published 20 hours ago verified publisher icon buildpacks

AppDir should be marked as readonly in export.go

Open gcemaj opened this issue 1 year ago • 6 comments

Summary

I believe it used to be the case that the working directory got marked as read only (0755 at least) at export time. Currently /workspace is has mode 777 which i believe is not intentional

Proposal

I believe we can mark the app directory to read only (or at least 755) here https://github.com/buildpacks/lifecycle/blob/44b70410fee8b723f8a3134a4ba6bbe9344eb40c/phase/exporter.go#L163

Related

RFC #___

Context

If this is reasonable I am happy to put up a PR to address this

gcemaj avatar May 03 '24 15:05 gcemaj