uv Add Setting To No Longer Force Lock Files to have 777 Permissions in Linux

Add Setting To No Longer Force Lock Files to have 777 Permissions in Linux

Open delvecccims opened this issue 1 week ago • 1 comments

Summary

During a scan of our Linux servers, there were some lock files that were flagged for having World Writable permissions in the temporary directory. It looks like this was changed in February as part of https://github.com/astral-sh/uv/pull/11328.

There was a question about the security concerns from this change in https://github.com/astral-sh/uv/issues/12665, but there hasn't been a comment yet regarding it. Would it be possible to have a setting that can be enabled to ignore this change so that umask can set the permissions appropriately so that these lock files are no longer flagged in our scans for having World Writable permissions?

Example

No response

Nov 18 '25 16:11 delvecccims

uv uv copied to clipboard

Add Setting To No Longer Force Lock Files to have 777 Permissions in Linux

Summary

Example

uv
uv copied to clipboard