starred/pkl
1
0
Fork 0
mirror of https://github.com/apple/pkl.git synced 2026-05-25 16:19:20 +02:00
Code Issues 198 Packages Projects Releases 10 Wiki Activity

Correct --root-dir check to also work for jar:file: URIs (#1442)

Browse Source
This commit is contained in:
Jen Basch
2026-02-25 10:57:01 -08:00
committed by GitHub
parent be21c34938
commit 3ef065b6b6
2 changed files with 61 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files
pkl-core/src/test/kotlin/org/pkl/core/EvaluatorTest.kt
+52 -1
View File
@@ -1,5 +1,5 @@
/*
* Copyright © 2024-2025 Apple Inc. and the Pkl project authors. All rights reserved.
* Copyright © 2024-2026 Apple Inc. and the Pkl project authors. All rights reserved.
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
@@ -283,6 +283,57 @@ class EvaluatorTest {
)
}
@Test
fun `cannot import module from zip filesystem located outside root dir`(
@TempDir tempDir: Path,
@TempDir forbidden: Path,
) {
val evaluator =
with(EvaluatorBuilder.preconfigured()) {
rootDir = tempDir
build()
}
val zipFile = createModulesZip(forbidden)
val module =
tempDir
.resolve("test.pkl")
.writeString("res = import(\"jar:${zipFile.toUri()}!/foo/var/module1.pkl\")")
val e = assertThrows<PklException> { evaluator.evaluate(path(module)) }
assertThat(e)
.hasMessageContaining(
"Refusing to load module `jar:${zipFile.toUri()}!/foo/var/module1.pkl` because it is not within the root directory (`--root-dir`)."
)
}
@Test
fun `cannot read resource from zip filesystem located outside root dir`(
@TempDir tempDir: Path,
@TempDir forbidden: Path,
) {
val evaluator =
with(EvaluatorBuilder.preconfigured()) {
rootDir = tempDir
allowedResources.add(Pattern.compile("jar:file:"))
build()
}
val zipFile = createModulesZip(forbidden)
val module =
tempDir
.resolve("test.pkl")
.writeString("res = read(\"jar:${zipFile.toUri()}!/foo/var/module1.pkl\")")
val e = assertThrows<PklException> { evaluator.evaluate(path(module)) }
assertThat(e)
.hasMessageContaining(
"Refusing to read resource `jar:${zipFile.toUri()}!/foo/var/module1.pkl` because it is not within the root directory (`--root-dir`)."
)
}
@Test
fun `cannot read resource located outside root dir`(@TempDir tempDir: Path) {
val evaluator =