feat: Add directory mounting capabilities to vt run and registry run #11
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This commit adds the ability to mount directories from the host into containers via both `vt run` and `vt registry run` commands. This feature enhances the flexibility of MCP servers by allowing them to access files from the host system. Volume Mount Format: - Basic format: `-v host-path:container-path` - Read-only mount: `-v host-path:container-path:ro` The implementation supports three types of mounts: 1. Single path: When only one path is provided, it's used as both the source and target (e.g., `-v /path/to/dir`) 2. Different paths: When two paths are provided, the first is the host path and the second is the container path (e.g., `-v /host/path:/container/path`) 3. Resource URIs: For future extensibility, the source can be a URI that identifies a resource (e.g., `-v volume://name:/container/path`) Security Features: - Command injection detection: Paths are validated to prevent command injection - Null byte detection: Paths containing null bytes are rejected - Path normalization: All paths are normalized using filepath.Clean Implementation Details: - Added MountDeclaration type to represent mount declarations - Updated Profile struct to use MountDeclaration for Read and Write mounts - Added volume flag to both vt run and registry run commands - Implemented processVolumeMounts function to parse and validate volume mounts - Updated container client to handle MountDeclaration objects The feature has been thoroughly tested with both read-write and read-only mounts, and all code quality checks have been passed. Signed-off-by: Juan Antonio Osorio <[email protected]>
ChrisJBurns
approved these changes
Mar 26, 2025
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This commit adds the ability to mount directories from the host into containers
via both
vt runandvt registry runcommands. This feature enhances theflexibility of MCP servers by allowing them to access files from the host system.
Volume Mount Format:
-v host-path:container-path-v host-path:container-path:roThe implementation supports three types of mounts:
target (e.g.,
-v /path/to/dir)the second is the container path (e.g.,
-v /host/path:/container/path)identifies a resource (e.g.,
-v volume://name:/container/path)Security Features:
Implementation Details:
The feature has been thoroughly tested with both read-write and read-only mounts,
and all code quality checks have been passed.
Signed-off-by: Juan Antonio Osorio [email protected]