zhanj/claude-code
1
0
Fork 0
mirror of https://github.com/anthropics/claude-code.git synced 2026-04-16 16:07:50 +00:00
Code Issues Packages Projects Releases Wiki Activity

Fix devcontainer volume security vulnerability

Browse Source 
Use ${devcontainerId} variable to create project-specific volumes,
preventing cross-container data access. This addresses the security
issue where multiple containers could share sensitive data through
named volumes.

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <noreply@anthropic.com>
This commit is contained in:
David Dworken
2025-07-10 15:13:18 -07:00
parent ff15c6f147
commit 33e37bd828
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
.devcontainer/devcontainer.json
View File

@@ -38,8 +38,8 @@
}, },
"remoteUser": "node", "remoteUser": "node",
"mounts": [ "mounts": [
"source=claude-code-bashhistory,target=/commandhistory,type=volume", "source=claude-code-bashhistory-${devcontainerId},target=/commandhistory,type=volume",
"source=claude-code-config,target=/home/node/.claude,type=volume" "source=claude-code-config-${devcontainerId},target=/home/node/.claude,type=volume"
], ],
"remoteEnv": { "remoteEnv": {
"NODE_OPTIONS": "--max-old-space-size=4096", "NODE_OPTIONS": "--max-old-space-size=4096",