Skip to content

fix(publish): detect named volumes with driver_opts bind in checkForBindMount#13702

Open
ishwar170695 wants to merge 3 commits intodocker:mainfrom
ishwar170695:fix/named-volume-driver-opts-bind-check
Open

fix(publish): detect named volumes with driver_opts bind in checkForBindMount#13702
ishwar170695 wants to merge 3 commits intodocker:mainfrom
ishwar170695:fix/named-volume-driver-opts-bind-check

Conversation

@ishwar170695
Copy link
Copy Markdown
Contributor

@ishwar170695 ishwar170695 commented Apr 2, 2026

Problem
checkForBindMount only flags VolumeTypeBind entries directly in service.volumes. A named volume (VolumeTypeVolume) whose top-level definition uses driver: local with driver_opts (o: bind, device: /host/path) bypasses the check entirely, the host path leaks into the OCI artifact metadata without any user warning.
Reproducer: compose.yaml

services:
  web:
    image: nginx
    volumes:
      - secret_host_data:/mnt/data
volumes:
  secret_host_data:
    driver: local
    driver_opts:
      type: none
      o: bind
      device: /Users/admin/.ssh

Before this fix: compose publish proceeds with no prompt.
After this fix: user is warned and must confirm.

Fix
Extended checkForBindMount to also walk project.Volumes for named volume references and detect driver_opts bind mounts via a new isDriverOptsBind helper. The helper splits the o field on commas to avoid false positives like nobind.
Tests
Added Test_checkForBindMount_namedVolume_driverOptsBind and a table-driven Test_isDriverOptsBind covering plain bind, rbind, comma-separated options, nobind false positive, missing device key, and non-local driver.

(not mandatory) A picture of a cute animal, if possible in relation to what you did

@ishwar170695
fix(publish): detect named volumes with driver_opts bind in checkForB…
ef314b3 
…indMount

Signed-off-by: Ishwar <ishwarcm@iitbhilai.ac.in>
@ishwar170695 ishwar170695 requested a review from a team as a code owner April 2, 2026 13:08
Copilot AI reviewed Apr 2, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Extends publish pre-checks to warn users when a named volume is actually a bind mount via driver_opts (e.g., local driver with o=bind and device=/host/path), preventing accidental host-path leakage into OCI artifact metadata.

Changes:

  • Updated checkForBindMount to detect bind mounts declared through top-level named volume driver_opts.
  • Added isDriverOptsBind helper to identify bind/rbind options safely (avoiding substring false-positives like nobind).
  • Added unit tests for named-volume bind detection and table-driven coverage for isDriverOptsBind.

Reviewed changes

Copilot reviewed 3 out of 3 changed files in this pull request and generated 3 comments.

File Description
pkg/compose/publish.go Detects driver_opts-based bind mounts for named volumes and surfaces them in the publish prompt.
pkg/compose/publish_test.go Adds tests covering named-volume bind detection and option parsing edge cases.
h --force-with-lease Appears to be an accidentally committed scratch/artifact file (should not be in the repo).

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@ishwar170695
chore: remove accidentally committed scratch file
46b071e 
Signed-off-by: Ishwar <ishwarcm@iitbhilai.ac.in>
@ishwar170695
fix: address review comments - preserve volume flags and validate device
ed6ab77 
Signed-off-by: Ishwar <ishwarcm@iitbhilai.ac.in>
@ishwar170695 ishwar170695 requested a review from Copilot April 2, 2026 13:21
Copilot AI reviewed Apr 2, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 2 out of 2 changed files in this pull request and generated no new comments.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@ndeloof ndeloof Awaiting requested review from ndeloof ndeloof is a code owner automatically assigned from docker/compose-maintainers

@glours glours Awaiting requested review from glours glours is a code owner automatically assigned from docker/compose-maintainers

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@ishwar170695