fix(share): clear error when local mount path is read-only (#3192)

[latenighthackathon]

Summary

nemoclaw <name> share mount now fails fast with a structured, actionable error when the local mount path is on a read-only filesystem, instead of leaking the low-level fusermount3: user has no write access to mountpoint line that #3192 reported on AlmaLinux 9.7.

Related Issue

Closes #3192

Changes

• New checkLocalMountWritable(localMount) helper in src/lib/share-command.ts recursively creates the mount directory and verifies the resulting path is writable, distinguishing EROFS (parent on read-only fs), EACCES (permission denied), and other failures and returning a structured { writable, reason } result.
• runShareMount consults this helper after writing the temporary SSH config and before invoking sshfs. A non-writable target now exits with the offending path, the underlying reason, and a suggested writable-path invocation; the temporary SSH config file is cleaned up before the early exit so we don't leave an orphan in /tmp. Sample output for a read-only target: Local mount path '/ro/mounts/my-assistant' is not usable: parent filesystem is read-only. share mount projects sandbox files onto a host directory via SSHFS, so the local target must be on a writable filesystem. Pick a writable directory: nemoclaw my-assistant share mount /sandbox <writable-path>.
• docs/reference/commands.md and the agent-skill mirror in .agents/skills/nemoclaw-user-reference/references/commands.md now include the writable-mount-target requirement in the share mount prerequisites, so users hitting the default ~/.nemoclaw/mounts/<name> on a read-only filesystem know they can pass an explicit local path as the second positional argument.
• New test/share-command-writable.test.ts covers five cases for the helper: success, EROFS from mkdirSync, EACCES from mkdirSync, an unexpected mkdirSync failure (ENOSPC), and a pre-existing directory whose accessSync fails.

Type of Change

• Code change with doc updates
• Code change (feature, bug fix, or refactor)
• Doc only (prose changes, no code sample modifications)
• Doc only (includes code sample changes)

Verification

• npx prek run --all-files passes (commitlint, gitleaks, biome, TypeScript, source-shape, skills YAML, dist-sourcemaps)
• npm test (npx vitest run) passes for the new file: 5/5 in test/share-command-writable.test.ts. Full suite was 3525 passed / 4 pre-existing timing flakes (sandbox-stuck-recovery, cli timing assertion) / 13 skipped; flakes are unrelated to share-command.ts and pass 4/4 in isolation.
• Tests added or updated for new or changed behavior
• No secrets, API keys, or credentials committed
• Docs updated for user-facing behavior changes

---

Signed-off-by: latenighthackathon latenighthackathon@users.noreply.github.com

Summary by CodeRabbit

• Documentation

  • Clarified share mount prerequisites: the local mount destination must be on a writable filesystem; if the default location is read-only, provide an explicit writable path.

• Bug Fixes

  • Added preflight validation for mount destination writeability with clear, targeted error output and early exit to avoid partial operations.

• Tests

  • Added tests covering writable, read-only, permission-denied, and other filesystem error scenarios.

[copy-pr-bot]

This pull request requires additional validation before any workflows can run on NVIDIA's runners.

Pull request vetters can view their responsibilities here.

Contributors can view more details about this message here.

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Enterprise

Run ID: aaa8f348-13fc-4f66-ad5d-379601c1f196

📥 Commits

Reviewing files that changed from the base of the PR and between 40d6594 and 99e45e1.

📒 Files selected for processing (1)

• docs/reference/commands.md

✅ Files skipped from review due to trivial changes (1)

• docs/reference/commands.md

---

📝 Walkthrough

Walkthrough

Adds a preflight check to verify the local mount path is writable before performing SSHFS mounts via nemoclaw share mount. Introduces checkLocalMountWritable(), integrates it into runShareMount to fail early with clear reasons and cleanup, and updates docs and tests to cover success and error cases.

Changes

Writable Mount Validation

Layer / File(s)	Summary
Local mount writability check and integration src/lib/share-command.ts, test/share-command-writable.test.ts	New exported checkLocalMountWritable() creates the mount directory and validates write permissions, mapping EROFS/EACCES and other errors into { writable, reason? }. runShareMount calls this preflight and, on failure, prints the reason, removes temporary SSH config, and exits. Vitest suite verifies success and multiple failure scenarios.
Command documentation updates docs/reference/commands.md, .agents/skills/nemoclaw-user-reference/references/commands.md	Both command reference files updated to document that the local mount destination must be on a writable filesystem and to advise supplying an explicit writable path when the default ~/.nemoclaw/mounts/<name> is read-only.

🎯 3 (Moderate) | ⏱️ ~20 minutes

Suggested reviewers

• jyaunches

Poem

🐰 I sniff the mount, I hop and pry,
Is it writable? I'll tell you why.
EROFS or EACCES, I'll report the clue,
Make a dir that writes, and sharing's true.
✨

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 66.67% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title clearly identifies the main change: improving error handling when the local mount path is read-only, with a specific reference to issue #3192.
Linked Issues check	✅ Passed	The PR fully addresses issue #3192 by implementing a writable filesystem check, providing clear error messages, and documenting the requirement for writable local mount targets.
Out of Scope Changes check	✅ Passed	All changes are directly scoped to resolving issue #3192: adding the writable check function, integrating it into the command, updating documentation, and adding corresponding tests.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests

Tip

💬 Introducing Slack Agent: The best way for teams to turn conversations into code.

Slack Agent is built on CodeRabbit's deep understanding of your code, so your team can collaborate across the entire SDLC without losing context.

• Generate code and open pull requests
• Plan features and break down work
• Investigate incidents and troubleshoot customer tickets together
• Automate recurring tasks and respond to alerts with triggers
• Summarize progress and report instantly

Built for teams:

• Shared memory across your entire org—no repeating context
• Per-thread sandboxes to safely plan and execute work
• Governance built-in—scoped access, auditability, and budget controls

One agent for your entire SDLC. Right inside Slack.

👉 Get started

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}