fix(sandbox): POSIX sh syntax error in resolveCanonicalContainerPath

[DennisGoldfinger]

Summary

• resolveCanonicalContainerPath builds a shell script as an array joined with .join("; "), producing while ...; do; parent=... — the do; is a POSIX sh syntax error (empty command after compound keyword)
• Every image tool invocation in sandbox mode fails with: moltbot-sandbox-fs: -c: line 1: syntax error near unexpected token ';'
• Changing the join separator to "\n" fixes it — do\n cmd is valid in all POSIX-compliant shells
• Also updates the existing test assertion to accept either ; or \n after set -eu, and adds a targeted regression test for the do; bug

Reproduction

1. Enable sandbox mode with Docker
2. Send an image via WhatsApp (or any channel)
3. The agent attempts to use the image tool, which calls readFile → assertPathSafety → resolveCanonicalContainerPath
4. The container's sh rejects the script:

   moltbot-sandbox-fs: -c: line 1: syntax error near unexpected token `;'
   moltbot-sandbox-fs: -c: line 1: `set -eu; target="$1"; ...; do;   parent=...'
   

Affects any shell where do; is invalid — confirmed on bash 5.2 invoked as sh (POSIX mode) on Debian Trixie.

Test plan

• Verified the joined script runs correctly in an actual sandbox container (Debian Trixie, /bin/sh -> bash)
• Tested edge cases: existing paths, non-existent deep paths, symlinks, allow_final flag, paths with spaces, set -eu error handling
• Updated existing "POSIX-safe shell prologue" test
• Added regression test asserting the canonical path script does not contain do;

🤖 Generated with Claude Code

Greptile Summary

Fixed critical POSIX sh syntax error in resolveCanonicalContainerPath that was breaking all image tool invocations in sandbox mode. The script builder was using .join("; ") which produced invalid do; syntax (empty command after compound keyword). Changed to .join("\n") for proper POSIX compliance.

• Updated test assertion to accept both ; and \n after set -eu prologue
• Added targeted regression test to prevent do; syntax errors
• Verified fix works in actual POSIX sh environments

Confidence Score: 5/5

• This PR is safe to merge with minimal risk
• The fix is a one-line change that correctly addresses a well-documented POSIX sh syntax error. The change from semicolon to newline joining is the standard solution for this issue. Test coverage is thorough with both an updated existing test and a new regression test. The fix has been verified to work in actual POSIX sh environments.
• No files require special attention

_{Last reviewed commit: a8bdd7b}

_{(2/5) Greptile learns from your feedback when you react with thumbs up/down!}

[steipete]

Superseded by main commit e7a5f9f4d.

What landed from this PR:

• core POSIX-shell fix in src/agents/sandbox/fs-bridge.ts (resolveCanonicalContainerPath script join changed from "; " to newline), removing do; parse failures under sh/dash

Test coverage in landed commit:

• kept shell-compat coverage in src/agents/sandbox/fs-bridge.test.ts
• added explicit regression check that canonical-path script contains no do; token
• broadened prologue assertion to accept both set -eu; and set -eu\n forms

Linked issue status:

• #25824 and #25868 are now closed by the landed commit

Thanks for the precise root-cause writeup and fix.