@kokorolx/ai-sandbox-wrapper 3.0.6 → 3.0.7

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (2) hide show
  1. package/bin/ai-run +7 -4
  2. package/package.json +1 -1
package/bin/ai-run CHANGED
@@ -783,12 +783,15 @@ if [[ -d "$HOST_SKILLS_DIR" ]]; then
783
783
  SHARED_CACHE_MOUNTS="$SHARED_CACHE_MOUNTS -v $HOST_SKILLS_DIR:/home/agent/.config/opencode/skills:ro"
784
784
  fi
785
785
 
786
- # Nano-brain read-only mount
787
- # Exposes logs/index/sqlite files to container while preventing writes
786
+ # Nano-brain mount: data/index read-only, logs + memory writable
787
+ # Parent :ro protects index/sqlite/config from container writes
788
+ # Sub-mount :rw on logs/ allows CLI logging (appendFileSync in logger.ts)
789
+ # Sub-mount :rw on memory/ allows CLI write command (npx nano-brain write)
788
790
  NANO_BRAIN_MOUNT=""
789
791
  if [[ -d "$HOME/.nano-brain" ]]; then
790
- NANO_BRAIN_MOUNT="-v $HOME/.nano-brain:/home/agent/.nano-brain:ro"
791
- echo "ℹ️ Mounted .nano-brain as read-only at /home/agent/.nano-brain"
792
+ mkdir -p "$HOME/.nano-brain/logs" "$HOME/.nano-brain/memory"
793
+ NANO_BRAIN_MOUNT="-v $HOME/.nano-brain:/home/agent/.nano-brain:ro -v $HOME/.nano-brain/logs:/home/agent/.nano-brain/logs:rw -v $HOME/.nano-brain/memory:/home/agent/.nano-brain/memory:rw"
794
+ echo "ℹ️ Mounted .nano-brain (ro) with logs/ + memory/ overlay (rw)"
792
795
  fi
793
796
 
794
797
 
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@kokorolx/ai-sandbox-wrapper",
3
- "version": "3.0.6",
3
+ "version": "3.0.7",
4
4
  "description": "Docker-based security sandbox for AI coding agents. Isolate Claude, Gemini, Aider, and other AI tools from your host system.",
5
5
  "keywords": [
6
6
  "ai",