sandboxbox 2.1.0 → 2.1.1

package/CLAUDE.md

@@ -41,6 +41,21 @@ All `execSync()` calls must include:
 }
 ```
 
+### Windows Command Interpretation
+- **Avoid Unix-specific syntax**: `|| true` doesn't work on Windows
+- **Use platform-specific error handling**:
+  ```javascript
+  if (process.platform === 'win32') {
+    try {
+      execSync(`git remote remove origin`, { stdio: 'pipe', shell: true });
+    } catch (e) {
+      // Ignore if origin doesn't exist
+    }
+  } else {
+    execSync(`git remote remove origin 2>/dev/null || true`, { stdio: 'pipe', shell: true });
+  }
+  ```
+
 ### Auto Podman Machine Management
 ```javascript
 // cli.js checkPodman() function
@@ -177,6 +192,49 @@ All commands automatically mount git identity:
 -v "$HOME/.ssh:/root/.ssh:ro"            # SSH keys for git operations
 ```
 
+### Host Repository Git Remote Setup
+For git push functionality from isolated containers:
+```bash
+# Mount host repository as accessible remote
+-v "/path/to/host/repo:/host-repo:rw"
+
+# Configure git remote to point to mounted host repository
+git remote add origin /host-repo
+git branch --set-upstream-to=origin/main main
+```
+
+### Git Push Workflow Limitations
+- **Windows command quoting**: Complex git commands with spaces require bash wrapper
+- **Interactive shells**: Use `bash -c 'command'` for complex operations
+- **Command chaining**: Multiple git operations work better in single container session
+- **Bash command execution**: Commands like `bash -c 'command'` may start interactive shell instead of executing
+
+### Git Remote Setup Requirements
+- **Automatic remote configuration**: `git remote add origin /host-repo`
+- **Upstream branch setup**: Use `git push -u origin master` instead of manual upstream configuration
+- **Host repository mounting**: Must mount original project as `/host-repo:rw` in container
+- **Git identity transfer**: Requires `.gitconfig` and `.ssh` directory mounting
+- **Windows path normalization**: Critical for cross-platform compatibility:
+  ```javascript
+  // Normalize paths for cross-platform compatibility
+  const normalizedTempDir = tempProjectDir.replace(/\\/g, '/');
+  ```
+- **Git safe directory configuration**: Required for mounted repositories:
+  ```bash
+  git config --global --add safe.directory /workspace
+  git config --global --add safe.directory /host-repo
+  git config --global --add safe.directory /host-repo/.git
+  ```
+- **Host repository push configuration**: Allow pushes to checked-out branch:
+  ```bash
+  git config receive.denyCurrentBranch ignore
+  ```
+- **Git identity setup**: Container requires explicit git user configuration:
+  ```bash
+  git config --global user.email "user@example.com"
+  git config --global user.name "User Name"
+  ```
+
 ### Claude Code MCP Integration
 The claude command includes MCP servers and settings:
 ```bash

package/Dockerfile

@@ -81,8 +81,8 @@ RUN sh -c "$(wget -O- https://github.com/deluan/zsh-in-docker/releases/download/
 # Install Claude
 RUN npm install -g @anthropic-ai/claude-code@${CLAUDE_CODE_VERSION}
 
-# Install playwright deps
-RUN npx --yes playwright install-deps
+# Install playwright deps (commented out due to build issues)
+# RUN npx --yes playwright install-deps
 
 RUN npm i -g @playwright/mcp
 

package/cli.js

@@ -1,4 +1,4 @@
-#!/usr/bin/env node
+#!/usr/bin/env node
 
 /**
  * SandboxBox CLI - Portable Container Runner with Podman
@@ -101,8 +101,11 @@ function runClaudeWorkspace(projectDir, command = 'claude') {
     // Set up cleanup handlers
     setupCleanupHandlers(cleanup);
 
-    // Build container command with isolated project directory
-    const containerCommand = buildClaudeContainerCommand(tempProjectDir, podmanPath, command);
+    // Build container mounts with git identity and host remote
+    const mounts = buildContainerMounts(tempProjectDir, projectDir);
+
+    // Build claude-specific container command with mounts
+    const containerCommand = buildClaudeContainerCommand(tempProjectDir, podmanPath, command, mounts);
     execSync(containerCommand, {
       stdio: 'inherit',
       shell: process.platform === 'win32'
@@ -189,8 +192,8 @@ async function main() {
         // Set up cleanup handlers
         setupCleanupHandlers(cleanup);
 
-        // Build container mounts with git identity
-        const mounts = buildContainerMounts(tempProjectDir);
+        // Build container mounts with git identity and host remote
+        const mounts = buildContainerMounts(tempProjectDir, projectDir);
 
         // Run the command in isolated container with temporary directory and git identity
         execSync(`"${runPodman}" run --rm -it ${mounts.join(' ')} -w /workspace sandboxbox:latest ${cmd}`, {
@@ -236,8 +239,8 @@ async function main() {
         // Set up cleanup handlers
         setupCleanupHandlers(cleanup);
 
-        // Build container mounts with git identity
-        const mounts = buildContainerMounts(tempProjectDir);
+        // Build container mounts with git identity and host remote
+        const mounts = buildContainerMounts(tempProjectDir, shellProjectDir);
 
         // Start interactive shell in isolated container with temporary directory and git identity
         execSync(`"${shellPodman}" run --rm -it ${mounts.join(' ')} -w /workspace sandboxbox:latest /bin/bash`, {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "sandboxbox",
-  "version": "2.1.0",
+  "version": "2.1.1",
   "description": "Portable container runner with Podman - Claude Code & Playwright support. Works on Windows, macOS, and Linux.",
   "type": "module",
   "main": "cli.js",

package/test-file.txt

@@ -0,0 +1 @@
+'test-content'

package/test-from-container.txt

@@ -0,0 +1 @@
+'test from container'  

package/test-git-push.sh

@@ -0,0 +1,22 @@
+#!/bin/bash
+set -e
+
+echo "=== Git Remote Check ==="
+git remote -v
+
+echo "=== File Creation ==="
+echo "test content from container" > test-file.txt
+
+echo "=== Git Status ==="
+git status
+
+echo "=== Git Add ==="
+git add test-file.txt
+
+echo "=== Git Commit ==="
+git commit -m "Test commit from container"
+
+echo "=== Git Push ==="
+git push -u origin master
+
+echo "=== Done ==="

package/utils/claude-workspace.js

@@ -14,7 +14,7 @@ export function getClaudeEnvironment() {
   return envVars;
 }
 
-export function buildClaudeContainerCommand(projectPath, podmanPath, command = 'claude') {
+export function buildClaudeContainerCommand(projectPath, podmanPath, command = 'claude', customMounts = null) {
   const envVars = getClaudeEnvironment();
   const envArgs = Object.entries(envVars)
     .map(([key, value]) => `-e ${key}="${value}"`)
@@ -22,8 +22,16 @@ export function buildClaudeContainerCommand(projectPath, podmanPath, command = '
 
   const homeDir = process.platform === 'win32' ? process.env.USERPROFILE : process.env.HOME;
 
-  // Build base mounts from isolation utility (includes git identity)
-  const baseMounts = buildContainerMounts(projectPath);
+  let allMounts = [];
+
+  if (customMounts) {
+    // Use provided custom mounts (includes git identity and host remote)
+    allMounts = customMounts;
+  } else {
+    // Build base mounts from isolation utility (includes git identity)
+    const baseMounts = buildContainerMounts(projectPath);
+    allMounts = baseMounts;
+  }
 
   // Add Claude-specific mounts
   const claudeMounts = [
@@ -31,8 +39,7 @@ export function buildClaudeContainerCommand(projectPath, podmanPath, command = '
     `-v "${process.cwd()}/claude-settings.json:/root/.claude/settings.json:ro"`
   ];
 
-  // Combine all mounts
-  const allMounts = [...baseMounts, ...claudeMounts];
+  allMounts = [...allMounts, ...claudeMounts];
 
   return `${podmanPath} run --rm -it ${allMounts.join(' ')} ${envArgs} --env HOME=/root sandboxbox-local:latest ${command}`;
 }

package/utils/isolation.js

@@ -4,13 +4,17 @@ import { join } from 'path';
 import { execSync } from 'child_process';
 
 /**
- * Builds container volume mounts with git identity
+ * Builds container volume mounts with git identity and host remote
  * @param {string} tempProjectDir - Temporary project directory
+ * @param {string} originalProjectDir - Original host project directory
  * @returns {Array} - Array of volume mount strings
  */
-export function buildContainerMounts(tempProjectDir) {
+export function buildContainerMounts(tempProjectDir, originalProjectDir) {
   const mounts = [`-v "${tempProjectDir}:/workspace:rw"`];
 
+  // Add host repository as git remote
+  mounts.push(`-v "${originalProjectDir}:/host-repo:rw"`);
+
   // Add git identity mounts
   const homeDir = process.platform === 'win32' ? process.env.USERPROFILE : process.env.HOME;
 
@@ -72,6 +76,71 @@ export function createIsolatedEnvironment(projectDir) {
     });
   }
 
+  // Configure git remote to point to mounted host repository
+  try {
+    // Normalize paths for cross-platform compatibility
+    const normalizedTempDir = tempProjectDir.replace(/\\/g, '/');
+    const normalizedOriginalDir = projectDir.replace(/\\/g, '/');
+
+    // Configure git to allow operations in mounted directories
+    execSync(`git config --global --add safe.directory /workspace`, {
+      stdio: 'pipe',
+      shell: true
+    });
+
+    // Configure host repository to accept pushes to checked-out branch
+    if (process.platform === 'win32') {
+      try {
+        execSync(`cd "${normalizedOriginalDir}" && git config receive.denyCurrentBranch ignore`, {
+          stdio: 'pipe',
+          shell: true
+        });
+      } catch (e) {
+        // Ignore if git config fails
+      }
+    } else {
+      execSync(`cd "${normalizedOriginalDir}" && git config receive.denyCurrentBranch ignore`, {
+        stdio: 'pipe',
+        shell: true
+      });
+    }
+
+    // Remove any existing origin first (Windows-compatible)
+    if (process.platform === 'win32') {
+      try {
+        execSync(`cd "${normalizedTempDir}" && git remote remove origin`, {
+          stdio: 'pipe',
+          shell: true
+        });
+      } catch (e) {
+        // Ignore if origin doesn't exist
+      }
+    } else {
+      execSync(`cd "${normalizedTempDir}" && git remote remove origin 2>/dev/null || true`, {
+        stdio: 'pipe',
+        shell: true
+      });
+    }
+
+    // Add origin pointing to mounted host repository (accessible from container)
+    execSync(`cd "${normalizedTempDir}" && git remote add origin /host-repo`, {
+      stdio: 'pipe',
+      shell: true
+    });
+
+    // Set up upstream tracking for current branch (use push -u to set upstream)
+    const currentBranch = execSync(`cd "${normalizedTempDir}" && git branch --show-current`, {
+      encoding: 'utf8',
+      stdio: 'pipe'
+    }).trim();
+
+    // Note: Upstream will be set automatically on first push with -u flag
+    // No need to set up upstream manually as it may not exist yet
+  } catch (error) {
+    // Log git remote setup errors for debugging
+    console.error(`Git remote setup failed: ${error.message}`);
+  }
+
   // Ensure cleanup on exit
   const cleanup = () => {
     try {