fix(init): restore production API URL and validate-all-then-execute for patchsets

betegon · claude · betegon · commit af6757824883 · 2026-03-03T21:11:00.000+01:00
Restore MASTRA_API_URL to production Cloudflare Worker with env var
override (was hardcoded to localhost:8787). Add upfront safePath()
validation in applyPatchset() so no files are written if any patch
targets an unsafe path.

Co-Authored-By: Claude Opus 4.6 &lt;noreply@anthropic.com&gt;
diff --git a/src/lib/init/constants.ts b/src/lib/init/constants.ts
@@ -1,4 +1,6 @@
-export const MASTRA_API_URL = "http://localhost:8787";
+export const MASTRA_API_URL =
+  process.env.MASTRA_API_URL ??
+  "https://sentry-init-agent.getsentry.workers.dev";
 
 export const WORKFLOW_ID = "sentry-wizard";
 
diff --git a/src/lib/init/local-ops.ts b/src/lib/init/local-ops.ts
@@ -488,6 +488,13 @@ function applyPatchset(
   }
 
   const { cwd, params } = payload;
+
+  // Phase 1: Validate all paths before writing anything
+  for (const patch of params.patches) {
+    safePath(cwd, patch.path);
+  }
+
+  // Phase 2: Apply patches
   const applied: Array<{ path: string; action: string }> = [];
 
   for (const patch of params.patches) {
diff --git a/test/init-eval/helpers/run-wizard.ts b/test/init-eval/helpers/run-wizard.ts
@@ -69,7 +69,7 @@ export async function runWizard(
     env: {
       ...process.env,
       // Override the hardcoded Mastra URL to point at local/test server
-      SENTRY_WIZARD_API_URL: mastraUrl,
+      MASTRA_API_URL: mastraUrl,
       // Disable telemetry
       SENTRY_CLI_NO_TELEMETRY: "1",
     },
diff --git a/test/lib/init/local-ops.test.ts b/test/lib/init/local-ops.test.ts
@@ -857,6 +857,27 @@ describe("handleLocalOp", () => {
       expect(fs.existsSync(join(testDir, "phantom.txt"))).toBe(false);
     });
 
+    test("rejects entire patchset if any path is unsafe (no partial writes)", async () => {
+      const payload: ApplyPatchsetPayload = {
+        type: "local-op",
+        operation: "apply-patchset",
+        cwd: testDir,
+        params: {
+          patches: [
+            { path: "safe.txt", action: "create", patch: "good content" },
+            { path: "../../evil.txt", action: "create", patch: "bad" },
+          ],
+        },
+      };
+
+      const result = await handleLocalOp(payload, options);
+      expect(result.ok).toBe(false);
+      expect(result.error).toContain("outside project directory");
+
+      // First patch must NOT have been written
+      expect(fs.existsSync(join(testDir, "safe.txt"))).toBe(false);
+    });
+
     test("dry-run still validates path safety", async () => {
       const payload: ApplyPatchsetPayload = {
         type: "local-op",
