fix: prevent deliverables from being lost during agent retry rollbacks (#112)

Deliverables saved by agents were never committed to git because git identity was not configured in the Docker container. This left them as untracked files, which git clean -fd destroyed whenever another agent's retry triggered a workspace rollback. Moves git config after ENV HOME=/tmp so the config is written to /tmp/.gitconfig where git actually looks at runtime.
2026-02-12 09:12:50 +00:00 · 2026-02-11 00:26:48 +05:30
parent d28a511070
commit 1a51adb0a5
1 changed files with 5 additions and 3 deletions
--- a/8
+++ b/8
@@ -139,9 +139,6 @@ RUN mkdir -p /app/sessions /app/deliverables /app/repos /app/configs && \
 # Switch to non-root user
 USER pentest

-# Configure Git to trust all directories
-RUN git config --global --add safe.directory '*'
-
 # Set environment variables
 ENV NODE_ENV=production
 ENV PATH="/usr/local/bin:$PATH"
@@ -153,5 +150,10 @@ ENV HOME=/tmp
 ENV XDG_CACHE_HOME=/tmp/.cache
 ENV XDG_CONFIG_HOME=/tmp/.config

+# Configure Git identity and trust all directories
+RUN git config --global user.email "agent@localhost" && \
+    git config --global user.name "Pentest Agent" && \
+    git config --global --add safe.directory '*'
+
 # Set entrypoint
 ENTRYPOINT ["node", "dist/shannon.js"]