genpolicy: block self paths for copyFile requests

Self paths are not useful and may cause security issues Signed-off-by: Saul Paredes <[email protected]>
microsoft · Dec 13, 2024 · ed3a993 · ed3a993
1 parent 06ea445
commit ed3a993
Showing 1 changed file with 1 addition and 0 deletions.
diff --git a/src/tools/genpolicy/rules.rego b/src/tools/genpolicy/rules.rego
@@ -1137,6 +1137,7 @@ check_directory_traversal(i_path) {
     contains(i_path, "../") == false
     endswith(i_path, "/..") == false
     i_path != ".."
+    i_path != "."
 }
 
 check_symlink_source {