fix(bundler): harden filepath.Join with SafeJoin for path-traversal protection

[lockwobr]

Summary

Harden filepath.Join calls in bundler production code with deployer.SafeJoin for path-traversal protection, and exclude goconst from test file linting.

Motivation / Context

CodeQL flagged several filepath.Join calls during PR #527 review where the second argument could originate from user input. SafeJoin validates that joined paths
stay within the base directory, preventing path traversal. The goconst exclusion removes unnecessary ceremony — repeated test strings don't benefit from constant
extraction.

Closes: #574
Related: #527
Branched off of: #575

Type of Change

• Bug fix (non-breaking change that fixes an issue)
• New feature (non-breaking change that adds functionality)
• Breaking change (fix or feature that would cause existing functionality to change)
• Documentation update
• Refactoring (no functional changes)
• Build/CI/tooling

Component(s) Affected

• CLI (cmd/aicr, pkg/cli)
• API server (cmd/aicrd, pkg/api, pkg/server)
• Recipe engine / data (pkg/recipe)
• Bundlers (pkg/bundler, pkg/component/*)
• Collectors / snapshotter (pkg/collector, pkg/snapshotter)
• Validator (pkg/validator)
• Core libraries (pkg/errors, pkg/k8s)
• Docs/examples (docs/, examples/)
• Other: ____________

Implementation Notes

Testing

# Commands run (prefer `make qualify` for non-trivial changes)
make qualify

Risk Assessment

• Low — Isolated change, well-tested, easy to revert
• Medium — Touches multiple components or has broader impact
• High — Breaking change, affects critical paths, or complex rollout

Rollout notes:

Checklist

• Tests pass locally (make test with -race)
• Linter passes (make lint)
• I did not skip/disable tests to make CI green
• I added/updated tests for new functionality
• I updated docs if user-facing behavior changed
• Changes follow existing patterns in the codebase
• Commits are cryptographically signed (git commit -S) — GPG signing info

[yuanchen8911]

A couple of minor issues.

Consider adding a regression test for the Helm external-data path.

#	File	Line	Severity	Description
1	pkg/bundler/checksum/checksum.go	88, 154	minor	GetChecksumFilePath and CountEntries still use filepath.Join — no real traversal risk (constant second arg) but inconsistent with the hardening pattern. Converting would require a signature change to (string, error).
2	pkg/bundler/bundler.go	~830	minor	Unsafe data file path in attestation silently skipped (continue + Debug log) instead of failing. User opted into --attest, so silently omitting a file from attestation weakens integrity. Should at minimum log at Warn, or arguably fail like the other SafeJoin calls.

[yuanchen8911]

Note: the double copyDataFiles call for the helm deployer (buildDeployer copies data pre-generation, then runDeployer copies again) is a regression from the base branch (#575), not introduced by this PR. os.CopyFS fails with fs.ErrExist on the second call, breaking --deployer helm --data <dir>. See the review on #575 for details.

[yuanchen8911]

the regression introduced by #575 needs to be fixed first.

regression in PR #575 should be fixed.

[yuanchen8911]

, #575 adds the second copyDataFiles(dir) call in runDeployer() after Helm already copied the same external --data files in buildDeployer(). That needs to be fixed.

[yuanchen8911]

#575 adds the second copyDataFiles(dir) call in runDeployer() after Helm already copied the same external --data files in buildDeployer(). That needs to be fixed.

[ArangoGutierrez]

SafeJoin hardening looks correct overall. The test for path traversal rejection in helm_test.go is solid. Two items from Mark's review still need addressing:

1. The attestation data file loop (former line ~830) now silently continues on SafeJoin failure with a Debug log, but the user opted into --attest -- silently omitting a file weakens integrity. Should at minimum be Warn, arguably fail.

2. GetChecksumFilePath and CountEntries still use filepath.Join. The inline comments explaining why are fine, but worth confirming Mark is OK with that rationale.

Also note the dependency on #575 for the copyDataFiles flow -- merge order matters here.

[coderabbitai]

Warning

Rate limit exceeded

@lockwobr has exceeded the limit for the number of commits that can be reviewed per hour. Please wait 33 minutes and 59 seconds before requesting another review.

Your organization is not enrolled in usage-based pricing. Contact your admin to enable usage-based pricing to continue reviews beyond the rate limit, or try again in 33 minutes and 59 seconds.

⌛ How to resolve this issue?

After the wait time has elapsed, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout.

Please see our FAQ for further information.

ℹ️ Review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: ASSERTIVE

Plan: Pro Plus

Run ID: 0c1c341b-a358-4959-97b3-5360f6d64a0f

📥 Commits

Reviewing files that changed from the base of the PR and between b82af6f and 385b688.

📒 Files selected for processing (7)

• .golangci.yaml
• pkg/bundler/attestation/binary.go
• pkg/bundler/bundler.go
• pkg/bundler/checksum/checksum.go
• pkg/bundler/deployer/helm/helm.go
• pkg/bundler/deployer/helm/helm_test.go
• pkg/bundler/verifier/verifier.go

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch fix/safejoin

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[github-actions]

@lockwobr this PR now has merge conflicts with main. Please rebase to resolve them.

[github-actions]

Coverage Report ✅

Metric	Value
Coverage	75.1%
Threshold	70%
Status	Pass

Coverage Badge

![Coverage](https://img.shields.io/badge/coverage-75.1%25-green)

Merging this branch changes the coverage (3 decrease, 2 increase)

Impacted Packages	Coverage Δ	🤖
github.com/NVIDIA/aicr/pkg/bundler	63.00% (-2.00%)	👎
github.com/NVIDIA/aicr/pkg/bundler/attestation	69.12% (-0.29%)	👎
github.com/NVIDIA/aicr/pkg/bundler/checksum	85.07% (+1.98%)	👍
github.com/NVIDIA/aicr/pkg/bundler/deployer/helm	88.08% (+1.17%)	👍
github.com/NVIDIA/aicr/pkg/bundler/verifier	61.98% (-1.81%)	👎

---

Coverage by file

Changed files (no unit tests)

Changed File	Coverage Δ	Total	Covered	Missed	🤖
github.com/NVIDIA/aicr/pkg/bundler/attestation/binary.go	88.89% (-4.86%)	18 (+2)	16 (+1)	2 (+1)	👎
github.com/NVIDIA/aicr/pkg/bundler/bundler.go	59.79% (-2.50%)	378 (+20)	226 (+3)	152 (+17)	👎
github.com/NVIDIA/aicr/pkg/bundler/checksum/checksum.go	85.07% (+1.98%)	67 (-4)	57 (-2)	10 (-2)	👍
github.com/NVIDIA/aicr/pkg/bundler/deployer/helm/helm.go	88.08% (+1.17%)	193 (+2)	170 (+4)	23 (-2)	👍
github.com/NVIDIA/aicr/pkg/bundler/verifier/verifier.go	58.03% (-2.08%)	193 (+10)	112 (+2)	81 (+8)	👎

Please note that the "Total", "Covered", and "Missed" counts above refer to code statements instead of lines of code. The value in brackets refers to the test coverage of that file in the old version of the code.

[yuanchen8911]

LGTM. On the current rebased head, the previously discussed #575 issue is addressed for purposes of reviewing this PR, and I don’t have any remaining blocking findings on the SafeJoin hardening changes.

[yuanchen8911]

Confirmed on the rebased head that the copyDataFiles issue discussed from #575 is no longer a blocker for reviewing this PR. The SafeJoin hardening here looks good to me, and the PR LGTM from a code-review perspective.