Skip to content

[backport] fix(world-local): prevent path traversal via request-supplied IDs (#1829)#1920

Open
TooTallNate wants to merge 1 commit intostablefrom
nathan/backport-1829-path-traversal
Open

[backport] fix(world-local): prevent path traversal via request-supplied IDs (#1829)#1920
TooTallNate wants to merge 1 commit intostablefrom
nathan/backport-1829-path-traversal

Conversation

@TooTallNate
Copy link
Copy Markdown
Member

@TooTallNate TooTallNate commented May 4, 2026

Summary

Backport of #1829 (security fix) to the stable branch.

Request-supplied identifiers (runId, eventId, stepId, hookId, correlationId, stream names, and tags) flowed directly into path.join() calls in @workflow/world-local, allowing a client to send values like ../../../package and cause the backend to read or write files outside the workflow data directory.

This adds a centralized validator (assertSafeEntityId) that rejects IDs which are empty, start with ., or contain path separators or NUL bytes, and applies it at every storage-layer entry point that composes IDs into filesystem paths.

Backport details

The cherry-pick applied cleanly except for two files where stable's pre-v5 shape diverged from main:

  • packages/world-local/src/storage/steps-storage.ts — Stable's steps.get() accepts an optional runId and looks it up via listJSONFiles when missing; main's signature requires runId. Resolution: assert stepId always, and only assert runId when it was supplied (the disk lookup only ever produces internal-derived runIds, so it can't be attacker-controlled).
  • packages/world-local/src/streamer.ts — Stable still has the v4 streamer interface (separate closeStream / listStreamsByRunId / getStreamChunks methods rather than main's renamed equivalents). The auto-merge produced a stray duplicate block that conflicted with stable's existing getStreamChunks chunk-walking loop. Resolution: kept stable's existing loop; threaded the assertSafeEntityId('runId', runId) call into stable's listStreamsByRunId. The other three call sites (listChunkFilesForStream, registerStreamForRun, plus the import) auto-merged correctly.

All 339 tests in packages/world-local pass, including the new path-traversal test cases (60 in fs.test.ts covering assertSafeEntityId, UnsafeEntityIdError, error truncation, etc.). Workspace pnpm typecheck is clean.

Test plan

cd packages/world-local && pnpm test
pnpm turbo build --filter @workflow/world-local
pnpm typecheck

@TooTallNate @ijjk
fix(world-local): prevent path traversal via request-supplied IDs (#1829
02dd50a 
)

* fix(world-local): prevent path traversal via request-supplied IDs

Request-supplied identifiers (runId, eventId, stepId, hookId, correlationId,
stream names, and tags) flowed directly into path.join() calls, allowing a
client to send values like '../../../package' and cause the backend to read
or write files outside the workflow data directory.

Add a centralized validator (assertSafeEntityId) that rejects IDs which are
empty, start with '.', or contain path separators or NUL bytes. Apply it at
each storage-layer entry point that composes IDs into filesystem paths:
fs.taggedPath / readJSONWithFallback / paginatedFileSystemQuery, the runs /
steps / events / hooks storage methods, and the streamer.

* address review feedback

- UnsafeEntityIdError now extends WorkflowWorldError for consistency with
  other storage-layer errors and the platform error-to-HTTP mapping.
- Add resolveWithinBase(basedir, ...segments) containment helper and
  apply it at every taggedPath / readJSONWithFallback / .locks path
  construction site in events-storage and legacy, so a forgotten
  assertSafeEntityId at a future call site can't silently regress.
- Truncate attacker-controlled values in the error message.
- Drop unused assertSafeEntityIds helper and the unreachable typeof
  check under the TS signature.
- Fix docstrings on assertSafeEntityId / taggedPath JSDoc example /
  filePrefix validation comment to match what the code actually does.
- handleLegacyEvent now re-asserts runId locally so the invariant is
  documented at the call site instead of implicitly inherited from
  events.create.

---------

Co-authored-by: JJ Kasper <jj@jjsweb.site>
Copilot AI review requested due to automatic review settings May 4, 2026 19:58
@changeset-bot
Copy link
Copy Markdown

changeset-bot Bot commented May 4, 2026

🦋 Changeset detected

Latest commit: 02dd50a

The changes in this PR will be included in the next version bump.

This PR includes changesets to release 20 packages
Name Type
@workflow/world-local Patch
@workflow/cli Patch
@workflow/core Patch
@workflow/vitest Patch
@workflow/world-postgres Patch
tarballs Patch
workflow Patch
@workflow/world-testing Patch
@workflow/builders Patch
@workflow/next Patch
@workflow/nitro Patch
@workflow/web-shared Patch
@workflow/web Patch
@workflow/ai Patch
@workflow/astro Patch
@workflow/nest Patch
@workflow/rollup Patch
@workflow/sveltekit Patch
@workflow/vite Patch
@workflow/nuxt Patch

Not sure what this means? Click here to learn what changesets are.

Click here if you're a maintainer who wants to add another changeset to this PR

@vercel
Copy link
Copy Markdown
Contributor

vercel Bot commented May 4, 2026
edited
Loading

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
example-nextjs-workflow-turbopack Ready Ready Preview, Comment May 4, 2026 8:02pm
example-nextjs-workflow-webpack Ready Ready Preview, Comment May 4, 2026 8:02pm
example-workflow Ready Ready Preview, Comment May 4, 2026 8:02pm
workbench-astro-workflow Ready Ready Preview, Comment May 4, 2026 8:02pm
workbench-express-workflow Ready Ready Preview, Comment May 4, 2026 8:02pm
workbench-fastify-workflow Ready Ready Preview, Comment May 4, 2026 8:02pm
workbench-hono-workflow Ready Ready Preview, Comment May 4, 2026 8:02pm
workbench-nitro-workflow Ready Ready Preview, Comment May 4, 2026 8:02pm
workbench-nuxt-workflow Ready Ready Preview, Comment May 4, 2026 8:02pm
workbench-sveltekit-workflow Ready Ready Preview, Comment May 4, 2026 8:02pm
workbench-tanstack-start-workflow Ready Ready Preview, Comment May 4, 2026 8:02pm
workbench-vite-workflow Ready Ready Preview, Comment May 4, 2026 8:02pm
workflow-docs Ready Ready Preview, Comment, Open in v0 May 4, 2026 8:02pm
workflow-swc-playground Ready Ready Preview, Comment May 4, 2026 8:02pm
workflow-tarballs Ready Ready Preview, Comment May 4, 2026 8:02pm
workflow-web Ready Ready Preview, Comment May 4, 2026 8:02pm

@github-actions
Copy link
Copy Markdown
Contributor

github-actions Bot commented May 4, 2026
edited
Loading

🧪 E2E Test Results

Some tests failed

Summary

Passed Failed Skipped Total
✅ ▲ Vercel Production 901 0 67 968
❌ 💻 Local Development 642 328 86 1056
✅ 📦 Local Production 970 0 86 1056
✅ 🐘 Local Postgres 970 0 86 1056
✅ 🪟 Windows 88 0 0 88
❌ 🌍 Community Worlds 139 83 0 222
✅ 📋 Other 492 0 36 528
Total 4202 411 361 4974

❌ Failed Tests

💻 Local Development (328 failed)

express-stable (82 failed):

  • DurableAgent e2e core basic text response
  • DurableAgent e2e core single tool call
  • DurableAgent e2e core multiple sequential tool calls
  • DurableAgent e2e core tool error recovery
  • DurableAgent e2e provider tools provider tool identity preserved across step boundaries
  • DurableAgent e2e provider tools mixed provider and function tools
  • DurableAgent e2e onStepFinish fires constructor + stream callbacks in order with step data
  • DurableAgent e2e onFinish fires constructor + stream callbacks in order with event data
  • DurableAgent e2e instructions string instructions are passed to the model
  • DurableAgent e2e timeout completes within timeout
  • DurableAgent e2e experimental_onStart (GAP) completes but callbacks are not called (GAP)
  • DurableAgent e2e experimental_onStepStart (GAP) completes but callbacks are not called (GAP)
  • DurableAgent e2e experimental_onToolCallStart (GAP) completes but callbacks are not called (GAP)
  • DurableAgent e2e experimental_onToolCallFinish (GAP) completes but callbacks are not called (GAP)
  • DurableAgent e2e prepareCall (GAP) completes but prepareCall is not applied (GAP)
  • DurableAgent e2e prepareStep on constructor agent-level prepareStep is called for each LLM step
  • DurableAgent e2e prepareStep on constructor stream-level prepareStep overrides constructor-level
  • DurableAgent e2e multimodal tool results passes through LanguageModelV3ToolResultOutput from tools
  • DurableAgent e2e tool approval (GAP) completes but needsApproval is not checked (GAP)
  • addTenWorkflow | wrun_01KQT9859XPV1TBT4EF3CCDAX5
  • addTenWorkflow | wrun_01KQT9859XPV1TBT4EF3CCDAX5
  • promiseAllWorkflow | wrun_01KQT98CED49XGE9KW2CVZ0M4P
  • promiseRaceWorkflow | wrun_01KQT98GH4JR263HQVBVZCRT98
  • promiseAnyWorkflow | wrun_01KQT98KJ003DF29CK1SZV1X5S
  • readableStreamWorkflow | wrun_01KQT98PKVR0BAAN5HHQ7RQEZH
  • hookWorkflow | wrun_01KQT990EYMFMJ7J9DNQER0D3B
  • hookWorkflow is not resumable via public webhook endpoint | wrun_01KQT99ARJS6A7E56HG2XPQX77
  • webhookWorkflow | wrun_01KQT99K4NSFFFKNK0CGJ663J1
  • webhook route with invalid token
  • sleepingWorkflow | wrun_01KQT99SNA36GZ29FYJ20YYFD2
  • parallelSleepWorkflow | wrun_01KQT9A5KABT6T9AB2N9TZPGP7
  • nullByteWorkflow | wrun_01KQT9AA3N0H4XB6YPV7NAY2F5
  • workflowAndStepMetadataWorkflow | wrun_01KQT9ABYCE1M8MRKW78EMM9HW
  • outputStreamWorkflow no startIndex (reads all chunks)
  • outputStreamWorkflow positive startIndex (skips first chunk)
  • outputStreamWorkflow negative startIndex (reads from end)
  • outputStreamWorkflow - getTailIndex and getStreamChunks getTailIndex returns correct index after stream completes
  • outputStreamWorkflow - getTailIndex and getStreamChunks getTailIndex returns -1 before any chunks are written
  • outputStreamWorkflow - getTailIndex and getStreamChunks getStreamChunks returns same content as reading the stream
  • outputStreamInsideStepWorkflow - getWritable() called inside step functions | wrun_01KQT9CQTF6CET7VPXYYZJ58YP
  • fetchWorkflow | wrun_01KQT9D5YTYGSVA95JD15NPMJD
  • promiseRaceStressTestWorkflow | wrun_01KQT9D92J6X1R2GS426YCX6H4
  • error handling error propagation workflow errors nested function calls preserve message and stack trace
  • error handling error propagation workflow errors cross-file imports preserve message and stack trace
  • error handling error propagation step errors basic step error preserves message and stack trace
  • error handling error propagation step errors cross-file step error preserves message and function names in stack
  • error handling retry behavior regular Error retries until success
  • error handling retry behavior FatalError fails immediately without retries
  • error handling retry behavior RetryableError respects custom retryAfter delay
  • error handling retry behavior maxRetries=0 disables retries
  • error handling catchability FatalError can be caught and detected with FatalError.is()
  • error handling not registered WorkflowNotRegisteredError fails the run when workflow does not exist
  • error handling not registered StepNotRegisteredError fails the step but workflow can catch it
  • error handling not registered StepNotRegisteredError fails the run when not caught in workflow
  • stepDirectCallWorkflow - calling step functions directly outside workflow context
  • hookCleanupTestWorkflow - hook token reuse after workflow completion | wrun_01KQT9GJX6KZMQRTVB3YY732AV
  • concurrent hook token conflict - two workflows cannot use the same hook token simultaneously | wrun_01KQT9H66X8K8KXDJ7SZQN19RF
  • hookDisposeTestWorkflow - hook token reuse after explicit disposal while workflow still running | wrun_01KQT9HSHK14QMC74QW5FM30B1
  • stepFunctionPassingWorkflow - step function references can be passed as arguments (without closure vars) | wrun_01KQT9JBMZ69STX86K9SH5JXGV
  • stepFunctionWithClosureWorkflow - step function with closure variables passed as argument | wrun_01KQT9JKMPMXS70HDDPPKFX79A
  • closureVariableWorkflow - nested step functions with closure variables | wrun_01KQT9JSH4CY5Z3GDP8PX4AVT2
  • spawnWorkflowFromStepWorkflow - spawning a child workflow using start() inside a step | wrun_01KQT9JVCKR8T87VR60HPQDK38
  • health check endpoint (HTTP) - workflow and step endpoints respond to __health query parameter
  • health check (queue-based) - workflow and step endpoints respond to health check messages
  • health check (CLI) - workflow health command reports healthy endpoints
  • pathsAliasWorkflow - TypeScript path aliases resolve correctly | wrun_01KQT9K9MRGS7HCGDMM953C7JP
  • Calculator.calculate - static workflow method using static step methods from another class | wrun_01KQT9KFV40NB89J6KR8979TE7
  • AllInOneService.processNumber - static workflow method using sibling static step methods | wrun_01KQT9KNQF3WAJJPJRM5CW1HRR
  • ChainableService.processWithThis - static step methods using this to reference the class | wrun_01KQT9KWHFZJXEE5AQH4A77FEP
  • thisSerializationWorkflow - step function invoked with .call() and .apply() | wrun_01KQT9M2CHMH0BYN3PR2BP0F0G
  • customSerializationWorkflow - custom class serialization with WORKFLOW_SERIALIZE/WORKFLOW_DESERIALIZE | wrun_01KQT9M9DW1FFZJTZ1EK6GAFV1
  • instanceMethodStepWorkflow - instance methods with "use step" directive | wrun_01KQT9MF9VA03M74KZKW1X79DR
  • crossContextSerdeWorkflow - classes defined in step code are deserializable in workflow context | wrun_01KQT9MT4JXHJ1B28KHHEFAVJA
  • stepFunctionAsStartArgWorkflow - step function reference passed as start() argument | wrun_01KQT9N131E8B7XX1WKFY27VC3
  • cancelRun - cancelling a running workflow | wrun_01KQT9N82NPD2MNX4JZ0XJB74D
  • cancelRun via CLI - cancelling a running workflow | wrun_01KQT9NGGBYJWJ24EK1C77PGGF
  • hookWithSleepWorkflow - hook payloads delivered correctly with concurrent sleep | wrun_01KQT9NVMG06B37F65Q2K8BB33
  • sleepInLoopWorkflow - sleep inside loop with steps actually delays each iteration | wrun_01KQT9PECBET3588MRQ6K1YTQW
  • sleepWithSequentialStepsWorkflow - sequential steps work with concurrent sleep (control) | wrun_01KQT9PSH59CJPZ0F0GBRASGZG
  • importMetaUrlWorkflow - import.meta.url is available in step bundles | wrun_01KQT9Q16NJ9JKET7NF8EXHDMX
  • metadataFromHelperWorkflow - getWorkflowMetadata/getStepMetadata work from module-level helper (#1577) | wrun_01KQT9Q31DDV4W4CRRE0S9009E
  • resilient start: addTenWorkflow completes when run_created returns 500 | wrun_01KQT9Q4VFSGQKQ778FX2935EV

fastify-stable (82 failed):

  • DurableAgent e2e core basic text response
  • DurableAgent e2e core single tool call
  • DurableAgent e2e core multiple sequential tool calls
  • DurableAgent e2e core tool error recovery
  • DurableAgent e2e provider tools provider tool identity preserved across step boundaries
  • DurableAgent e2e provider tools mixed provider and function tools
  • DurableAgent e2e onStepFinish fires constructor + stream callbacks in order with step data
  • DurableAgent e2e onFinish fires constructor + stream callbacks in order with event data
  • DurableAgent e2e instructions string instructions are passed to the model
  • DurableAgent e2e timeout completes within timeout
  • DurableAgent e2e experimental_onStart (GAP) completes but callbacks are not called (GAP)
  • DurableAgent e2e experimental_onStepStart (GAP) completes but callbacks are not called (GAP)
  • DurableAgent e2e experimental_onToolCallStart (GAP) completes but callbacks are not called (GAP)
  • DurableAgent e2e experimental_onToolCallFinish (GAP) completes but callbacks are not called (GAP)
  • DurableAgent e2e prepareCall (GAP) completes but prepareCall is not applied (GAP)
  • DurableAgent e2e prepareStep on constructor agent-level prepareStep is called for each LLM step
  • DurableAgent e2e prepareStep on constructor stream-level prepareStep overrides constructor-level
  • DurableAgent e2e multimodal tool results passes through LanguageModelV3ToolResultOutput from tools
  • DurableAgent e2e tool approval (GAP) completes but needsApproval is not checked (GAP)
  • addTenWorkflow | wrun_01KQT9859XPV1TBT4EF3CCDAX5
  • addTenWorkflow | wrun_01KQT9859XPV1TBT4EF3CCDAX5
  • promiseAllWorkflow | wrun_01KQT98CED49XGE9KW2CVZ0M4P
  • promiseRaceWorkflow | wrun_01KQT98GH4JR263HQVBVZCRT98
  • promiseAnyWorkflow | wrun_01KQT98KJ003DF29CK1SZV1X5S
  • readableStreamWorkflow | wrun_01KQT98PKVR0BAAN5HHQ7RQEZH
  • hookWorkflow | wrun_01KQT990EYMFMJ7J9DNQER0D3B
  • hookWorkflow is not resumable via public webhook endpoint | wrun_01KQT99ARJS6A7E56HG2XPQX77
  • webhookWorkflow | wrun_01KQT99K4NSFFFKNK0CGJ663J1
  • webhook route with invalid token
  • sleepingWorkflow | wrun_01KQT99SNA36GZ29FYJ20YYFD2
  • parallelSleepWorkflow | wrun_01KQT9A5KABT6T9AB2N9TZPGP7
  • nullByteWorkflow | wrun_01KQT9AA3N0H4XB6YPV7NAY2F5
  • workflowAndStepMetadataWorkflow | wrun_01KQT9ABYCE1M8MRKW78EMM9HW
  • outputStreamWorkflow no startIndex (reads all chunks)
  • outputStreamWorkflow positive startIndex (skips first chunk)
  • outputStreamWorkflow negative startIndex (reads from end)
  • outputStreamWorkflow - getTailIndex and getStreamChunks getTailIndex returns correct index after stream completes
  • outputStreamWorkflow - getTailIndex and getStreamChunks getTailIndex returns -1 before any chunks are written
  • outputStreamWorkflow - getTailIndex and getStreamChunks getStreamChunks returns same content as reading the stream
  • outputStreamInsideStepWorkflow - getWritable() called inside step functions | wrun_01KQT9CQTF6CET7VPXYYZJ58YP
  • fetchWorkflow | wrun_01KQT9D5YTYGSVA95JD15NPMJD
  • promiseRaceStressTestWorkflow | wrun_01KQT9D92J6X1R2GS426YCX6H4
  • error handling error propagation workflow errors nested function calls preserve message and stack trace
  • error handling error propagation workflow errors cross-file imports preserve message and stack trace
  • error handling error propagation step errors basic step error preserves message and stack trace
  • error handling error propagation step errors cross-file step error preserves message and function names in stack
  • error handling retry behavior regular Error retries until success
  • error handling retry behavior FatalError fails immediately without retries
  • error handling retry behavior RetryableError respects custom retryAfter delay
  • error handling retry behavior maxRetries=0 disables retries
  • error handling catchability FatalError can be caught and detected with FatalError.is()
  • error handling not registered WorkflowNotRegisteredError fails the run when workflow does not exist
  • error handling not registered StepNotRegisteredError fails the step but workflow can catch it
  • error handling not registered StepNotRegisteredError fails the run when not caught in workflow
  • stepDirectCallWorkflow - calling step functions directly outside workflow context
  • hookCleanupTestWorkflow - hook token reuse after workflow completion | wrun_01KQT9GJX6KZMQRTVB3YY732AV
  • concurrent hook token conflict - two workflows cannot use the same hook token simultaneously | wrun_01KQT9H66X8K8KXDJ7SZQN19RF
  • hookDisposeTestWorkflow - hook token reuse after explicit disposal while workflow still running | wrun_01KQT9HSHK14QMC74QW5FM30B1
  • stepFunctionPassingWorkflow - step function references can be passed as arguments (without closure vars) | wrun_01KQT9JBMZ69STX86K9SH5JXGV
  • stepFunctionWithClosureWorkflow - step function with closure variables passed as argument | wrun_01KQT9JKMPMXS70HDDPPKFX79A
  • closureVariableWorkflow - nested step functions with closure variables | wrun_01KQT9JSH4CY5Z3GDP8PX4AVT2
  • spawnWorkflowFromStepWorkflow - spawning a child workflow using start() inside a step | wrun_01KQT9JVCKR8T87VR60HPQDK38
  • health check endpoint (HTTP) - workflow and step endpoints respond to __health query parameter
  • health check (queue-based) - workflow and step endpoints respond to health check messages
  • health check (CLI) - workflow health command reports healthy endpoints
  • pathsAliasWorkflow - TypeScript path aliases resolve correctly | wrun_01KQT9K9MRGS7HCGDMM953C7JP
  • Calculator.calculate - static workflow method using static step methods from another class | wrun_01KQT9KFV40NB89J6KR8979TE7
  • AllInOneService.processNumber - static workflow method using sibling static step methods | wrun_01KQT9KNQF3WAJJPJRM5CW1HRR
  • ChainableService.processWithThis - static step methods using this to reference the class | wrun_01KQT9KWHFZJXEE5AQH4A77FEP
  • thisSerializationWorkflow - step function invoked with .call() and .apply() | wrun_01KQT9M2CHMH0BYN3PR2BP0F0G
  • customSerializationWorkflow - custom class serialization with WORKFLOW_SERIALIZE/WORKFLOW_DESERIALIZE | wrun_01KQT9M9DW1FFZJTZ1EK6GAFV1
  • instanceMethodStepWorkflow - instance methods with "use step" directive | wrun_01KQT9MF9VA03M74KZKW1X79DR
  • crossContextSerdeWorkflow - classes defined in step code are deserializable in workflow context | wrun_01KQT9MT4JXHJ1B28KHHEFAVJA
  • stepFunctionAsStartArgWorkflow - step function reference passed as start() argument | wrun_01KQT9N131E8B7XX1WKFY27VC3
  • cancelRun - cancelling a running workflow | wrun_01KQT9N82NPD2MNX4JZ0XJB74D
  • cancelRun via CLI - cancelling a running workflow | wrun_01KQT9NGGBYJWJ24EK1C77PGGF
  • hookWithSleepWorkflow - hook payloads delivered correctly with concurrent sleep | wrun_01KQT9NVMG06B37F65Q2K8BB33
  • sleepInLoopWorkflow - sleep inside loop with steps actually delays each iteration | wrun_01KQT9PECBET3588MRQ6K1YTQW
  • sleepWithSequentialStepsWorkflow - sequential steps work with concurrent sleep (control) | wrun_01KQT9PSH59CJPZ0F0GBRASGZG
  • importMetaUrlWorkflow - import.meta.url is available in step bundles | wrun_01KQT9Q16NJ9JKET7NF8EXHDMX
  • metadataFromHelperWorkflow - getWorkflowMetadata/getStepMetadata work from module-level helper (#1577) | wrun_01KQT9Q31DDV4W4CRRE0S9009E
  • resilient start: addTenWorkflow completes when run_created returns 500 | wrun_01KQT9Q4VFSGQKQ778FX2935EV

hono-stable (82 failed):

  • DurableAgent e2e core basic text response
  • DurableAgent e2e core single tool call
  • DurableAgent e2e core multiple sequential tool calls
  • DurableAgent e2e core tool error recovery
  • DurableAgent e2e provider tools provider tool identity preserved across step boundaries
  • DurableAgent e2e provider tools mixed provider and function tools
  • DurableAgent e2e onStepFinish fires constructor + stream callbacks in order with step data
  • DurableAgent e2e onFinish fires constructor + stream callbacks in order with event data
  • DurableAgent e2e instructions string instructions are passed to the model
  • DurableAgent e2e timeout completes within timeout
  • DurableAgent e2e experimental_onStart (GAP) completes but callbacks are not called (GAP)
  • DurableAgent e2e experimental_onStepStart (GAP) completes but callbacks are not called (GAP)
  • DurableAgent e2e experimental_onToolCallStart (GAP) completes but callbacks are not called (GAP)
  • DurableAgent e2e experimental_onToolCallFinish (GAP) completes but callbacks are not called (GAP)
  • DurableAgent e2e prepareCall (GAP) completes but prepareCall is not applied (GAP)
  • DurableAgent e2e prepareStep on constructor agent-level prepareStep is called for each LLM step
  • DurableAgent e2e prepareStep on constructor stream-level prepareStep overrides constructor-level
  • DurableAgent e2e multimodal tool results passes through LanguageModelV3ToolResultOutput from tools
  • DurableAgent e2e tool approval (GAP) completes but needsApproval is not checked (GAP)
  • addTenWorkflow | wrun_01KQT9859XPV1TBT4EF3CCDAX5
  • addTenWorkflow | wrun_01KQT9859XPV1TBT4EF3CCDAX5
  • promiseAllWorkflow | wrun_01KQT98CED49XGE9KW2CVZ0M4P
  • promiseRaceWorkflow | wrun_01KQT98GH4JR263HQVBVZCRT98
  • promiseAnyWorkflow | wrun_01KQT98KJ003DF29CK1SZV1X5S
  • readableStreamWorkflow | wrun_01KQT98PKVR0BAAN5HHQ7RQEZH
  • hookWorkflow | wrun_01KQT990EYMFMJ7J9DNQER0D3B
  • hookWorkflow is not resumable via public webhook endpoint | wrun_01KQT99ARJS6A7E56HG2XPQX77
  • webhookWorkflow | wrun_01KQT99K4NSFFFKNK0CGJ663J1
  • webhook route with invalid token
  • sleepingWorkflow | wrun_01KQT99SNA36GZ29FYJ20YYFD2
  • parallelSleepWorkflow | wrun_01KQT9A5KABT6T9AB2N9TZPGP7
  • nullByteWorkflow | wrun_01KQT9AA3N0H4XB6YPV7NAY2F5
  • workflowAndStepMetadataWorkflow | wrun_01KQT9ABYCE1M8MRKW78EMM9HW
  • outputStreamWorkflow no startIndex (reads all chunks)
  • outputStreamWorkflow positive startIndex (skips first chunk)
  • outputStreamWorkflow negative startIndex (reads from end)
  • outputStreamWorkflow - getTailIndex and getStreamChunks getTailIndex returns correct index after stream completes
  • outputStreamWorkflow - getTailIndex and getStreamChunks getTailIndex returns -1 before any chunks are written
  • outputStreamWorkflow - getTailIndex and getStreamChunks getStreamChunks returns same content as reading the stream
  • outputStreamInsideStepWorkflow - getWritable() called inside step functions | wrun_01KQT9CQTF6CET7VPXYYZJ58YP
  • fetchWorkflow | wrun_01KQT9D5YTYGSVA95JD15NPMJD
  • promiseRaceStressTestWorkflow | wrun_01KQT9D92J6X1R2GS426YCX6H4
  • error handling error propagation workflow errors nested function calls preserve message and stack trace
  • error handling error propagation workflow errors cross-file imports preserve message and stack trace
  • error handling error propagation step errors basic step error preserves message and stack trace
  • error handling error propagation step errors cross-file step error preserves message and function names in stack
  • error handling retry behavior regular Error retries until success
  • error handling retry behavior FatalError fails immediately without retries
  • error handling retry behavior RetryableError respects custom retryAfter delay
  • error handling retry behavior maxRetries=0 disables retries
  • error handling catchability FatalError can be caught and detected with FatalError.is()
  • error handling not registered WorkflowNotRegisteredError fails the run when workflow does not exist
  • error handling not registered StepNotRegisteredError fails the step but workflow can catch it
  • error handling not registered StepNotRegisteredError fails the run when not caught in workflow
  • stepDirectCallWorkflow - calling step functions directly outside workflow context
  • hookCleanupTestWorkflow - hook token reuse after workflow completion | wrun_01KQT9GJX6KZMQRTVB3YY732AV
  • concurrent hook token conflict - two workflows cannot use the same hook token simultaneously | wrun_01KQT9H66X8K8KXDJ7SZQN19RF
  • hookDisposeTestWorkflow - hook token reuse after explicit disposal while workflow still running | wrun_01KQT9HSHK14QMC74QW5FM30B1
  • stepFunctionPassingWorkflow - step function references can be passed as arguments (without closure vars) | wrun_01KQT9JBMZ69STX86K9SH5JXGV
  • stepFunctionWithClosureWorkflow - step function with closure variables passed as argument | wrun_01KQT9JKMPMXS70HDDPPKFX79A
  • closureVariableWorkflow - nested step functions with closure variables | wrun_01KQT9JSH4CY5Z3GDP8PX4AVT2
  • spawnWorkflowFromStepWorkflow - spawning a child workflow using start() inside a step | wrun_01KQT9JVCKR8T87VR60HPQDK38
  • health check endpoint (HTTP) - workflow and step endpoints respond to __health query parameter
  • health check (queue-based) - workflow and step endpoints respond to health check messages
  • health check (CLI) - workflow health command reports healthy endpoints
  • pathsAliasWorkflow - TypeScript path aliases resolve correctly | wrun_01KQT9K9MRGS7HCGDMM953C7JP
  • Calculator.calculate - static workflow method using static step methods from another class | wrun_01KQT9KFV40NB89J6KR8979TE7
  • AllInOneService.processNumber - static workflow method using sibling static step methods | wrun_01KQT9KNQF3WAJJPJRM5CW1HRR
  • ChainableService.processWithThis - static step methods using this to reference the class | wrun_01KQT9KWHFZJXEE5AQH4A77FEP
  • thisSerializationWorkflow - step function invoked with .call() and .apply() | wrun_01KQT9M2CHMH0BYN3PR2BP0F0G
  • customSerializationWorkflow - custom class serialization with WORKFLOW_SERIALIZE/WORKFLOW_DESERIALIZE | wrun_01KQT9M9DW1FFZJTZ1EK6GAFV1
  • instanceMethodStepWorkflow - instance methods with "use step" directive | wrun_01KQT9MF9VA03M74KZKW1X79DR
  • crossContextSerdeWorkflow - classes defined in step code are deserializable in workflow context | wrun_01KQT9MT4JXHJ1B28KHHEFAVJA
  • stepFunctionAsStartArgWorkflow - step function reference passed as start() argument | wrun_01KQT9N131E8B7XX1WKFY27VC3
  • cancelRun - cancelling a running workflow | wrun_01KQT9N82NPD2MNX4JZ0XJB74D
  • cancelRun via CLI - cancelling a running workflow | wrun_01KQT9NGGBYJWJ24EK1C77PGGF
  • hookWithSleepWorkflow - hook payloads delivered correctly with concurrent sleep | wrun_01KQT9NVMG06B37F65Q2K8BB33
  • sleepInLoopWorkflow - sleep inside loop with steps actually delays each iteration | wrun_01KQT9PECBET3588MRQ6K1YTQW
  • sleepWithSequentialStepsWorkflow - sequential steps work with concurrent sleep (control) | wrun_01KQT9PSH59CJPZ0F0GBRASGZG
  • importMetaUrlWorkflow - import.meta.url is available in step bundles | wrun_01KQT9Q16NJ9JKET7NF8EXHDMX
  • metadataFromHelperWorkflow - getWorkflowMetadata/getStepMetadata work from module-level helper (#1577) | wrun_01KQT9Q31DDV4W4CRRE0S9009E
  • resilient start: addTenWorkflow completes when run_created returns 500 | wrun_01KQT9Q4VFSGQKQ778FX2935EV

nitro-stable (82 failed):

  • DurableAgent e2e core basic text response
  • DurableAgent e2e core single tool call
  • DurableAgent e2e core multiple sequential tool calls
  • DurableAgent e2e core tool error recovery
  • DurableAgent e2e provider tools provider tool identity preserved across step boundaries
  • DurableAgent e2e provider tools mixed provider and function tools
  • DurableAgent e2e onStepFinish fires constructor + stream callbacks in order with step data
  • DurableAgent e2e onFinish fires constructor + stream callbacks in order with event data
  • DurableAgent e2e instructions string instructions are passed to the model
  • DurableAgent e2e timeout completes within timeout
  • DurableAgent e2e experimental_onStart (GAP) completes but callbacks are not called (GAP)
  • DurableAgent e2e experimental_onStepStart (GAP) completes but callbacks are not called (GAP)
  • DurableAgent e2e experimental_onToolCallStart (GAP) completes but callbacks are not called (GAP)
  • DurableAgent e2e experimental_onToolCallFinish (GAP) completes but callbacks are not called (GAP)
  • DurableAgent e2e prepareCall (GAP) completes but prepareCall is not applied (GAP)
  • DurableAgent e2e prepareStep on constructor agent-level prepareStep is called for each LLM step
  • DurableAgent e2e prepareStep on constructor stream-level prepareStep overrides constructor-level
  • DurableAgent e2e multimodal tool results passes through LanguageModelV3ToolResultOutput from tools
  • DurableAgent e2e tool approval (GAP) completes but needsApproval is not checked (GAP)
  • addTenWorkflow | wrun_01KQT9859XPV1TBT4EF3CCDAX5
  • addTenWorkflow | wrun_01KQT9859XPV1TBT4EF3CCDAX5
  • promiseAllWorkflow | wrun_01KQT98CED49XGE9KW2CVZ0M4P
  • promiseRaceWorkflow | wrun_01KQT98GH4JR263HQVBVZCRT98
  • promiseAnyWorkflow | wrun_01KQT98KJ003DF29CK1SZV1X5S
  • readableStreamWorkflow | wrun_01KQT98PKVR0BAAN5HHQ7RQEZH
  • hookWorkflow | wrun_01KQT990EYMFMJ7J9DNQER0D3B
  • hookWorkflow is not resumable via public webhook endpoint | wrun_01KQT99ARJS6A7E56HG2XPQX77
  • webhookWorkflow | wrun_01KQT99K4NSFFFKNK0CGJ663J1
  • webhook route with invalid token
  • sleepingWorkflow | wrun_01KQT99SNA36GZ29FYJ20YYFD2
  • parallelSleepWorkflow | wrun_01KQT9A5KABT6T9AB2N9TZPGP7
  • nullByteWorkflow | wrun_01KQT9AA3N0H4XB6YPV7NAY2F5
  • workflowAndStepMetadataWorkflow | wrun_01KQT9ABYCE1M8MRKW78EMM9HW
  • outputStreamWorkflow no startIndex (reads all chunks)
  • outputStreamWorkflow positive startIndex (skips first chunk)
  • outputStreamWorkflow negative startIndex (reads from end)
  • outputStreamWorkflow - getTailIndex and getStreamChunks getTailIndex returns correct index after stream completes
  • outputStreamWorkflow - getTailIndex and getStreamChunks getTailIndex returns -1 before any chunks are written
  • outputStreamWorkflow - getTailIndex and getStreamChunks getStreamChunks returns same content as reading the stream
  • outputStreamInsideStepWorkflow - getWritable() called inside step functions | wrun_01KQT9CQTF6CET7VPXYYZJ58YP
  • fetchWorkflow | wrun_01KQT9D5YTYGSVA95JD15NPMJD
  • promiseRaceStressTestWorkflow | wrun_01KQT9D92J6X1R2GS426YCX6H4
  • error handling error propagation workflow errors nested function calls preserve message and stack trace
  • error handling error propagation workflow errors cross-file imports preserve message and stack trace
  • error handling error propagation step errors basic step error preserves message and stack trace
  • error handling error propagation step errors cross-file step error preserves message and function names in stack
  • error handling retry behavior regular Error retries until success
  • error handling retry behavior FatalError fails immediately without retries
  • error handling retry behavior RetryableError respects custom retryAfter delay
  • error handling retry behavior maxRetries=0 disables retries
  • error handling catchability FatalError can be caught and detected with FatalError.is()
  • error handling not registered WorkflowNotRegisteredError fails the run when workflow does not exist
  • error handling not registered StepNotRegisteredError fails the step but workflow can catch it
  • error handling not registered StepNotRegisteredError fails the run when not caught in workflow
  • stepDirectCallWorkflow - calling step functions directly outside workflow context
  • hookCleanupTestWorkflow - hook token reuse after workflow completion | wrun_01KQT9GJX6KZMQRTVB3YY732AV
  • concurrent hook token conflict - two workflows cannot use the same hook token simultaneously | wrun_01KQT9H66X8K8KXDJ7SZQN19RF
  • hookDisposeTestWorkflow - hook token reuse after explicit disposal while workflow still running | wrun_01KQT9HSHK14QMC74QW5FM30B1
  • stepFunctionPassingWorkflow - step function references can be passed as arguments (without closure vars) | wrun_01KQT9JBMZ69STX86K9SH5JXGV
  • stepFunctionWithClosureWorkflow - step function with closure variables passed as argument | wrun_01KQT9JKMPMXS70HDDPPKFX79A
  • closureVariableWorkflow - nested step functions with closure variables | wrun_01KQT9JSH4CY5Z3GDP8PX4AVT2
  • spawnWorkflowFromStepWorkflow - spawning a child workflow using start() inside a step | wrun_01KQT9JVCKR8T87VR60HPQDK38
  • health check endpoint (HTTP) - workflow and step endpoints respond to __health query parameter
  • health check (queue-based) - workflow and step endpoints respond to health check messages
  • health check (CLI) - workflow health command reports healthy endpoints
  • pathsAliasWorkflow - TypeScript path aliases resolve correctly | wrun_01KQT9K9MRGS7HCGDMM953C7JP
  • Calculator.calculate - static workflow method using static step methods from another class | wrun_01KQT9KFV40NB89J6KR8979TE7
  • AllInOneService.processNumber - static workflow method using sibling static step methods | wrun_01KQT9KNQF3WAJJPJRM5CW1HRR
  • ChainableService.processWithThis - static step methods using this to reference the class | wrun_01KQT9KWHFZJXEE5AQH4A77FEP
  • thisSerializationWorkflow - step function invoked with .call() and .apply() | wrun_01KQT9M2CHMH0BYN3PR2BP0F0G
  • customSerializationWorkflow - custom class serialization with WORKFLOW_SERIALIZE/WORKFLOW_DESERIALIZE | wrun_01KQT9M9DW1FFZJTZ1EK6GAFV1
  • instanceMethodStepWorkflow - instance methods with "use step" directive | wrun_01KQT9MF9VA03M74KZKW1X79DR
  • crossContextSerdeWorkflow - classes defined in step code are deserializable in workflow context | wrun_01KQT9MT4JXHJ1B28KHHEFAVJA
  • stepFunctionAsStartArgWorkflow - step function reference passed as start() argument | wrun_01KQT9N131E8B7XX1WKFY27VC3
  • cancelRun - cancelling a running workflow | wrun_01KQT9N82NPD2MNX4JZ0XJB74D
  • cancelRun via CLI - cancelling a running workflow | wrun_01KQT9NGGBYJWJ24EK1C77PGGF
  • hookWithSleepWorkflow - hook payloads delivered correctly with concurrent sleep | wrun_01KQT9NVMG06B37F65Q2K8BB33
  • sleepInLoopWorkflow - sleep inside loop with steps actually delays each iteration | wrun_01KQT9PECBET3588MRQ6K1YTQW
  • sleepWithSequentialStepsWorkflow - sequential steps work with concurrent sleep (control) | wrun_01KQT9PSH59CJPZ0F0GBRASGZG
  • importMetaUrlWorkflow - import.meta.url is available in step bundles | wrun_01KQT9Q16NJ9JKET7NF8EXHDMX
  • metadataFromHelperWorkflow - getWorkflowMetadata/getStepMetadata work from module-level helper (#1577) | wrun_01KQT9Q31DDV4W4CRRE0S9009E
  • resilient start: addTenWorkflow completes when run_created returns 500 | wrun_01KQT9Q4VFSGQKQ778FX2935EV
🌍 Community Worlds (83 failed)

mongodb (11 failed):

  • readableStreamWorkflow | wrun_01KQT98PKVR0BAAN5HHQ7RQEZH
  • hookWorkflow is not resumable via public webhook endpoint | wrun_01KQT99ARJS6A7E56HG2XPQX77
  • webhookWorkflow | wrun_01KQT99K4NSFFFKNK0CGJ663J1
  • outputStreamWorkflow no startIndex (reads all chunks)
  • outputStreamWorkflow negative startIndex (reads from end)
  • outputStreamWorkflow - getTailIndex and getStreamChunks getTailIndex returns correct index after stream completes
  • outputStreamWorkflow - getTailIndex and getStreamChunks getTailIndex returns -1 before any chunks are written
  • outputStreamWorkflow - getTailIndex and getStreamChunks getStreamChunks returns same content as reading the stream
  • outputStreamInsideStepWorkflow - getWritable() called inside step functions | wrun_01KQT9CQTF6CET7VPXYYZJ58YP
  • concurrent hook token conflict - two workflows cannot use the same hook token simultaneously | wrun_01KQT9H66X8K8KXDJ7SZQN19RF
  • resilient start: addTenWorkflow completes when run_created returns 500 | wrun_01KQT9Q4VFSGQKQ778FX2935EV

redis (7 failed):

  • hookWorkflow is not resumable via public webhook endpoint | wrun_01KQT99ARJS6A7E56HG2XPQX77
  • outputStreamWorkflow negative startIndex (reads from end)
  • outputStreamWorkflow - getTailIndex and getStreamChunks getTailIndex returns correct index after stream completes
  • outputStreamWorkflow - getTailIndex and getStreamChunks getTailIndex returns -1 before any chunks are written
  • outputStreamWorkflow - getTailIndex and getStreamChunks getStreamChunks returns same content as reading the stream
  • concurrent hook token conflict - two workflows cannot use the same hook token simultaneously | wrun_01KQT9H66X8K8KXDJ7SZQN19RF
  • resilient start: addTenWorkflow completes when run_created returns 500 | wrun_01KQT9Q4VFSGQKQ778FX2935EV

turso (65 failed):

  • addTenWorkflow | wrun_01KQT9859XPV1TBT4EF3CCDAX5
  • addTenWorkflow | wrun_01KQT9859XPV1TBT4EF3CCDAX5
  • wellKnownAgentWorkflow (.well-known/agent) | wrun_01KQT9AB612XNSYT78E4VZ459D
  • should work with react rendering in step
  • promiseAllWorkflow | wrun_01KQT98CED49XGE9KW2CVZ0M4P
  • promiseRaceWorkflow | wrun_01KQT98GH4JR263HQVBVZCRT98
  • promiseAnyWorkflow | wrun_01KQT98KJ003DF29CK1SZV1X5S
  • importedStepOnlyWorkflow | wrun_01KQT9AQY56R7R3AKA5ZKNECRF
  • readableStreamWorkflow | wrun_01KQT98PKVR0BAAN5HHQ7RQEZH
  • hookWorkflow | wrun_01KQT990EYMFMJ7J9DNQER0D3B
  • hookWorkflow is not resumable via public webhook endpoint | wrun_01KQT99ARJS6A7E56HG2XPQX77
  • webhookWorkflow | wrun_01KQT99K4NSFFFKNK0CGJ663J1
  • sleepingWorkflow | wrun_01KQT99SNA36GZ29FYJ20YYFD2
  • parallelSleepWorkflow | wrun_01KQT9A5KABT6T9AB2N9TZPGP7
  • nullByteWorkflow | wrun_01KQT9AA3N0H4XB6YPV7NAY2F5
  • workflowAndStepMetadataWorkflow | wrun_01KQT9ABYCE1M8MRKW78EMM9HW
  • outputStreamWorkflow no startIndex (reads all chunks)
  • outputStreamWorkflow positive startIndex (skips first chunk)
  • outputStreamWorkflow negative startIndex (reads from end)
  • outputStreamWorkflow - getTailIndex and getStreamChunks getTailIndex returns correct index after stream completes
  • outputStreamWorkflow - getTailIndex and getStreamChunks getTailIndex returns -1 before any chunks are written
  • outputStreamWorkflow - getTailIndex and getStreamChunks getStreamChunks returns same content as reading the stream
  • outputStreamInsideStepWorkflow - getWritable() called inside step functions | wrun_01KQT9CQTF6CET7VPXYYZJ58YP
  • fetchWorkflow | wrun_01KQT9D5YTYGSVA95JD15NPMJD
  • promiseRaceStressTestWorkflow | wrun_01KQT9D92J6X1R2GS426YCX6H4
  • error handling error propagation workflow errors nested function calls preserve message and stack trace
  • error handling error propagation workflow errors cross-file imports preserve message and stack trace
  • error handling error propagation step errors basic step error preserves message and stack trace
  • error handling error propagation step errors cross-file step error preserves message and function names in stack
  • error handling retry behavior regular Error retries until success
  • error handling retry behavior FatalError fails immediately without retries
  • error handling retry behavior RetryableError respects custom retryAfter delay
  • error handling retry behavior maxRetries=0 disables retries
  • error handling catchability FatalError can be caught and detected with FatalError.is()
  • error handling not registered WorkflowNotRegisteredError fails the run when workflow does not exist
  • error handling not registered StepNotRegisteredError fails the step but workflow can catch it
  • error handling not registered StepNotRegisteredError fails the run when not caught in workflow
  • hookCleanupTestWorkflow - hook token reuse after workflow completion | wrun_01KQT9GJX6KZMQRTVB3YY732AV
  • concurrent hook token conflict - two workflows cannot use the same hook token simultaneously | wrun_01KQT9H66X8K8KXDJ7SZQN19RF
  • hookDisposeTestWorkflow - hook token reuse after explicit disposal while workflow still running | wrun_01KQT9HSHK14QMC74QW5FM30B1
  • stepFunctionPassingWorkflow - step function references can be passed as arguments (without closure vars) | wrun_01KQT9JBMZ69STX86K9SH5JXGV
  • stepFunctionWithClosureWorkflow - step function with closure variables passed as argument | wrun_01KQT9JKMPMXS70HDDPPKFX79A
  • closureVariableWorkflow - nested step functions with closure variables | wrun_01KQT9JSH4CY5Z3GDP8PX4AVT2
  • spawnWorkflowFromStepWorkflow - spawning a child workflow using start() inside a step | wrun_01KQT9JVCKR8T87VR60HPQDK38
  • health check (queue-based) - workflow and step endpoints respond to health check messages
  • pathsAliasWorkflow - TypeScript path aliases resolve correctly | wrun_01KQT9K9MRGS7HCGDMM953C7JP
  • Calculator.calculate - static workflow method using static step methods from another class | wrun_01KQT9KFV40NB89J6KR8979TE7
  • AllInOneService.processNumber - static workflow method using sibling static step methods | wrun_01KQT9KNQF3WAJJPJRM5CW1HRR
  • ChainableService.processWithThis - static step methods using this to reference the class | wrun_01KQT9KWHFZJXEE5AQH4A77FEP
  • thisSerializationWorkflow - step function invoked with .call() and .apply() | wrun_01KQT9M2CHMH0BYN3PR2BP0F0G
  • customSerializationWorkflow - custom class serialization with WORKFLOW_SERIALIZE/WORKFLOW_DESERIALIZE | wrun_01KQT9M9DW1FFZJTZ1EK6GAFV1
  • instanceMethodStepWorkflow - instance methods with "use step" directive | wrun_01KQT9MF9VA03M74KZKW1X79DR
  • crossContextSerdeWorkflow - classes defined in step code are deserializable in workflow context | wrun_01KQT9MT4JXHJ1B28KHHEFAVJA
  • stepFunctionAsStartArgWorkflow - step function reference passed as start() argument | wrun_01KQT9N131E8B7XX1WKFY27VC3
  • cancelRun - cancelling a running workflow | wrun_01KQT9N82NPD2MNX4JZ0XJB74D
  • cancelRun via CLI - cancelling a running workflow | wrun_01KQT9NGGBYJWJ24EK1C77PGGF
  • pages router addTenWorkflow via pages router
  • pages router promiseAllWorkflow via pages router
  • pages router sleepingWorkflow via pages router
  • hookWithSleepWorkflow - hook payloads delivered correctly with concurrent sleep | wrun_01KQT9NVMG06B37F65Q2K8BB33
  • sleepInLoopWorkflow - sleep inside loop with steps actually delays each iteration | wrun_01KQT9PECBET3588MRQ6K1YTQW
  • sleepWithSequentialStepsWorkflow - sequential steps work with concurrent sleep (control) | wrun_01KQT9PSH59CJPZ0F0GBRASGZG
  • importMetaUrlWorkflow - import.meta.url is available in step bundles | wrun_01KQT9Q16NJ9JKET7NF8EXHDMX
  • metadataFromHelperWorkflow - getWorkflowMetadata/getStepMetadata work from module-level helper (#1577) | wrun_01KQT9Q31DDV4W4CRRE0S9009E
  • resilient start: addTenWorkflow completes when run_created returns 500 | wrun_01KQT9Q4VFSGQKQ778FX2935EV

Details by Category

✅ ▲ Vercel Production
App Passed Failed Skipped
✅ astro 81 0 7
✅ example 81 0 7
✅ express 81 0 7
✅ fastify 81 0 7
✅ hono 81 0 7
✅ nextjs-turbopack 86 0 2
✅ nextjs-webpack 86 0 2
✅ nitro 81 0 7
✅ nuxt 81 0 7
✅ sveltekit 81 0 7
✅ vite 81 0 7
❌ 💻 Local Development
App Passed Failed Skipped
✅ astro-stable 82 0 6
❌ express-stable 0 82 6
❌ fastify-stable 0 82 6
❌ hono-stable 0 82 6
✅ nextjs-turbopack-canary 69 0 19
✅ nextjs-turbopack-stable 88 0 0
✅ nextjs-webpack-canary 69 0 19
✅ nextjs-webpack-stable 88 0 0
❌ nitro-stable 0 82 6
✅ nuxt-stable 82 0 6
✅ sveltekit-stable 82 0 6
✅ vite-stable 82 0 6
✅ 📦 Local Production
App Passed Failed Skipped
✅ astro-stable 82 0 6
✅ express-stable 82 0 6
✅ fastify-stable 82 0 6
✅ hono-stable 82 0 6
✅ nextjs-turbopack-canary 69 0 19
✅ nextjs-turbopack-stable 88 0 0
✅ nextjs-webpack-canary 69 0 19
✅ nextjs-webpack-stable 88 0 0
✅ nitro-stable 82 0 6
✅ nuxt-stable 82 0 6
✅ sveltekit-stable 82 0 6
✅ vite-stable 82 0 6
✅ 🐘 Local Postgres
App Passed Failed Skipped
✅ astro-stable 82 0 6
✅ express-stable 82 0 6
✅ fastify-stable 82 0 6
✅ hono-stable 82 0 6
✅ nextjs-turbopack-canary 69 0 19
✅ nextjs-turbopack-stable 88 0 0
✅ nextjs-webpack-canary 69 0 19
✅ nextjs-webpack-stable 88 0 0
✅ nitro-stable 82 0 6
✅ nuxt-stable 82 0 6
✅ sveltekit-stable 82 0 6
✅ vite-stable 82 0 6
✅ 🪟 Windows
App Passed Failed Skipped
✅ nextjs-turbopack 88 0 0
❌ 🌍 Community Worlds
App Passed Failed Skipped
✅ mongodb-dev 5 0 0
❌ mongodb 58 11 0
✅ redis-dev 5 0 0
❌ redis 62 7 0
✅ turso-dev 5 0 0
❌ turso 4 65 0
✅ 📋 Other
App Passed Failed Skipped
✅ e2e-local-dev-nest-stable 82 0 6
✅ e2e-local-dev-tanstack-start-stable 82 0 6
✅ e2e-local-postgres-nest-stable 82 0 6
✅ e2e-local-postgres-tanstack-start-stable 82 0 6
✅ e2e-local-prod-nest-stable 82 0 6
✅ e2e-local-prod-tanstack-start-stable 82 0 6

📋 View full workflow run

Some E2E test jobs failed:

  • Vercel Prod: success
  • Local Dev: failure
  • Local Prod: success
  • Local Postgres: success
  • Windows: success

Check the workflow run for details.

Copilot AI reviewed May 4, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Backport of the world-local path-traversal fix from main to stable, adding centralized ID validation and applying it across filesystem-backed storage paths so request-supplied identifiers cannot escape the local workflow data directory.

Changes:

  • Added assertSafeEntityId, UnsafeEntityIdError, and resolveWithinBase in fs.ts to validate IDs and enforce path containment.
  • Threaded ID validation through runs, steps, events, hooks, legacy handling, and streamer storage paths.
  • Added regression tests for filesystem helpers and storage-layer traversal cases, plus a changeset for the patch release.

Reviewed changes

Copilot reviewed 10 out of 10 changed files in this pull request and generated 3 comments.

Show a summary per file
File Description
packages/world-local/src/streamer.ts Validates stream names/run IDs before building stream metadata and chunk paths.
packages/world-local/src/storage/steps-storage.ts Validates stepId and optional caller-supplied runId in step lookups/listing.
packages/world-local/src/storage/runs-storage.ts Validates runId before reading run JSON.
packages/world-local/src/storage/legacy.ts Adds local runId validation and switches legacy writes to contained path resolution.
packages/world-local/src/storage/hooks-storage.ts Validates hookId before reading hook JSON.
packages/world-local/src/storage/events-storage.ts Adds request-ID validation and containment checks for event/lock-path handling.
packages/world-local/src/storage.test.ts Adds storage-level regression tests for traversal attempts.
packages/world-local/src/fs.ts Introduces centralized ID/path safety helpers and applies them in shared FS utilities.
packages/world-local/src/fs.test.ts Adds unit tests for ID validation, error behavior, and base-dir containment.
.changeset/world-local-path-traversal.md Declares the patch release note for @workflow/world-local.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Comment thread packages/world-local/src/fs.ts
Comment on lines +59 to +65
export function assertSafeEntityId(kind: string, value: string): void {
if (
value.length === 0 ||
value.startsWith('.') ||
value.includes('/') ||
value.includes('\\') ||
value.includes('\0')
Comment thread packages/world-local/src/storage/events-storage.ts
Comment on lines +91 to +95
if (
'correlationId' in data &&
typeof data.correlationId === 'string' &&
data.correlationId.length > 0
) {
Comment thread packages/world-local/src/streamer.ts
Comment on lines +123 to +124
assertSafeEntityId('runId', runId);
assertSafeEntityId('streamName', streamName);
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@TooTallNate