[artifact] add artifact inspection after download (#26608)

This adds artifact inspection after download to detect any issues with the content fetched. Currently this means checking for any symlinks within the artifact that resolve outside the task or allocation directories. On platforms where lockdown is available (some Linux) this inspection is not performed. The inspection can be disabled with the DisableArtifactInspection option. A dedicated option for disabling this behavior allows the DisableFilesystemIsolation option to be enabled but still have artifacts inspected after download.
2026-01-01 16:05:42 +03:00 · 2025-08-27 10:37:34 -07:00
parent e5eb125264
commit fd1e40537c
14 changed files with 347 additions and 0 deletions
--- a/website/content/docs/configuration/client.mdx
+++ b/website/content/docs/configuration/client.mdx
@@ -488,6 +488,11 @@ refer to the [drivers documentation](/nomad/docs/job-declare/task-driver).
  of files that will be decompressed before triggering an error and cancelling the
  operation. Set to `0` to not enforce a limit.

+- `disable_artifact_inspection` `(bool: false)` - Specifies whether to disable
+  artifact inspection for sandbox escapes. If the platform supports filesystem
+  isolation, and it is not disabled, artifact inspection will not be performed
+  regardless of this value.
+
 - `disable_filesystem_isolation` `(bool: false)` - Specifies whether filesystem
  isolation should be disabled for artifact downloads. Applies only to systems
  where filesystem isolation via [landlock] is possible (Linux kernel 5.13+).