Get rid of sandboxed fmtserver.

The current sandbox is excess complexity, needs manual steps to setup,
and doesn't isolate different users of a formatting server from each other.
5 files changed
tree: 11e267afbc76f8e9ab8e98bf91f4779bc76b823d
  1. cmd/
  2. gerrit/
  3. .gitignore
  4. api.go
  5. CONTRIBUTING
  6. go.mod
  7. go.sum
  8. LICENSE
  9. README.md
  10. server.go
README.md

FMTSERVER

This is a style verifier intended to be used with the Gerrit checks plugin.

TODO

  • handle file types (symlink) and deletions

  • more formatters: clang-format, typescript, jsformat, ... ?

  • isolate each formatter to run with a separate gvisor/docker container.

  • tests: the only way to test this reliably is to spin up a gerrit server, and create changes against the server.

SECURITY

This currently runs the formatters without sandboxing. Critical bugs in formatters can be escalated to obtain the OAuth2 token used for authentication.

DISCLAIMER

This is not an official Google product