mirror of
https://github.com/containers/bootc.git
synced 2026-02-05 15:45:53 +01:00
eecf5ae15c
Add a lint that warns when /run or /tmp contain any content. These directories are tmpfs at runtime and should be empty in container images. Common causes of content in these directories include: - podman/buildah's RUN --mount leaving directory stubs - Build tools leaving temporary files This is particularly important for bootc with composefs because content in these directories can cause digest mismatches between build-time (mounted filesystem) and install-time (OCI tar layers) views, leading to sealed boot failures. The lint uses the walk API with noxdev() to automatically skip mount points, and filters out content injected by container runtimes (.containerenv, secrets, packages). Assisted-by: OpenCode (Opus 4.5) Signed-off-by: Colin Walters <walters@verbum.org>