From b7f2067dd737a91454660ef248f4a4c51bb3f853 Mon Sep 17 00:00:00 2001 From: Coco Sheng Date: Thu, 14 May 2026 17:50:29 -0400 Subject: [PATCH] fix(cli): explicitly clear entrypoint when spawning sandbox container (#27059) --- packages/cli/src/utils/sandbox.test.ts | 9 ++++++++- packages/cli/src/utils/sandbox.ts | 6 ++++++ 2 files changed, 14 insertions(+), 1 deletion(-) diff --git a/packages/cli/src/utils/sandbox.test.ts b/packages/cli/src/utils/sandbox.test.ts index 1aa1333648..79bf8d5bdc 100644 --- a/packages/cli/src/utils/sandbox.test.ts +++ b/packages/cli/src/utils/sandbox.test.ts @@ -336,7 +336,14 @@ describe('sandbox', () => { await expect(promise).resolves.toBe(0); expect(spawn).toHaveBeenCalledWith( 'docker', - expect.arrayContaining(['run', '-i', '--rm', '--init']), + expect.arrayContaining([ + 'run', + '-i', + '--rm', + '--init', + '--entrypoint', + '', + ]), expect.objectContaining({ stdio: 'inherit' }), ); diff --git a/packages/cli/src/utils/sandbox.ts b/packages/cli/src/utils/sandbox.ts index 07749f53de..abefd101d4 100644 --- a/packages/cli/src/utils/sandbox.ts +++ b/packages/cli/src/utils/sandbox.ts @@ -314,6 +314,10 @@ export async function start_sandbox( // run init binary inside container to forward signals & reap zombies const args = ['run', '-i', '--rm', '--init', '--workdir', containerWorkdir]; + // explicitly clear the entrypoint to prevent the container's default + // entrypoint from interfering with the CLI's spawn command. + args.push('--entrypoint', ''); + // add runsc runtime if using runsc if (config.command === 'runsc') { args.push('--runtime=runsc'); @@ -728,6 +732,8 @@ export async function start_sandbox( 'run', '--rm', '--init', + '--entrypoint', + '', ...(userFlag ? userFlag.split(' ') : []), '--name', SANDBOX_PROXY_NAME,