This logic was added back when we were trying to defend against being tricked into walking into an attacker-controlled directory, but this was all ripped out in commit ce6226e ("Root::mkdir_all: remove all mkdir+open verification logic") so maybe we should also remove this validation to match other Root subcommands?
This logic was added back when we were trying to defend against being tricked into walking into an attacker-controlled directory, but this was all ripped out in commit ce6226e ("Root::mkdir_all: remove all mkdir+open verification logic") so maybe we should also remove this validation to match other
Rootsubcommands?