feat(cli/init): validate instance name at CLI level #87
Description
Summary
When running the init command with --runtime podman, the instance name (e.g. passed as the workspace name) is later used to construct paths like <storageDir>/instances/<name> and Podman image/container identifiers. Values like ../foo or a/b could escape the instances directory or create invalid Podman names.
Validation should be added at the CLI level (in the init command) to reject names that:
- Contain path separators (
/or\) - Contain traversal segments (
..) - Are otherwise invalid as Podman/container identifiers
Only safe identifiers (e.g. alphanumerics, hyphens, underscores) should be accepted.
References
- PR: feat(runtime/podman): implement podman runtime with hardcoded image #83
- Review comment: feat(runtime/podman): implement podman runtime with hardcoded image #83 (comment)
/cc @feloy