From 7601c6f0cd878d1c8b504c54681284d1a5d47cda Mon Sep 17 00:00:00 2001
From: Victor LABORIE <vlaborie@leni.tech>
Date: Mon, 17 Jun 2024 09:17:55 +0200
Subject: [PATCH] fix(config): Ignore config files with double dot in it (#696)

---
 config/config.go | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/config/config.go b/config/config.go
index a666c63fe..2aae2088a 100644
--- a/config/config.go
+++ b/config/config.go
@@ -176,6 +176,10 @@ func LoadConfiguration(configPath string) (*Config, error) {
 			if err != nil {
 				return fmt.Errorf("error walking path %s: %w", path, err)
 			}
+			if strings.Contains(path, "..") {
+				logr.Warnf("[config.LoadConfiguration] Ignoring configuration from %s", path)
+				return nil
+			}
 			logr.Infof("[config.LoadConfiguration] Reading configuration from %s", path)
 			data, err := os.ReadFile(path)
 			if err != nil {