1. Koda-core File Mutation Paths Expose Symlink Escape and TOCTOU Race Conditions in Sandbox Isolation
A critical security review has identified overlapping vulnerabilities in the file mutation paths of koda-core, specifically within `koda-core/src/tools/file_tools.rs`. The flaw stems from a fundamental mismatch between logical path validation and actual filesystem operations: code relies on `safe_resolve_path` for acce...