I'm Bonk, and I've done a quick review of your PR.

This PR adds a containers snapshot API: snapshotDirectory() to create snapshots and snapshots option in start() to restore them, backed by Docker volumes and the Docker archive API for the local dev implementation.

I posted 3 inline review comments on PR #6337, ranked by severity:

1. [MEDIUM] Snapshot restore path nesting (container-client.c++:1054) — The archive read from /mnt in the temp container includes a mnt/ prefix in the tar, which when extracted to the parent directory could introduce an extra directory level. Asked for confirmation that the round-trip works correctly.

2. [LOW] Unbounded readAllBytes() (container-client.c++:577) — The binary response is fully buffered in memory before the 4 GiB size check runs.

3. [LOW] Unvalidated snapshot id during restore (container-client.c++:1039) — Deserialized snapshot IDs are used in Docker volume names without format validation.

The overall design is sound — the serialization, compat flag gating, capnp schema additions, and test coverage all look good. The DirectorySnapshot JSG binding pattern with JSG_SERIALIZABLE, visitForMemoryInfo, and prototype properties follows existing conventions correctly.

github run

The generated output of @cloudflare/workers-types has been changed by this PR. If this is intentional, run just generate-types to update the snapshot. Alternatively, you can download the full generated types:

diff -r types/generated-snapshot/latest/index.d.ts bazel-bin/types/definitions/latest/index.d.ts
3757a3758,3763
> interface DirectorySnapshot {
>   get id(): string;
>   get size(): number;
>   get dir(): string;
>   get name(): string | undefined;
> }
3773a3780
>   snapshots?: DirectorySnapshot[];
diff -r types/generated-snapshot/latest/index.ts bazel-bin/types/definitions/latest/index.ts
3763a3764,3769
> export interface DirectorySnapshot {
>   get id(): string;
>   get size(): number;
>   get dir(): string;
>   get name(): string | undefined;
> }
3779a3786
>   snapshots?: DirectorySnapshot[];

Codecov Report

❌ Patch coverage is 0% with 286 lines in your changes missing coverage. Please review.
✅ Project coverage is 70.64%. Comparing base (bc0bc2a) to head (509974a).
⚠️ Report is 2 commits behind head on main.

@@            Coverage Diff             @@
##             main    #6337      +/-   ##
==========================================
- Coverage   70.80%   70.64%   -0.16%     
==========================================
  Files         420      420              
  Lines      112299   112606     +307     
  Branches    18417    18459      +42     
==========================================
+ Hits        79513    79552      +39     
- Misses      21789    22056     +267     
- Partials    10997    10998       +1     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

/bonk review

Review posted on PR #6337. Here's a summary of what was posted:

Review body (top-level comment, review ID 3963586130):

• 4 ranked findings with overall assessment that the design is sound

3 inline comments:

1. [MEDIUM] container-client.c++:265 — dockerApiBinaryRequest has maxResponseSize = kj::maxValue default, making it easy to read unbounded Docker responses. Suggested changing the default to MAX_JSON_RESPONSE_SIZE (16 MiB) since callers needing the 1 GiB tar limit already pass it explicitly.

2. [MEDIUM] container-client.c++:277 — cleanupSnapshotVolumes constructs the JSON filter by string interpolation without escaping. Safe in practice due to URI-encoding of containerName, but noted as a defensive coding concern.

3. [LOW] container.c++:44 — Deserialized size not validated against the max limit or double precision boundary. Minor since legitimate values are bounded.

1 reply to kentonv's comment:

• Confirmed gpanders's reply is correct: JSG_SERIALIZABLE requires JSG_RESOURCE_TYPE (uses jsgSuper typedef), cannot be used with JSG_STRUCT. Cited the JSG README, ser.h, and the 17 existing examples in the codebase.

github run