gristlabs · paulfitz · Jan 30, 2026 · Jan 27, 2026 · Jan 27, 2026 · Jan 27, 2026
diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
@@ -132,6 +132,7 @@ jobs:
           make setup
           cd ../..
           yarn run test:server -g 'ActiveDoc.useQuerySet|Sandbox'
+          yarn run test:nbrowser -g 'Importer.*should.show.correct.preview'
         env:
           MOCHA_WEBDRIVER_HEADLESS: 1
           GRIST_SANDBOX_FLAVOR: pyodide

diff --git a/app/server/lib/SandboxPyodide.ts b/app/server/lib/SandboxPyodide.ts
@@ -99,7 +99,7 @@ export function getPyodideSettings(options: ISandboxOptions): PyodideSettings {
   );
 
   // If the sandbox is being used to do an import, we'll need read access
-  // to that too. We drop read access before running user code.
+  // to that too. We will not drop read access to this.
   const importDir = options.importDir ? fs.realpathSync(path.resolve(options.importDir)) : undefined;
   const importAllow = importDir ? [`--allow-read=${importDir}`] : [];
 

diff --git a/sandbox/pyodide/pipe.js b/sandbox/pyodide/pipe.js
@@ -73,8 +73,16 @@ class GristPipe {
   async mountImportDirIfNeeded() {
     if (process.env.IMPORTDIR) {
       this.log("Setting up import from", process.env.IMPORTDIR);
-      // Could mount directly, but instead copy so we can drop read perms early.
-      await this.copyFiles(process.env.IMPORTDIR, "/import_src", "/import");
+      // All imports for a given doc live in the same root directory.
+      // Copying import files in and dropping read permissions isn't
+      // workable in that case, since the same sandbox is re-used for
+      // subsequent imports. The files would only be copied once on
+      // startup, meaning the files for these later imports won't be
+      // available to Pyodide, resulting in errors.
+      await this.pyodide.FS.mkdir("/import");
+      await this.pyodide.FS.mount(this.pyodide.FS.filesystems.NODEFS, {
+        root: process.env.IMPORTDIR,
+      }, "/import");
     }
   }
 
@@ -146,11 +154,22 @@ async function main() {
 
     if (isDeno) {
       // Revoke write permissions now that packages are loaded.
-      // Revoke read access as well, why not.
       // eslint-disable-next-line no-undef
       await Deno.permissions.revoke({ name: "write" });
-      // eslint-disable-next-line no-undef
-      await Deno.permissions.revoke({ name: "read" });
+
+      // Read access has been limited quite a lot already.
+      // We need to keep access to the import directory, but can shed
+      // everything else. See --allow-read in SandboxPyodide.ts
+      const readDir = fs.realpathSync(__dirname);
+      const gristDir = fs.realpathSync(path.join(__dirname, "..", "grist"));
+      const reqFile = fs.realpathSync(path.join(__dirname, "..", "requirements.txt"));
 const txt = fs.readFileSync(path.join(__dirname, "..", "requirements.txt"), "utf8"); 
 const txt = fs.readFileSync(path.join(__dirname, "..", "requirements.txt"), "utf8"); 
+      for (const dir of [readDir, gristDir, reqFile]) {
+        // eslint-disable-next-line no-undef
+        await Deno.permissions.revoke({
+          name: "read",
+          path: dir
+        });
+      }
       console.error("[pyodide sandbox]", "revoked read and write permissions.");
     }
 

diff --git a/test/nbrowser/Importer.ts b/test/nbrowser/Importer.ts
@@ -369,7 +369,7 @@ describe("Importer", function() {
         "Africa", "Eastern Africa", "Burundi",
         "Africa", "Eastern Africa", "Comoros"]);
     await driver.get(`${docUrl}`);
-    await gu.acceptAlert();
+    await gu.acceptAlert({ ignore: true });
     await gu.waitForDocToLoad();
   });