diff --git a/site/src/routes/repl/local/[file].js b/site/src/routes/repl/local/[...file].js
similarity index 63%
rename from site/src/routes/repl/local/[file].js
rename to site/src/routes/repl/local/[...file].js
index 20d9f509cb..7bd1c6a82c 100644
--- a/site/src/routes/repl/local/[file].js
+++ b/site/src/routes/repl/local/[...file].js
@@ -1,12 +1,13 @@
 import { createReadStream } from 'fs';
 
 export function get(req, res) {
-	if (process.env.NODE_ENV !== 'development' || !/^[a-z.]+$/.test(req.params.file)) {
+	const path = req.params.file.join('/');
+	if (process.env.NODE_ENV !== 'development' || ('/' + path).includes('/.')) {
 		res.writeHead(403);
 		res.end();
 		return;
 	}
-	createReadStream('../' + req.params.file)
+	createReadStream('../' + path)
 		.on('error', () => {
 			res.writeHead(403);
 			res.end();