@nathapp/nax 0.46.0 → 0.46.1

package/CHANGELOG.md

@@ -5,6 +5,20 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+## [0.46.1] - 2026-03-17
+
+### Fixed
+- **BUG-074:** `working-tree-clean` precheck now allows 12 nax runtime files to be dirty without blocking. Includes fix for `--porcelain` trim bug that corrupted leading status chars.
+- **BUG-074:** `nax init` now adds complete gitignore entries for all nax runtime files (was missing: status.json, plan/, acp-sessions.json, interactions/, progress.txt, acceptance-refined.json, .nax-pids, .nax-wt/, ~/).
+- **BUG-074:** `checkGitignoreCoversNax` warning now checks 6 critical patterns (was only 3).
+- **BUG-075:** `acceptance-refined.json` now written to featureDir instead of workdir root.
+- **BUG-076:** HOME env is now validated before passing to spawned agents — if not an absolute path (e.g. unexpanded "~"), falls back to `os.homedir()` with a warning log. Prevents literal "~/" directory creation in repo.
+- **BUG-076:** New `checkHomeEnvValid()` precheck warning fires when HOME is unset or not absolute.
+
+### Tests
+- New tests in `test/unit/precheck/checks-git.test.ts` (188 lines) for working-tree-clean allowlist.
+- New tests in `test/unit/agents/claude/execution.test.ts` (79 lines) for HOME sanitization.
+
 ## [0.46.0] - 2026-03-16
 
 ### Fixed

package/dist/nax.js

@@ -3458,7 +3458,46 @@ var init_complete = __esm(() => {
   };
 });
 
-// src/agents/claude/cost.ts
+// src/agents/cost/pricing.ts
+var COST_RATES, MODEL_PRICING;
+var init_pricing = __esm(() => {
+  COST_RATES = {
+    fast: {
+      inputPer1M: 0.8,
+      outputPer1M: 4
+    },
+    balanced: {
+      inputPer1M: 3,
+      outputPer1M: 15
+    },
+    powerful: {
+      inputPer1M: 15,
+      outputPer1M: 75
+    }
+  };
+  MODEL_PRICING = {
+    sonnet: { input: 3, output: 15 },
+    haiku: { input: 0.8, output: 4, cacheRead: 0.1, cacheCreation: 1 },
+    opus: { input: 15, output: 75 },
+    "claude-sonnet-4": { input: 3, output: 15 },
+    "claude-sonnet-4-5": { input: 3, output: 15 },
+    "claude-sonnet-4-6": { input: 3, output: 15 },
+    "claude-haiku": { input: 0.8, output: 4, cacheRead: 0.1, cacheCreation: 1 },
+    "claude-haiku-4-5": { input: 0.8, output: 4, cacheRead: 0.1, cacheCreation: 1 },
+    "claude-opus": { input: 15, output: 75 },
+    "claude-opus-4": { input: 15, output: 75 },
+    "claude-opus-4-6": { input: 15, output: 75 },
+    "gpt-4.1": { input: 10, output: 30 },
+    "gpt-4": { input: 30, output: 60 },
+    "gpt-3.5-turbo": { input: 0.5, output: 1.5 },
+    "gemini-2.5-pro": { input: 0.075, output: 0.3 },
+    "gemini-2-pro": { input: 0.075, output: 0.3 },
+    codex: { input: 0.02, output: 0.06 },
+    "code-davinci-002": { input: 0.02, output: 0.06 }
+  };
+});
+
+// src/agents/cost/parse.ts
 function parseTokenUsage(output) {
   try {
     const jsonMatch = output.match(/\{[^}]*"usage"\s*:\s*\{[^}]*"input_tokens"\s*:\s*(\d+)[^}]*"output_tokens"\s*:\s*(\d+)[^}]*\}[^}]*\}/);
@@ -3502,6 +3541,8 @@ function parseTokenUsage(output) {
   }
   return null;
 }
+
+// src/agents/cost/calculate.ts
 function estimateCost(modelTier, inputTokens, outputTokens, customRates) {
   const rates = customRates ?? COST_RATES[modelTier];
   const inputCost = inputTokens / 1e6 * rates.inputPer1M;
@@ -3543,25 +3584,45 @@ function formatCostWithConfidence(estimate) {
       return `~${formattedCost} (duration-based)`;
   }
 }
-var COST_RATES;
+function estimateCostFromTokenUsage(usage, model) {
+  const pricing = MODEL_PRICING[model];
+  if (!pricing) {
+    const fallbackInputRate = 3 / 1e6;
+    const fallbackOutputRate = 15 / 1e6;
+    const inputCost2 = (usage.input_tokens ?? 0) * fallbackInputRate;
+    const outputCost2 = (usage.output_tokens ?? 0) * fallbackOutputRate;
+    const cacheReadCost2 = (usage.cache_read_input_tokens ?? 0) * (0.5 / 1e6);
+    const cacheCreationCost2 = (usage.cache_creation_input_tokens ?? 0) * (2 / 1e6);
+    return inputCost2 + outputCost2 + cacheReadCost2 + cacheCreationCost2;
+  }
+  const inputRate = pricing.input / 1e6;
+  const outputRate = pricing.output / 1e6;
+  const cacheReadRate = (pricing.cacheRead ?? pricing.input * 0.1) / 1e6;
+  const cacheCreationRate = (pricing.cacheCreation ?? pricing.input * 0.33) / 1e6;
+  const inputCost = (usage.input_tokens ?? 0) * inputRate;
+  const outputCost = (usage.output_tokens ?? 0) * outputRate;
+  const cacheReadCost = (usage.cache_read_input_tokens ?? 0) * cacheReadRate;
+  const cacheCreationCost = (usage.cache_creation_input_tokens ?? 0) * cacheCreationRate;
+  return inputCost + outputCost + cacheReadCost + cacheCreationCost;
+}
+var init_calculate = __esm(() => {
+  init_pricing();
+});
+
+// src/agents/cost/index.ts
 var init_cost = __esm(() => {
-  COST_RATES = {
-    fast: {
-      inputPer1M: 0.8,
-      outputPer1M: 4
-    },
-    balanced: {
-      inputPer1M: 3,
-      outputPer1M: 15
-    },
-    powerful: {
-      inputPer1M: 15,
-      outputPer1M: 75
-    }
-  };
+  init_pricing();
+  init_calculate();
+});
+
+// src/agents/claude/cost.ts
+var init_cost2 = __esm(() => {
+  init_cost();
 });
 
 // src/agents/claude/execution.ts
+import { homedir } from "os";
+import { isAbsolute } from "path";
 function buildCommand(binary, options) {
   const model = options.modelDef.model;
   const { skipPermissions } = resolvePermissions(options.config, options.pipelineStage ?? "run");
@@ -3570,12 +3631,19 @@ function buildCommand(binary, options) {
 }
 function buildAllowedEnv(options) {
   const allowed = {};
-  const essentialVars = ["PATH", "HOME", "TMPDIR", "NODE_ENV", "USER", "LOGNAME"];
+  const essentialVars = ["PATH", "TMPDIR", "NODE_ENV", "USER", "LOGNAME"];
   for (const varName of essentialVars) {
     if (process.env[varName]) {
       allowed[varName] = process.env[varName];
     }
   }
+  const rawHome = process.env.HOME ?? "";
+  const safeHome = rawHome && isAbsolute(rawHome) ? rawHome : homedir();
+  if (rawHome !== safeHome) {
+    const logger = getLogger();
+    logger.warn("env", `HOME env is not absolute ("${rawHome}"), falling back to os.homedir(): ${safeHome}`);
+  }
+  allowed.HOME = safeHome;
   const apiKeyVars = ["ANTHROPIC_API_KEY", "OPENAI_API_KEY"];
   for (const varName of apiKeyVars) {
     if (process.env[varName]) {
@@ -3665,7 +3733,7 @@ async function executeOnce(binary, options, pidRegistry) {
 var MAX_AGENT_OUTPUT_CHARS = 5000, MAX_AGENT_STDERR_CHARS = 1000, SIGKILL_GRACE_PERIOD_MS = 5000, _runOnceDeps;
 var init_execution = __esm(() => {
   init_logger2();
-  init_cost();
+  init_cost2();
   _runOnceDeps = {
     killProc(proc, signal) {
       proc.kill(signal);
@@ -18671,7 +18739,7 @@ Respond with ONLY the TypeScript test code (no markdown code fences, no explanat
     testable: c.testable,
     storyId: c.storyId
   })), null, 2);
-  await _generatorPRDDeps.writeFile(join2(options.workdir, "acceptance-refined.json"), refinedJsonContent);
+  await _generatorPRDDeps.writeFile(join2(options.featureDir, "acceptance-refined.json"), refinedJsonContent);
   return { testCode, criteria };
 }
 function buildStrategyInstructions(strategy, framework) {
@@ -19047,13 +19115,21 @@ function parseAcpxJsonOutput(rawOutput) {
 }
 
 // src/agents/acp/spawn-client.ts
+import { homedir as homedir2 } from "os";
+import { isAbsolute as isAbsolute2 } from "path";
 function buildAllowedEnv2(extraEnv) {
   const allowed = {};
-  const essentialVars = ["PATH", "HOME", "TMPDIR", "NODE_ENV", "USER", "LOGNAME"];
+  const essentialVars = ["PATH", "TMPDIR", "NODE_ENV", "USER", "LOGNAME"];
   for (const varName of essentialVars) {
     if (process.env[varName])
       allowed[varName] = process.env[varName];
   }
+  const rawHome = process.env.HOME ?? "";
+  const safeHome = rawHome && isAbsolute2(rawHome) ? rawHome : homedir2();
+  if (rawHome !== safeHome) {
+    getSafeLogger()?.warn("env", `HOME env is not absolute ("${rawHome}"), falling back to os.homedir(): ${safeHome}`);
+  }
+  allowed.HOME = safeHome;
   const apiKeyVars = ["ANTHROPIC_API_KEY", "OPENAI_API_KEY", "GEMINI_API_KEY", "GOOGLE_API_KEY", "CLAUDE_API_KEY"];
   for (const varName of apiKeyVars) {
     if (process.env[varName])
@@ -19270,44 +19346,8 @@ var init_spawn_client = __esm(() => {
 });
 
 // src/agents/acp/cost.ts
-function estimateCostFromTokenUsage(usage, model) {
-  const pricing = MODEL_PRICING[model];
-  if (!pricing) {
-    const fallbackInputRate = 3 / 1e6;
-    const fallbackOutputRate = 15 / 1e6;
-    const inputCost2 = (usage.input_tokens ?? 0) * fallbackInputRate;
-    const outputCost2 = (usage.output_tokens ?? 0) * fallbackOutputRate;
-    const cacheReadCost2 = (usage.cache_read_input_tokens ?? 0) * (0.5 / 1e6);
-    const cacheCreationCost2 = (usage.cache_creation_input_tokens ?? 0) * (2 / 1e6);
-    return inputCost2 + outputCost2 + cacheReadCost2 + cacheCreationCost2;
-  }
-  const inputRate = pricing.input / 1e6;
-  const outputRate = pricing.output / 1e6;
-  const cacheReadRate = (pricing.cacheRead ?? pricing.input * 0.1) / 1e6;
-  const cacheCreationRate = (pricing.cacheCreation ?? pricing.input * 0.33) / 1e6;
-  const inputCost = (usage.input_tokens ?? 0) * inputRate;
-  const outputCost = (usage.output_tokens ?? 0) * outputRate;
-  const cacheReadCost = (usage.cache_read_input_tokens ?? 0) * cacheReadRate;
-  const cacheCreationCost = (usage.cache_creation_input_tokens ?? 0) * cacheCreationRate;
-  return inputCost + outputCost + cacheReadCost + cacheCreationCost;
-}
-var MODEL_PRICING;
-var init_cost2 = __esm(() => {
-  MODEL_PRICING = {
-    "claude-sonnet-4": { input: 3, output: 15 },
-    "claude-sonnet-4-5": { input: 3, output: 15 },
-    "claude-haiku": { input: 0.8, output: 4, cacheRead: 0.1, cacheCreation: 1 },
-    "claude-haiku-4-5": { input: 0.8, output: 4, cacheRead: 0.1, cacheCreation: 1 },
-    "claude-opus": { input: 15, output: 75 },
-    "claude-opus-4": { input: 15, output: 75 },
-    "gpt-4.1": { input: 10, output: 30 },
-    "gpt-4": { input: 30, output: 60 },
-    "gpt-3.5-turbo": { input: 0.5, output: 1.5 },
-    "gemini-2.5-pro": { input: 0.075, output: 0.3 },
-    "gemini-2-pro": { input: 0.075, output: 0.3 },
-    codex: { input: 0.02, output: 0.06 },
-    "code-davinci-002": { input: 0.02, output: 0.06 }
-  };
+var init_cost3 = __esm(() => {
+  init_cost();
 });
 
 // src/agents/acp/adapter.ts
@@ -19828,7 +19868,7 @@ var init_adapter2 = __esm(() => {
   init_decompose();
   init_spawn_client();
   init_types2();
-  init_cost2();
+  init_cost3();
   INTERACTION_TIMEOUT_MS = 5 * 60 * 1000;
   AGENT_REGISTRY = {
     claude: {
@@ -20427,7 +20467,7 @@ var init_chain = __esm(() => {
 
 // src/utils/path-security.ts
 import { realpathSync } from "fs";
-import { dirname, isAbsolute, join as join5, normalize, resolve } from "path";
+import { dirname, isAbsolute as isAbsolute3, join as join5, normalize, resolve } from "path";
 function safeRealpath(p) {
   try {
     return realpathSync(p);
@@ -20445,7 +20485,7 @@ function validateModulePath(modulePath, allowedRoots) {
     return { valid: false, error: "Module path is empty" };
   }
   const normalizedRoots = allowedRoots.map((r) => safeRealpath(resolve(r)));
-  if (isAbsolute(modulePath)) {
+  if (isAbsolute3(modulePath)) {
     const absoluteTarget = safeRealpath(normalize(modulePath));
     const isWithin = normalizedRoots.some((root) => {
       return absoluteTarget.startsWith(`${root}/`) || absoluteTarget === root;
@@ -20736,7 +20776,7 @@ function isPlainObject2(value) {
 
 // src/config/path-security.ts
 import { existsSync as existsSync4, lstatSync, realpathSync as realpathSync2 } from "fs";
-import { isAbsolute as isAbsolute2, normalize as normalize2, resolve as resolve3 } from "path";
+import { isAbsolute as isAbsolute4, normalize as normalize2, resolve as resolve3 } from "path";
 function validateDirectory(dirPath, baseDir) {
   const resolved = resolve3(dirPath);
   if (!existsSync4(resolved)) {
@@ -20768,7 +20808,7 @@ function validateDirectory(dirPath, baseDir) {
 function isWithinDirectory(targetPath, basePath) {
   const normalizedTarget = normalize2(targetPath);
   const normalizedBase = normalize2(basePath);
-  if (!isAbsolute2(normalizedTarget) || !isAbsolute2(normalizedBase)) {
+  if (!isAbsolute4(normalizedTarget) || !isAbsolute4(normalizedBase)) {
     return false;
   }
   const baseWithSlash = normalizedBase.endsWith("/") ? normalizedBase : `${normalizedBase}/`;
@@ -20804,10 +20844,10 @@ var MAX_DIRECTORY_DEPTH = 10;
 var init_path_security2 = () => {};
 
 // src/config/paths.ts
-import { homedir } from "os";
+import { homedir as homedir3 } from "os";
 import { join as join6, resolve as resolve4 } from "path";
 function globalConfigDir() {
-  return join6(homedir(), ".nax");
+  return join6(homedir3(), ".nax");
 }
 var init_paths = () => {};
 
@@ -22138,7 +22178,7 @@ var package_default;
 var init_package = __esm(() => {
   package_default = {
     name: "@nathapp/nax",
-    version: "0.46.0",
+    version: "0.46.1",
     description: "AI Coding Agent Orchestrator \u2014 loops until done",
     type: "module",
     bin: {
@@ -22211,8 +22251,8 @@ var init_version = __esm(() => {
   NAX_VERSION = package_default.version;
   NAX_COMMIT = (() => {
     try {
-      if (/^[0-9a-f]{6,10}$/.test("6a485b9"))
-        return "6a485b9";
+      if (/^[0-9a-f]{6,10}$/.test("405c88a"))
+        return "405c88a";
     } catch {}
     try {
       const result = Bun.spawnSync(["git", "rev-parse", "--short", "HEAD"], {
@@ -24018,6 +24058,7 @@ ${stderr}` };
         const result = await _acceptanceSetupDeps.generate(ctx.prd.userStories, refinedCriteria, {
           featureName: ctx.prd.feature,
           workdir: ctx.workdir,
+          featureDir: ctx.featureDir,
           codebaseContext: "",
           modelTier: ctx.config.acceptance.model ?? "fast",
           modelDef: resolveModel(ctx.config.models[ctx.config.acceptance.model ?? "fast"]),
@@ -25752,11 +25793,13 @@ __export(exports_agents, {
   getAgentVersion: () => getAgentVersion,
   getAgent: () => getAgent,
   formatCostWithConfidence: () => formatCostWithConfidence,
+  estimateCostFromTokenUsage: () => estimateCostFromTokenUsage,
   estimateCostFromOutput: () => estimateCostFromOutput,
   estimateCostByDuration: () => estimateCostByDuration,
   estimateCost: () => estimateCost,
   describeAgentCapabilities: () => describeAgentCapabilities,
   checkAgentHealth: () => checkAgentHealth,
+  MODEL_PRICING: () => MODEL_PRICING,
   CompleteError: () => CompleteError,
   ClaudeCodeAdapter: () => ClaudeCodeAdapter,
   COST_RATES: () => COST_RATES
@@ -30069,12 +30112,15 @@ async function checkWorkingTreeClean(workdir) {
   });
   const output = await new Response(proc.stdout).text();
   const exitCode = await proc.exited;
-  const passed = exitCode === 0 && output.trim() === "";
+  const lines = output.trim() === "" ? [] : output.split(`
+`).filter(Boolean);
+  const nonNaxDirtyFiles = lines.filter((line) => !NAX_RUNTIME_PATTERNS.some((pattern) => pattern.test(line)));
+  const passed = exitCode === 0 && nonNaxDirtyFiles.length === 0;
   return {
     name: "working-tree-clean",
     tier: "blocker",
     passed,
-    message: passed ? "Working tree is clean" : "Uncommitted changes detected"
+    message: passed ? "Working tree is clean" : `Uncommitted changes detected: ${nonNaxDirtyFiles.map((l) => l.slice(3)).join(", ")}`
   };
 }
 async function checkGitUserConfigured(workdir) {
@@ -30099,7 +30145,23 @@ async function checkGitUserConfigured(workdir) {
     message: passed ? "Git user is configured" : !hasName && !hasEmail ? "Git user.name and user.email not configured" : !hasName ? "Git user.name not configured" : "Git user.email not configured"
   };
 }
-var init_checks_git = () => {};
+var NAX_RUNTIME_PATTERNS;
+var init_checks_git = __esm(() => {
+  NAX_RUNTIME_PATTERNS = [
+    /^.{2} nax\.lock$/,
+    /^.{2} nax\/metrics\.json$/,
+    /^.{2} nax\/features\/[^/]+\/status\.json$/,
+    /^.{2} nax\/features\/[^/]+\/runs\//,
+    /^.{2} nax\/features\/[^/]+\/plan\//,
+    /^.{2} nax\/features\/[^/]+\/acp-sessions\.json$/,
+    /^.{2} nax\/features\/[^/]+\/interactions\//,
+    /^.{2} nax\/features\/[^/]+\/progress\.txt$/,
+    /^.{2} nax\/features\/[^/]+\/acceptance-refined\.json$/,
+    /^.{2} \.nax-verifier-verdict\.json$/,
+    /^.{2} \.nax-pids$/,
+    /^.{2} \.nax-wt\//
+  ];
+});
 
 // src/precheck/checks-config.ts
 import { existsSync as existsSync26, statSync as statSync3 } from "fs";
@@ -30360,6 +30422,7 @@ var init_checks_blockers = __esm(() => {
 
 // src/precheck/checks-warnings.ts
 import { existsSync as existsSync28 } from "fs";
+import { isAbsolute as isAbsolute6 } from "path";
 async function checkClaudeMdExists(workdir) {
   const claudeMdPath = `${workdir}/CLAUDE.md`;
   const passed = existsSync28(claudeMdPath);
@@ -30453,7 +30516,14 @@ async function checkGitignoreCoversNax(workdir) {
   }
   const file2 = Bun.file(gitignorePath);
   const content = await file2.text();
-  const patterns = ["nax.lock", "runs/", "test/tmp/"];
+  const patterns = [
+    "nax.lock",
+    "nax/**/runs/",
+    "nax/metrics.json",
+    "nax/features/*/status.json",
+    ".nax-pids",
+    ".nax-wt/"
+  ];
   const missing = patterns.filter((pattern) => !content.includes(pattern));
   const passed = missing.length === 0;
   return {
@@ -30482,6 +30552,16 @@ async function checkPromptOverrideFiles(config2, workdir) {
   }
   return checks3;
 }
+async function checkHomeEnvValid() {
+  const home = process.env.HOME ?? "";
+  const passed = home !== "" && isAbsolute6(home);
+  return {
+    name: "home-env-valid",
+    tier: "warning",
+    passed,
+    message: passed ? `HOME env is valid: ${home}` : home === "" ? "HOME env is not set \u2014 agent may write files to unexpected locations" : `HOME env is not an absolute path ("${home}") \u2014 may cause literal "~" directories in repo`
+  };
+}
 var init_checks_warnings = () => {};
 
 // src/precheck/checks-agents.ts
@@ -30662,6 +30742,7 @@ function getEnvironmentWarnings(config2, workdir) {
     () => checkDiskSpace(),
     () => checkOptionalCommands(config2, workdir),
     () => checkGitignoreCoversNax(workdir),
+    () => checkHomeEnvValid(),
     () => checkPromptOverrideFiles(config2, workdir),
     () => checkMultiAgentHealth()
   ];
@@ -32902,12 +32983,12 @@ var init_parallel_executor = __esm(() => {
 
 // src/pipeline/subscribers/events-writer.ts
 import { appendFile as appendFile2, mkdir } from "fs/promises";
-import { homedir as homedir5 } from "os";
+import { homedir as homedir7 } from "os";
 import { basename as basename3, join as join40 } from "path";
 function wireEventsWriter(bus, feature, runId, workdir) {
   const logger = getSafeLogger();
   const project = basename3(workdir);
-  const eventsDir = join40(homedir5(), ".nax", "events", project);
+  const eventsDir = join40(homedir7(), ".nax", "events", project);
   const eventsFile = join40(eventsDir, "events.jsonl");
   let dirReady = false;
   const write = (line) => {
@@ -33067,12 +33148,12 @@ var init_interaction2 = __esm(() => {
 
 // src/pipeline/subscribers/registry.ts
 import { mkdir as mkdir2, writeFile } from "fs/promises";
-import { homedir as homedir6 } from "os";
+import { homedir as homedir8 } from "os";
 import { basename as basename4, join as join41 } from "path";
 function wireRegistry(bus, feature, runId, workdir) {
   const logger = getSafeLogger();
   const project = basename4(workdir);
-  const runDir = join41(homedir6(), ".nax", "runs", `${project}-${feature}-${runId}`);
+  const runDir = join41(homedir8(), ".nax", "runs", `${project}-${feature}-${runId}`);
   const metaFile = join41(runDir, "meta.json");
   const unsub = bus.on("run:started", (_ev) => {
     (async () => {
@@ -65472,7 +65553,7 @@ var require_jsx_dev_runtime = __commonJS((exports, module) => {
 // bin/nax.ts
 init_source();
 import { existsSync as existsSync32, mkdirSync as mkdirSync6 } from "fs";
-import { homedir as homedir8 } from "os";
+import { homedir as homedir10 } from "os";
 import { join as join43 } from "path";
 
 // node_modules/commander/esm.mjs
@@ -68628,10 +68709,10 @@ import { join as join32 } from "path";
 // src/commands/logs-reader.ts
 import { existsSync as existsSync23, readdirSync as readdirSync6 } from "fs";
 import { readdir as readdir3 } from "fs/promises";
-import { homedir as homedir3 } from "os";
+import { homedir as homedir5 } from "os";
 import { join as join31 } from "path";
 var _deps6 = {
-  getRunsDir: () => process.env.NAX_RUNS_DIR ?? join31(homedir3(), ".nax", "runs")
+  getRunsDir: () => process.env.NAX_RUNS_DIR ?? join31(homedir5(), ".nax", "runs")
 };
 async function resolveRunFileFromRegistry(runId) {
   const runsDir = _deps6.getRunsDir();
@@ -68957,11 +69038,11 @@ async function precheckCommand(options) {
 // src/commands/runs.ts
 init_source();
 import { readdir as readdir4 } from "fs/promises";
-import { homedir as homedir4 } from "os";
+import { homedir as homedir6 } from "os";
 import { join as join35 } from "path";
 var DEFAULT_LIMIT = 20;
 var _deps8 = {
-  getRunsDir: () => join35(homedir4(), ".nax", "runs")
+  getRunsDir: () => join35(homedir6(), ".nax", "runs")
 };
 function formatDuration3(ms) {
   if (ms <= 0)
@@ -77155,7 +77236,7 @@ program2.command("run").description("Run the orchestration loop for a feature").
     config2.autoMode.defaultAgent = options.agent;
   }
   config2.execution.maxIterations = Number.parseInt(options.maxIterations, 10);
-  const globalNaxDir = join43(homedir8(), ".nax");
+  const globalNaxDir = join43(homedir10(), ".nax");
   const hooks = await loadHooksConfig(naxDir, globalNaxDir);
   const eventEmitter = new PipelineEventEmitter;
   let tuiInstance;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@nathapp/nax",
-  "version": "0.46.0",
+  "version": "0.46.1",
   "description": "AI Coding Agent Orchestrator — loops until done",
   "type": "module",
   "bin": {

package/src/acceptance/generator.ts

@@ -124,7 +124,7 @@ Respond with ONLY the TypeScript test code (no markdown code fences, no explanat
     2,
   );
 
-  await _generatorPRDDeps.writeFile(join(options.workdir, "acceptance-refined.json"), refinedJsonContent);
+  await _generatorPRDDeps.writeFile(join(options.featureDir, "acceptance-refined.json"), refinedJsonContent);
 
   return { testCode, criteria };
 }

package/src/acceptance/types.ts

@@ -80,6 +80,8 @@ export interface GenerateFromPRDOptions {
   featureName: string;
   /** Working directory for context scanning */
   workdir: string;
+  /** Feature directory where acceptance-refined.json is written */
+  featureDir: string;
   /** Codebase context (file tree, dependencies, test patterns) */
   codebaseContext: string;
   /** Model tier to use for test generation */

package/src/agents/acp/cost.ts

@@ -1,79 +1,9 @@
 /**
- * ACP cost estimation from token usage.
+ * ACP cost estimation — re-exports from the shared src/agents/cost/ module.
  *
- * Stub — implementation in ACP-006.
+ * Kept for zero-breakage backward compatibility.
+ * Import directly from src/agents/cost for new code.
  */
 
-/**
- * Token usage data from an ACP session's cumulative_token_usage field.
- */
-export interface SessionTokenUsage {
-  input_tokens: number;
-  output_tokens: number;
-  /** Cache read tokens — billed at a reduced rate */
-  cache_read_input_tokens?: number;
-  /** Cache creation tokens — billed at a higher creation rate */
-  cache_creation_input_tokens?: number;
-}
-
-/**
- * Per-model pricing in $/1M tokens: { input, output }
- */
-const MODEL_PRICING: Record<string, { input: number; output: number; cacheRead?: number; cacheCreation?: number }> = {
-  // Anthropic Claude models
-  "claude-sonnet-4": { input: 3, output: 15 },
-  "claude-sonnet-4-5": { input: 3, output: 15 },
-  "claude-haiku": { input: 0.8, output: 4.0, cacheRead: 0.1, cacheCreation: 1.0 },
-  "claude-haiku-4-5": { input: 0.8, output: 4.0, cacheRead: 0.1, cacheCreation: 1.0 },
-  "claude-opus": { input: 15, output: 75 },
-  "claude-opus-4": { input: 15, output: 75 },
-
-  // OpenAI models
-  "gpt-4.1": { input: 10, output: 30 },
-  "gpt-4": { input: 30, output: 60 },
-  "gpt-3.5-turbo": { input: 0.5, output: 1.5 },
-
-  // Google Gemini
-  "gemini-2.5-pro": { input: 0.075, output: 0.3 },
-  "gemini-2-pro": { input: 0.075, output: 0.3 },
-
-  // OpenAI Codex
-  codex: { input: 0.02, output: 0.06 },
-  "code-davinci-002": { input: 0.02, output: 0.06 },
-};
-
-/**
- * Calculate USD cost from ACP session token counts using per-model pricing.
- *
- * @param usage - Token counts from cumulative_token_usage
- * @param model - Model identifier (e.g., 'claude-sonnet-4', 'claude-haiku-4-5')
- * @returns Estimated cost in USD
- */
-export function estimateCostFromTokenUsage(usage: SessionTokenUsage, model: string): number {
-  const pricing = MODEL_PRICING[model];
-
-  if (!pricing) {
-    // Fallback: use average rate for unknown models
-    // Average of known rates: ~$5/1M tokens combined
-    const fallbackInputRate = 3 / 1_000_000;
-    const fallbackOutputRate = 15 / 1_000_000;
-    const inputCost = (usage.input_tokens ?? 0) * fallbackInputRate;
-    const outputCost = (usage.output_tokens ?? 0) * fallbackOutputRate;
-    const cacheReadCost = (usage.cache_read_input_tokens ?? 0) * (0.5 / 1_000_000);
-    const cacheCreationCost = (usage.cache_creation_input_tokens ?? 0) * (2 / 1_000_000);
-    return inputCost + outputCost + cacheReadCost + cacheCreationCost;
-  }
-
-  // Convert $/1M rates to $/token
-  const inputRate = pricing.input / 1_000_000;
-  const outputRate = pricing.output / 1_000_000;
-  const cacheReadRate = (pricing.cacheRead ?? pricing.input * 0.1) / 1_000_000;
-  const cacheCreationRate = (pricing.cacheCreation ?? pricing.input * 0.33) / 1_000_000;
-
-  const inputCost = (usage.input_tokens ?? 0) * inputRate;
-  const outputCost = (usage.output_tokens ?? 0) * outputRate;
-  const cacheReadCost = (usage.cache_read_input_tokens ?? 0) * cacheReadRate;
-  const cacheCreationCost = (usage.cache_creation_input_tokens ?? 0) * cacheCreationRate;
-
-  return inputCost + outputCost + cacheReadCost + cacheCreationCost;
-}
+export type { SessionTokenUsage } from "../cost";
+export { estimateCostFromTokenUsage } from "../cost";

package/src/agents/acp/spawn-client.ts

@@ -12,6 +12,8 @@
  *   acpx <agent> cancel                             → session.cancelActivePrompt()
  */
 
+import { homedir } from "node:os";
+import { isAbsolute } from "node:path";
 import type { PidRegistry } from "../../execution/pid-registry";
 import { getSafeLogger } from "../../logger";
 import type { AcpClient, AcpSession, AcpSessionResponse } from "./adapter";
@@ -60,11 +62,19 @@ export const _spawnClientDeps = {
 function buildAllowedEnv(extraEnv?: Record<string, string | undefined>): Record<string, string | undefined> {
   const allowed: Record<string, string | undefined> = {};
 
-  const essentialVars = ["PATH", "HOME", "TMPDIR", "NODE_ENV", "USER", "LOGNAME"];
+  const essentialVars = ["PATH", "TMPDIR", "NODE_ENV", "USER", "LOGNAME"];
   for (const varName of essentialVars) {
     if (process.env[varName]) allowed[varName] = process.env[varName];
   }
 
+  // Sanitize HOME — must be absolute path. Unexpanded "~" causes literal ~/dir in cwd.
+  const rawHome = process.env.HOME ?? "";
+  const safeHome = rawHome && isAbsolute(rawHome) ? rawHome : homedir();
+  if (rawHome !== safeHome) {
+    getSafeLogger()?.warn("env", `HOME env is not absolute ("${rawHome}"), falling back to os.homedir(): ${safeHome}`);
+  }
+  allowed.HOME = safeHome;
+
   const apiKeyVars = ["ANTHROPIC_API_KEY", "OPENAI_API_KEY", "GEMINI_API_KEY", "GOOGLE_API_KEY", "CLAUDE_API_KEY"];
   for (const varName of apiKeyVars) {
     if (process.env[varName]) allowed[varName] = process.env[varName];