@pacaf/wizard-ux 3.0.1 → 3.0.3

package/dist/index.html

@@ -28,7 +28,7 @@
       }
       @keyframes spin { to { transform: rotate(360deg); } }
     </style>
-    <script type="module" crossorigin src="./assets/index-BVelUveV.js"></script>
+    <script type="module" crossorigin src="/assets/index-zSgX3W7E.js"></script>
   </head>
   <body>
     <div id="root"><div id="boot"><div class="ring"></div></div></div>

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@pacaf/wizard-ux",
-  "version": "3.0.1",
+  "version": "3.0.3",
   "private": false,
   "type": "module",
   "description": "Browser-based setup wizard for Power Apps Code Apps (parallel to @pacaf/wizard CLI).",
@@ -38,7 +38,7 @@
     "react-dom": "^19.0.0",
     "react-resizable-panels": "^2.1.7",
     "react-router-dom": "^7.1.0",
-    "@pacaf/wizard": "3.0.1"
+    "@pacaf/wizard": "3.1.0"
   },
   "devDependencies": {
     "@types/react": "^19.0.0",

package/server/routes/onepassword.mjs

@@ -7,6 +7,11 @@ const STEP3_PATH = resolve(__dirname, '..', 'steps', '03-app-registration.mjs');
 const step3 = await import(pathToFileURL(STEP3_PATH).href);
 
 export default async function onepasswordRoutes(fastify, opts) {
+  fastify.get('/vaults', async () => {
+    const vaults = step3.listOpVaults();
+    return { vaults };
+  });
+
   fastify.get('/items', async (req) => {
     const vault = String(req.query.vault || '').trim();
     if (!vault) return { items: [] };

package/server/steps/03-app-registration.mjs

@@ -65,7 +65,7 @@ function listOpItems(vaultName) {
 }
 
 // Exported for the API route to call
-export { listOpItems };
+export { listOpItems, listOpVaults };
 
 function createOpVault(log, name) {
   const result = runSafe('op', ['vault', 'create', name, '--format=json']);
@@ -145,10 +145,6 @@ export default {
     const hasOp = hasCommand('op') || state.HAS_OP === true;
     const currentAuthType = state.AUTH_PROFILE_TYPE || 'user';
 
-    // ── 1Password vault/item discovery ──
-    const vaults = hasOp ? listOpVaults() : [];
-    const defaultVault = state.OP_VAULT || vaults[0]?.value || '';
-
     return [
       {
         id: 'AUTH_PROFILE_TYPE',
@@ -170,23 +166,24 @@ export default {
         help: hasOp
           ? 'Store environment URLs and credentials as 1Password references. Secrets never touch disk.'
           : '1Password CLI was not detected. Leave this off unless op is available in your shell.',
-        defaultValue: hasOp && state.AUTH_MODE === '1password',
+        defaultValue: state.USE_1PASSWORD === true || (hasOp && state.AUTH_MODE === '1password'),
       },
       {
         id: 'OP_VAULT',
         type: 'select',
         label: '1Password vault',
-        help: vaults.length > 0
-          ? 'Select an existing vault, create a new one, or enter a name manually.'
-          : 'Could not discover vaults (1Password may be locked or offline). If you just authenticated to 1Password, refresh this page to reload the vault list. Otherwise, enter a vault name manually or create a new one.',
-        defaultValue: state.OP_VAULT && vaults.some((v) => v.value === state.OP_VAULT)
-          ? state.OP_VAULT
-          : (vaults[0]?.value || ENTER_MANUALLY),
+        help: 'Select an existing vault, create a new one, or enter a name manually. Vaults load when 1Password is enabled — if the list is empty, ensure the op CLI is signed in (`op signin`) and toggle 1Password off and on to retry.',
+        defaultValue: state.OP_VAULT || ENTER_MANUALLY,
         options: [
-          ...vaults,
           { value: ENTER_MANUALLY, label: 'Enter vault name manually' },
           { value: CREATE_NEW_VAULT, label: '+ Create new vault' },
         ],
+        dynamicOptions: {
+          endpoint: '/api/1password/vaults',
+          param: 'enabled',
+          dependsOn: 'USE_1PASSWORD',
+          responseKey: 'vaults',
+        },
         hideIf: { id: 'USE_1PASSWORD', equals: false },
       },
       {

package/server/steps/05-publisher.mjs

@@ -1,5 +1,7 @@
 // Step 5 — Solution & Publisher (solution-first, publisher auto-resolved).
-import { dirname, resolve } from 'node:path';
+import { dirname, resolve, join } from 'node:path';
+import { writeFileSync, unlinkSync } from 'node:fs';
+import { tmpdir } from 'node:os';
 import { fileURLToPath, pathToFileURL } from 'node:url';
 import { dvGet, dvPost, hasUsableSecret, setSecret, clearSecret } from '../lib/dataverse-bridge.mjs';
 
@@ -12,6 +14,21 @@ const PAC_TARGET = await import(pathToFileURL(resolve(ROOT_DIR, 'wizard', 'lib',
 const CREATE_NEW = '__create_new__';
 const PASTE_URL = '__paste_url__';
 
+/**
+ * Run `pac env fetch` using --xmlFile instead of --xml to avoid XmlException
+ * on macOS PAC CLI 2.2.1+ where inline FetchXML attribute quotes get corrupted.
+ * Writes the XML to a temp file, runs the command, and cleans up.
+ */
+function pacEnvFetchXml(pac, fetchXml, opts) {
+  const tmp = join(tmpdir(), `pac-fetch-${Date.now()}-${Math.random().toString(36).slice(2, 8)}.xml`);
+  try {
+    writeFileSync(tmp, fetchXml, 'utf-8');
+    return SHELL.runSafe(pac, ['env', 'fetch', '--xmlFile', tmp], opts);
+  } finally {
+    try { unlinkSync(tmp); } catch { /* best effort cleanup */ }
+  }
+}
+
 // ─── Helpers ─────────────────────────────────────────────────────────
 
 /** Get the Maker Portal solutions deep-link via `pac org who`. */
@@ -22,7 +39,7 @@ function getMakerPortalLink() {
     if (whoOut) {
       const whoInfo = PAC_TARGET.parsePacOrgWho(whoOut);
       if (whoInfo.environmentId) {
-        return `https://make.powerapps.com/e/${whoInfo.environmentId}/solutions`;
+        return `https://make.powerapps.com/environments/${whoInfo.environmentId}/solutions`;
       }
     }
   } catch { /* fall through */ }
@@ -36,58 +53,104 @@ function extractSolutionIdFromUrl(url) {
 }
 
 /**
- * Use `pac env fetch` to get solution + publisher by solution ID.
- * Works with both user auth and SPN — uses whatever PAC profile is active.
- * Returns { solutionid, uniquename, friendlyname, version, publisherid, prefix, publisherFriendlyName, publisherUniqueName }
+ * Parse PAC CLI column-aligned tabular output into an array of row objects.
+ * Finds the header line (containing known column keywords), determines column
+ * boundaries from header token positions, and slices each subsequent data line
+ * by those boundaries. Handles multi-word values (e.g. "Climb Tracker") and
+ * aliased columns (e.g. "pub.customizationprefix").
+ */
+function parsePacTabularRows(output, headerHints) {
+  const allLines = output.split(/\r?\n/);
+  const hints = headerHints || ['uniquename', 'solutionid', 'friendlyname'];
+
+  // Find the header line — first line containing at least one of the hints.
+  let headerIdx = -1;
+  for (let i = 0; i < allLines.length; i++) {
+    const lower = allLines[i].toLowerCase();
+    if (hints.some((h) => lower.includes(h))) {
+      headerIdx = i;
+      break;
+    }
+  }
+  if (headerIdx < 0) return [];
+
+  const headerLine = allLines[headerIdx];
+
+  // Extract column names and their start positions from the header.
+  const cols = [];
+  const re = /\S+/g;
+  let m;
+  while ((m = re.exec(headerLine)) !== null) {
+    cols.push({ name: m[0].toLowerCase(), start: m.index });
+  }
+
+  // Parse each data line after the header.
+  const rows = [];
+  for (let i = headerIdx + 1; i < allLines.length; i++) {
+    const line = allLines[i];
+    if (!line.trim()) continue;
+    if (/^(Connected|Microsoft|Version:|Online|Feedback)/i.test(line.trim())) continue;
+    const row = {};
+    for (let c = 0; c < cols.length; c++) {
+      const start = cols[c].start;
+      const end = c < cols.length - 1 ? cols[c + 1].start : line.length;
+      row[cols[c].name] = (start < line.length ? line.slice(start, end) : '').trim();
+    }
+    if (Object.values(row).some((v) => v)) rows.push(row);
+  }
+  return rows;
+}
+
+/**
+ * Fetch solution + publisher by solution ID using a single joined FetchXML.
+ * Uses <link-entity> to include publisher columns directly, avoiding the
+ * two-query approach that broke when publisherid rendered as a display name.
  */
 function fetchSolutionViaPac(solutionId) {
   const pac = SHELL.pacPath();
   if (!pac) return null;
-  // Use separate queries: one for solution, one for publisher (avoids tabular parse issues)
-  const solXml = `<fetch><entity name="solution"><attribute name="uniquename"/><attribute name="friendlyname"/><attribute name="version"/><attribute name="solutionid"/><attribute name="publisherid"/><filter><condition attribute="solutionid" operator="eq" value="${solutionId}"/></filter></entity></fetch>`;
-  const solOutput = SHELL.runSafe(pac, ['env', 'fetch', '--xml', solXml]);
-  if (!solOutput) return null;
-
-  // Parse the tabular output for the solution
-  const solId = extractGuid(solOutput, solutionId) || solutionId;
-  const version = extractPattern(solOutput, /(\d+\.\d+\.\d+\.\d+)/);
-
-  // The publisherid in the solution output is a GUID (the lookup value)
-  const guids = [...solOutput.matchAll(/[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/gi)]
-    .map((m) => m[0].toLowerCase());
-  // publisherid is the GUID that is NOT the solutionid
-  const pubGuid = guids.find((g) => g !== solId) || '';
-
-  // Extract unique name: it's a single PascalCase/camelCase token (no spaces, not a GUID, not a version)
-  const tokens = extractDataTokens(solOutput);
-  const uniquename = tokens.find((t) => !isGuid(t) && !/^\d+\.\d+/.test(t) && t.length > 1) || '';
-
-  // For friendlyname, we need to be smarter. The text between known tokens.
-  // Approach: remove GUIDs, version, uniquename, and "Connected..." lines → what's left is the friendly name
-  const friendlyname = extractFriendlyName(solOutput, [solId, pubGuid, version, uniquename]);
-
-  // Now fetch the publisher details using the pubGuid
-  let prefix = '';
-  let publisherFriendlyName = '';
-  let publisherUniqueName = '';
-  let choiceValuePrefix = '';
-
-  if (pubGuid) {
-    const pubXml = `<fetch><entity name="publisher"><attribute name="customizationprefix"/><attribute name="friendlyname"/><attribute name="uniquename"/><attribute name="publisherid"/><attribute name="customizationoptionvalueprefix"/><filter><condition attribute="publisherid" operator="eq" value="${pubGuid}"/></filter></entity></fetch>`;
-    const pubOutput = SHELL.runSafe(pac, ['env', 'fetch', '--xml', pubXml]);
-    if (pubOutput) {
-      const pubTokens = extractDataTokens(pubOutput);
-      // customizationprefix is a short lowercase string
-      prefix = pubTokens.find((t) => /^[a-z]{2,8}$/.test(t) && !['and', 'for', 'the'].includes(t)) || '';
-      // customizationoptionvalueprefix is a numeric string
-      choiceValuePrefix = pubTokens.find((t) => /^\d{3,6}$/.test(t)) || '';
-      // publisher uniquename is a single token (not GUID, not prefix, not choiceValuePrefix)
-      publisherUniqueName = pubTokens.find((t) =>
-        !isGuid(t) && t !== prefix && t !== choiceValuePrefix && t.length > 1 && !/^\d+$/.test(t),
-      ) || '';
-      publisherFriendlyName = extractFriendlyName(pubOutput, [pubGuid, prefix, publisherUniqueName, choiceValuePrefix]);
-    }
-  }
+
+  const xml = [
+    '<fetch>',
+    '  <entity name="solution">',
+    '    <attribute name="uniquename"/>',
+    '    <attribute name="friendlyname"/>',
+    '    <attribute name="version"/>',
+    '    <attribute name="solutionid"/>',
+    '    <link-entity name="publisher" from="publisherid" to="publisherid" link-type="inner" alias="pub">',
+    '      <attribute name="customizationprefix"/>',
+    '      <attribute name="uniquename"/>',
+    '      <attribute name="friendlyname"/>',
+    '      <attribute name="publisherid"/>',
+    '      <attribute name="customizationoptionvalueprefix"/>',
+    '    </link-entity>',
+    '    <filter>',
+    `      <condition attribute="solutionid" operator="eq" value="${solutionId}"/>`,
+    '    </filter>',
+    '  </entity>',
+    '</fetch>',
+  ].join('\n');
+
+  const output = pacEnvFetchXml(pac, xml);
+  if (!output) return null;
+
+  const rows = parsePacTabularRows(output, [
+    'uniquename', 'friendlyname', 'solutionid', 'pub.customizationprefix',
+  ]);
+  if (rows.length === 0) return null;
+
+  const row = rows[0];
+
+  // Column names come back lowercased. Aliased columns use "pub.<attr>".
+  const solId = (row['solutionid'] || solutionId).toLowerCase();
+  const uniquename = row['uniquename'] || '';
+  const friendlyname = row['friendlyname'] || '';
+  const version = row['version'] || '';
+  const prefix = row['pub.customizationprefix'] || '';
+  const pubGuid = row['pub.publisherid'] || '';
+  const publisherUniqueName = row['pub.uniquename'] || '';
+  const publisherFriendlyName = row['pub.friendlyname'] || '';
+  const choiceValuePrefix = row['pub.customizationoptionvalueprefix'] || '';
 
   return {
     solutionid: solId,
@@ -103,130 +166,59 @@ function fetchSolutionViaPac(solutionId) {
 }
 
 /**
- * List unmanaged solutions via `pac env fetch`. Returns basic solution list.
- * Each entry has { solutionid, label }.
+ * List unmanaged solutions via a single `pac env fetch` with a publisher join.
+ * Returns [{ value: solutionid, label: "Display Name (prefix_)" }].
+ * Uses parsePacTabularRows to handle multi-word names correctly and avoids
+ * the N+1 per-solution fetch loop.
  */
 function listSolutionSummariesViaPac() {
   const pac = SHELL.pacPath();
   if (!pac) return [];
-  const xml = `<fetch><entity name="solution"><attribute name="uniquename"/><attribute name="friendlyname"/><attribute name="solutionid"/><link-entity name="publisher" from="publisherid" to="publisherid" link-type="inner" alias="pub"><attribute name="customizationprefix"/></link-entity><filter><condition attribute="ismanaged" operator="eq" value="0"/><condition attribute="isvisible" operator="eq" value="1"/></filter><order attribute="friendlyname"/></entity></fetch>`;
-  const output = SHELL.runSafe(pac, ['env', 'fetch', '--xml', xml], { timeout: 15000 });
+
+  const xml = [
+    '<fetch>',
+    '  <entity name="solution">',
+    '    <attribute name="uniquename"/>',
+    '    <attribute name="friendlyname"/>',
+    '    <attribute name="solutionid"/>',
+    '    <link-entity name="publisher" from="publisherid" to="publisherid" link-type="inner" alias="pub">',
+    '      <attribute name="customizationprefix"/>',
+    '      <attribute name="friendlyname"/>',
+    '    </link-entity>',
+    '    <filter>',
+    '      <condition attribute="ismanaged" operator="eq" value="0"/>',
+    '      <condition attribute="isvisible" operator="eq" value="1"/>',
+    '    </filter>',
+    '    <order attribute="friendlyname"/>',
+    '  </entity>',
+    '</fetch>',
+  ].join('\n');
+
+  const output = pacEnvFetchXml(pac, xml, { timeout: 15000 });
   if (!output) return [];
 
-  // Parse each data row. The output has: uniquename, friendlyname, solutionid, pub.customizationprefix
-  // Each row has a GUID. Group by GUID.
-  const guids = [...output.matchAll(/([0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12})/gi)]
-    .map((m) => m[1].toLowerCase());
-  const uniqueGuids = [...new Set(guids)];
+  const rows = parsePacTabularRows(output, [
+    'uniquename', 'friendlyname', 'solutionid', 'pub.customizationprefix',
+  ]);
 
-  // Filter out well-known system solution GUIDs
+  // Filter out system solutions.
   const systemGuids = new Set([
     'fd140aaf-4df4-11dd-bd17-0019b9312238', // Default Solution
     '00000001-0000-0000-0001-00000000009b', // Common Data Services
   ]);
-
-  // For each solution GUID, we need the display label.
-  // Since parsing multi-row tabular output is fragile, use a simple approach:
-  // split output into segments by GUID, extract the text around each.
-  const lines = output.split(/\r?\n/).filter((l) =>
-    l.trim() &&
-    !l.startsWith('Connected') &&
-    !l.startsWith('Microsoft') &&
-    !l.startsWith('Version:') &&
-    !l.startsWith('Online') &&
-    !l.startsWith('Feedback'),
-  );
-
-  // The header line contains column names. Skip it.
-  const headerKeywords = ['uniquename', 'friendlyname', 'solutionid'];
-  const dataLines = lines.filter((l) => !headerKeywords.some((kw) => l.toLowerCase().includes(kw)));
-  const fullData = dataLines.join(' ');
-
-  const results = [];
-  for (const guid of uniqueGuids) {
-    if (systemGuids.has(guid)) continue;
-
-    // Find the text around this GUID to extract a label
-    const idx = fullData.indexOf(guid);
-    if (idx < 0) continue;
-
-    // Look for a short lowercase prefix near the GUID (the pub.customizationprefix)
-    const nearby = fullData.slice(Math.max(0, idx - 200), idx + 200);
-    const prefixMatch = nearby.match(/\b([a-z]{2,8})\b/);
-    const prefix = prefixMatch ? prefixMatch[1] : '?';
-
-    // The friendlyname is harder to extract from the concatenated data.
-    // We'll use the GUID as the value and fetch full details on selection.
-    results.push({ value: guid, label: `Solution ${guid.slice(0, 8)}… (${prefix}_)` });
-  }
-
-  // If we got results but labels are poor, try fetching details for each
-  // (only if there are few solutions)
-  if (results.length > 0 && results.length <= 20) {
-    for (const r of results) {
-      const details = fetchSolutionViaPac(r.value);
-      if (details) {
-        const name = details.friendlyname || details.uniquename || r.value;
-        r.label = `${name} (${details.prefix || '?'}_)`;
-      }
-    }
-  }
-
-  return results.filter((r) => r.label && !r.label.includes('Default Solution') && !r.label.includes('Common Data'));
-}
-
-// ─── Parse utilities ─────────────────────────────────────────────────
-
-function isGuid(s) {
-  return /^[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}$/i.test(s);
-}
-
-function extractGuid(text, hint) {
-  const guids = [...text.matchAll(/[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/gi)]
-    .map((m) => m[0].toLowerCase());
-  if (hint) return guids.find((g) => g === hint.toLowerCase()) || guids[0] || '';
-  return guids[0] || '';
-}
-
-function extractPattern(text, re) {
-  const m = text.match(re);
-  return m ? m[1] : '';
-}
-
-/** Extract data tokens from PAC CLI output (skip header/banner lines). */
-function extractDataTokens(output) {
-  const lines = output.split(/\r?\n/).filter((l) =>
-    l.trim() &&
-    !l.startsWith('Connected') &&
-    !l.startsWith('Microsoft') &&
-    !l.startsWith('Version:') &&
-    !l.startsWith('Online') &&
-    !l.startsWith('Feedback'),
-  );
-  const headerKeywords = ['uniquename', 'friendlyname', 'solutionid', 'publisherid', 'customizationprefix', 'version'];
-  const dataLines = lines.filter((l) => !headerKeywords.some((kw) => l.toLowerCase().includes(kw)));
-  return dataLines.join(' ').split(/\s+/).filter(Boolean);
-}
-
-/** Extract the friendly name from PAC output by removing known tokens. */
-function extractFriendlyName(output, knownTokens) {
-  const lines = output.split(/\r?\n/).filter((l) =>
-    l.trim() &&
-    !l.startsWith('Connected') &&
-    !l.startsWith('Microsoft') &&
-    !l.startsWith('Version:') &&
-    !l.startsWith('Online') &&
-    !l.startsWith('Feedback'),
-  );
-  const headerKeywords = ['uniquename', 'friendlyname', 'solutionid', 'publisherid', 'customizationprefix', 'version', 'customizationoptionvalueprefix'];
-  const dataLines = lines.filter((l) => !headerKeywords.some((kw) => l.toLowerCase().includes(kw)));
-  let text = dataLines.join(' ');
-  // Remove known tokens (GUIDs, version, uniquename, prefix)
-  for (const token of knownTokens) {
-    if (token) text = text.replace(new RegExp(token.replace(/[.*+?^${}()|[\]\\]/g, '\\$&'), 'gi'), '');
-  }
-  // Clean up multiple spaces and trim
-  return text.replace(/\s+/g, ' ').trim();
+  const systemNames = ['default', 'common data services default solution'];
+
+  return rows
+    .filter((r) => {
+      const id = (r['solutionid'] || '').toLowerCase();
+      const name = (r['friendlyname'] || '').toLowerCase();
+      return id && !systemGuids.has(id) && !systemNames.includes(name);
+    })
+    .map((r) => {
+      const name = r['friendlyname'] || r['uniquename'] || r['solutionid'];
+      const prefix = r['pub.customizationprefix'] || '?';
+      return { value: r['solutionid'].toLowerCase(), label: `${name} (${prefix}_)` };
+    });
 }
 
 // ─── Dataverse API helpers (SPN) ─────────────────────────────────────
@@ -350,7 +342,7 @@ export default {
         '3. Click on the solution to open it',
         '4. Copy the URL from your browser\'s address bar',
         '5. Paste it here — it looks like:',
-        '   https://make.powerapps.com/e/.../solutions/{guid}',
+        '   https://make.powerapps.com/environments/.../solutions/{guid}',
       ].join('\n'),
     });
 
@@ -450,7 +442,8 @@ export default {
 
     // ── Paste URL → extract GUID → fetch via PAC ──
     if (selection === PASTE_URL) {
-      const url = String(answers.SOLUTION_URL || '').trim();
+      // Strip trailing punctuation that users may accidentally include when pasting from a document.
+      const url = String(answers.SOLUTION_URL || '').trim().replace(/[.,;:!?]+$/, '');
       const solutionId = extractSolutionIdFromUrl(url);
       if (!solutionId) throw new Error('Could not find a solution GUID in that URL. Paste the full Maker Portal solution URL (…/solutions/{guid}).');
 

package/server/steps/07-scaffold.mjs

@@ -23,8 +23,8 @@ function runCommand(log, command, opts = {}) {
   return new Promise((resolvePromise) => {
     log.info(`$ ${command}`);
     const child = process.platform === 'win32'
-      ? spawn(process.env.COMSPEC || 'cmd.exe', ['/d', '/s', '/c', command], { cwd: opts.cwd || ROOT_DIR, stdio: ['ignore', 'pipe', 'pipe'] })
-      : spawn('sh', ['-c', command], { cwd: opts.cwd || ROOT_DIR, stdio: ['ignore', 'pipe', 'pipe'] });
+      ? spawn(process.env.COMSPEC || 'cmd.exe', ['/d', '/s', '/c', command], { cwd: opts.cwd || process.cwd(), stdio: ['ignore', 'pipe', 'pipe'] })
+      : spawn('sh', ['-c', command], { cwd: opts.cwd || process.cwd(), stdio: ['ignore', 'pipe', 'pipe'] });
     child.stdout.setEncoding('utf-8');
     child.stderr.setEncoding('utf-8');
     child.stdout.on('data', (chunk) => log.info(String(chunk).trimEnd()));
@@ -40,7 +40,7 @@ function runCommand(log, command, opts = {}) {
 function runFile(log, file, args, opts = {}) {
   return new Promise((resolvePromise) => {
     log.info(`$ ${SHELL.formatCommandForLog(file, args)}`);
-    const child = SHELL.spawnSafe(file, args, { cwd: opts.cwd || ROOT_DIR, stdio: ['ignore', 'pipe', 'pipe'] });
+    const child = SHELL.spawnSafe(file, args, { cwd: opts.cwd || process.cwd(), stdio: ['ignore', 'pipe', 'pipe'] });
     child.stdout.setEncoding('utf-8');
     child.stderr.setEncoding('utf-8');
     child.stdout.on('data', (chunk) => log.info(String(chunk).trimEnd()));
@@ -68,7 +68,7 @@ function hasCommand(name) {
 
 function resolveCredentialValues(state) {
   return PAC_TARGET.resolveCredentialValues({
-    rootDir: ROOT_DIR,
+    rootDir: state.PROJECT_DIR || process.cwd(),
     opBin: process.env.OP_BIN || (hasCommand('op') ? 'op' : null),
     source: state.AUTH_MODE || 'auto',
   });
@@ -77,7 +77,7 @@ function resolveCredentialValues(state) {
 function verifyPacTarget({ pac, projectDir, state, credentialValues, profileType, requirePowerConfig, requirePowerConfigTarget }) {
   return PAC_TARGET.selectAndVerifyPacProfile({
     pac,
-    rootDir: ROOT_DIR,
+    rootDir: projectDir || process.cwd(),
     wizardState: {
       WIZARD_TARGET_ENV: state.WIZARD_TARGET_ENV || 'dev',
       PP_ENV_DEV: state.PP_ENV_DEV || '',
@@ -148,7 +148,7 @@ export default {
   },
 
   questions(state) {
-    const rootDefault = state.PROJECT_DIR || ROOT_DIR;
+    const rootDefault = state.PROJECT_DIR || process.cwd();
     const existingOrigin = SHELL.run('git remote get-url origin', { cwd: rootDefault }) || '';
     const needsRemote = !existingOrigin || /PAppsCAFoundations/i.test(existingOrigin);
     return [
@@ -194,7 +194,7 @@ export default {
 
   async apply(answers, state, log) {
     const appName = state.APP_NAME || 'Power Apps Code App';
-    const projectDir = resolve(String(answers.PROJECT_DIR || ROOT_DIR).trim());
+    const projectDir = resolve(String(answers.PROJECT_DIR || process.cwd()).trim());
     const foundationLogger = makeFoundationLogger(log);
 
     if (existsSync(projectDir) && readdirSync(projectDir).length > 0 && answers.CONTINUE_NONEMPTY !== true) {
@@ -208,7 +208,7 @@ export default {
     log.info('Downloading starter template...');
     const templateArgs = ['--yes', 'degit', 'microsoft/PowerAppsCodeApps/templates/starter', projectDir];
     if (dirNotEmpty) templateArgs.push('--force');
-    const templateOk = await runFile(log, toolCommand('npx'), templateArgs, { cwd: ROOT_DIR });
+    const templateOk = await runFile(log, toolCommand('npx'), templateArgs, { cwd: projectDir });
     if (!templateOk) {
       log.warn('Template download failed. Creating minimal project structure instead.');
       SCAFFOLD.createMinimalProject(projectDir, appName);