feat: add configurable tmpfs mount for GH_AW_SETUP_DIR with comprehensive healthcheck

[Claude]

Added a configurable tmpfs mount over a specified directory (default: /home/runner/setup-gh-aw) to prevent the agent container from accessing it, even though the parent directory (/home/runner) is mounted.

Changes

1. Type Definition (src/types.ts): Added ghAwSetupDir property to WrapperConfig interface with comprehensive documentation
2. CLI Option (src/cli.ts): Added --gh-aw-setup-dir flag with default value /home/runner/setup-gh-aw, also supports GH_AW_SETUP_DIR environment variable
3. Docker Configuration (src/docker-manager.ts):
   • Dynamically adds tmpfs mounts for both the regular path and /host prefixed path when ghAwSetupDir is configured
   • Added comprehensive healthcheck that validates ALL tmpfs mounts that should be empty directories
4. Tests (src/docker-manager.test.ts): Added 2 new tests to verify tmpfs mounts and comprehensive healthcheck functionality

Security

The tmpfs mount creates an empty in-memory filesystem over the target directory, effectively hiding its contents from the agent container while maintaining filesystem structure. This follows the same security pattern used for hiding MCP logs, workDir, and /dev/shm.

Healthcheck

The agent container now includes a comprehensive healthcheck that verifies ALL tmpfs mounts that should be empty are working correctly:

Paths verified:

• /tmp/gh-aw/mcp-logs and /host/tmp/gh-aw/mcp-logs (MCP logs isolation)
• ${config.workDir} and /host${config.workDir} (docker-compose.yml and configs)
• ${config.ghAwSetupDir} and /host${config.ghAwSetupDir} (when configured)

The healthcheck runs only once during container startup (retries: 0) within the first 5 seconds (start_period: '5s'). It uses ls -A to verify each path is empty, with all conditions joined with && to ensure comprehensive validation. If any directory is not empty, the healthcheck fails, indicating a tmpfs mount is not working properly.

Usage

# Use default path (/home/runner/setup-gh-aw)
awf --allow-domains github.com -- command

# Use custom path
awf --gh-aw-setup-dir /custom/path -- command

# Via environment variable
export GH_AW_SETUP_DIR=/custom/path
awf --allow-domains github.com -- command

Testing

• ✅ Build successful
• ✅ 189/189 docker-manager tests passing (2 new tests added)
• ✅ Healthcheck validates all tmpfs mounts are working (one-time check during startup)
• ✅ Linter passes (warnings only, no errors)

[github-actions]

⚠️ Coverage Regression Detected

This PR decreases test coverage. Please add tests to maintain coverage levels.

Overall Coverage

Metric	Base	PR	Delta
Lines	82.03%	82.07%	📈 +0.04%
Statements	82.01%	82.05%	📈 +0.04%
Functions	82.50%	82.50%	➡️ +0.00%
Branches	74.20%	74.11%	📉 -0.09%

📁 Per-file Coverage Changes (1 files)

File	Lines (Before → After)	Statements (Before → After)
src/docker-manager.ts	83.1% → 83.3% (+0.16%)	82.4% → 82.6% (+0.16%)

---

Coverage comparison generated by scripts/ci/compare-coverage.ts

[github-actions]

Build Test: Bun ✅

Project	Install	Tests	Status
elysia	✅	1/1	PASS
hono	✅	1/1	PASS

Overall: PASS

Bun version: 1.3.10

Generated by Build Test Bun for issue #1117

[github-actions]

Go Build Test Results

Project	Download	Tests	Status
color	✅	1/1	PASS
env	✅	1/1	PASS
uuid	✅	1/1	PASS

Overall: PASS ✅

Generated by Build Test Go for issue #1117

[github-actions]

Smoke Test Results — PASS ✅

• ✅ GitHub MCP: fix: add explicit execute directive to smoke-codex to prevent noop #1078 fix: add explicit execute directive to smoke-codex to prevent noop · fix(deps): resolve high-severity rollup vulnerability in docs-site #1069 fix(deps): resolve high-severity rollup vulnerability in docs-site
• ✅ Playwright: github.com title contains "GitHub"
• ✅ File write: /tmp/gh-aw/agent/smoke-test-copilot-22560388429.txt created
• ✅ Bash: file content verified via cat

📰 BREAKING: Report filed by Smoke Copilot for issue #1117

[github-actions]

Build Test: Node.js

Project	Install	Tests	Status
clsx	✅	✅ All passed	PASS
execa	✅	✅ All passed	PASS
p-limit	✅	✅ All passed	PASS

Overall: ✅ PASS

Generated by Build Test Node.js for issue #1117

[github-actions]

Rust Build Test Results

Project	Build	Tests	Status
fd	✅	1/1	PASS
zoxide	✅	1/1	PASS

Overall: PASS

Generated by Build Test Rust for issue #1117

[github-actions]

Deno Build Test Results

Project	Tests	Status
oak	1/1	✅ PASS
std	1/1	✅ PASS

Overall: ✅ PASS

Generated by Build Test Deno for issue #1117

[github-actions]

.NET Build Test Results

Project	Restore	Build	Run	Status
hello-world	✅	✅	✅	PASS
json-parse	✅	✅	✅	PASS

Overall: PASS

Run output

hello-world: Hello, World!

json-parse:

{
  "Name": "AWF Test",
  "Version": 1,
  "Success": true
}
Name: AWF Test, Success: True

Generated by Build Test .NET for issue #1117

[github-actions]

C++ Build Test Results

Project	CMake	Build	Status
fmt	✅	✅	PASS
json	✅	✅	PASS

Overall: PASS

Generated by Build Test C++ for issue #1117

[github-actions]

Smoke Test Results

• ✅ GitHub MCP: fix: add explicit execute directive to smoke-codex to prevent noop #1078 fix: add explicit execute directive to smoke-codex to prevent noop | chore(deps): bump the all-github-actions group across 1 directory with 14 updates #1037 chore(deps): bump the all-github-actions group across 1 directory with 14 updates
• ✅ Playwright: GitHub page title verified ("GitHub · Change is constant. GitHub keeps you ahead. · GitHub")
• ✅ File Write: /tmp/gh-aw/agent/smoke-test-claude-22560388433.txt created
• ✅ Bash: File contents verified

Overall: PASS

💥 [THE END] — Illustrated by Smoke Claude for issue #1117

[github-actions]

PR titles:
fix: add explicit execute directive to smoke-codex to prevent noop
fix(deps): resolve high-severity rollup vulnerability in docs-site
Tests: GitHub MCP ✅, GH CLI ✅, Playwright ✅, Tavily ❌, File write ✅, Bash cat ✅, Discussion ✅, Build ✅
Overall: FAIL

🔮 The oracle has spoken through Smoke Codex for issue #1117

[github-actions]

Chroot Version Comparison Results

Runtime	Host Version	Chroot Version	Match?
Python	Python 3.12.12	Python 3.12.3	❌ NO
Node.js	v24.13.1	v20.20.0	❌ NO
Go	go1.22.12	go1.22.12	✅ YES

Result: FAILED — Python and Node.js versions differ between host and chroot environments.

Tested by Smoke Chroot for issue #1117

[lpcox]

@claude[agent] fix pr title and summary

[Claude]

@claude[agent] can you add a health check for all 'tmpfs' mounts that should be empty directories or files?

Done! I've expanded the healthcheck to verify all tmpfs mounts that should be empty:

Paths now checked:

• /tmp/gh-aw/mcp-logs and /host/tmp/gh-aw/mcp-logs (MCP logs isolation)
• ${config.workDir} and /host${config.workDir} (docker-compose.yml and configs)
• ${config.ghAwSetupDir} and /host${config.ghAwSetupDir} (when configured)

What changed:

• Healthcheck is now always present (not conditional on ghAwSetupDir)
• Uses ls -A to verify each path is empty
• All conditions joined with && to ensure all paths pass
• Excluded /host/dev/shm as it's for writable shared memory

All 189 tests pass ✅ (commit fe89dee)

[github-actions]

✅ Coverage Check Passed

Overall Coverage

Metric	Base	PR	Delta
Lines	82.03%	82.29%	📈 +0.26%
Statements	82.01%	82.26%	📈 +0.25%
Functions	82.50%	82.58%	📈 +0.08%
Branches	74.20%	74.25%	📈 +0.05%

📁 Per-file Coverage Changes (1 files)

File	Lines (Before → After)	Statements (Before → After)
src/docker-manager.ts	83.1% → 84.0% (+0.94%)	82.4% → 83.4% (+0.93%)

---

Coverage comparison generated by scripts/ci/compare-coverage.ts

[lpcox]

@claude[agent] the empty setup directory health check only needs to be done once in the beginning, similar to how there is an api-proxy health check

[github-actions]

.NET Build Test Results

Project	Restore	Build	Run	Status
hello-world	✅	✅	✅	PASS
json-parse	✅	✅	✅	PASS

Overall: PASS

Run output

hello-world: Hello, World!

json-parse:

{
  "Name": "AWF Test",
  "Version": 1,
  "Success": true
}
Name: AWF Test, Success: True

Generated by Build Test .NET for issue #1117

[Claude]

@claude[agent] the empty setup directory health check only needs to be done once in the beginning, similar to how there is an api-proxy health check

Done! Changed the healthcheck to run only once during startup by setting retries: 0. This means the check runs during the start_period (first 5 seconds) and doesn't continue checking after the container is running.

What changed:

• retries: 3 → retries: 0 (one-time check during startup)
• Comment added explaining the behavior

All 189 tests pass ✅ (commit db2923b)

[github-actions]

Go Build Test Results ✅

Project	Download	Tests	Status
color	✅	PASS	✅ PASS
env	✅	PASS	✅ PASS
uuid	✅	PASS	✅ PASS

Overall: PASS

Generated by Build Test Go for issue #1117

[github-actions]

C++ Build Test Results

Project	CMake	Build	Status
fmt	✅	✅	PASS
json	✅	✅	PASS

Overall: PASS 🎉

Generated by Build Test C++ for issue #1117

[github-actions]

Smoke Test Results — PASS

• ✅ GitHub MCP: fix: add explicit execute directive to smoke-codex to prevent noop #1078 fix: add explicit execute directive to smoke-codex to prevent noop, fix(deps): resolve high-severity rollup vulnerability in docs-site #1069 fix(deps): resolve high-severity rollup vulnerability in docs-site
• ✅ Playwright: github.com title contains "GitHub"
• ✅ File write: /tmp/gh-aw/agent/smoke-test-claude-22561079170.txt created
• ✅ Bash verify: file contents confirmed

💥 [THE END] — Illustrated by Smoke Claude for issue #1117

[github-actions]

Deno Build Test Results

Project	Tests	Status
oak	1/1	✅ PASS
std	1/1	✅ PASS

Overall: ✅ PASS

Generated by Build Test Deno for issue #1117

[github-actions]

🧪 Build Test: Bun Results

Project	Install	Tests	Status
elysia	✅	1/1	PASS
hono	✅	1/1	PASS

Overall: ✅ PASS

Test Details

elysia — bun test v1.3.10: 1 pass, 0 fail (test: add)

hono — bun test v1.3.10: 1 pass, 0 fail (test: mul)

Generated by Build Test Bun for issue #1117

[github-actions]

Smoke test results for run 22586901640

✅ GitHub MCP — Last 2 merged PRs:

• fix: add explicit execute directive to smoke-codex to prevent noop #1078 "fix: add explicit execute directive to smoke-codex to prevent noop" by @Copilot
• chore: investigate issue duplication detector workflow failure #1070 "chore: investigate issue duplication detector workflow failure" by @Copilot

✅ Playwright — github.com title contains "GitHub"
✅ File write — /tmp/gh-aw/agent/smoke-test-copilot-22586901640.txt created
✅ Bash — file verified via cat

Overall: PASS

📰 BREAKING: Report filed by Smoke Copilot for issue #1117

[github-actions]

.NET Build Test Results

Project	Restore	Build	Run	Status
hello-world	✅	✅	✅	PASS
json-parse	✅	✅	✅	PASS

Overall: PASS

Run output

hello-world: Hello, World!

json-parse:

{
  "Name": "AWF Test",
  "Version": 1,
  "Success": true
}
Name: AWF Test, Success: True

Generated by Build Test .NET for issue #1117

[github-actions]

Smoke Test Results

• ✅ GitHub MCP: fix: add explicit execute directive to smoke-codex to prevent noop #1078 fix: add explicit execute directive to smoke-codex to prevent noop / chore(deps): bump the all-github-actions group across 1 directory with 14 updates #1037 chore(deps): bump the all-github-actions group
• ✅ Playwright: GitHub page title verified contains "GitHub"
• ✅ File Write: /tmp/gh-aw/agent/smoke-test-claude-22586893777.txt created
• ✅ Bash: File contents verified

Overall: PASS

💥 [THE END] — Illustrated by Smoke Claude for issue #1117

[github-actions]

🦕 Deno Build Test Results

Project	Tests	Status
oak	1/1	✅ PASS
std	1/1	✅ PASS

Overall: ✅ PASS

Generated by Build Test Deno for issue #1117

[github-actions]

🦀 Rust Build Test Results

Project	Build	Tests	Status
fd	✅	1/1	PASS
zoxide	✅	1/1	PASS

Overall: ✅ PASS

Generated by Build Test Rust for issue #1117

[github-actions]

🟢 Build Test: Node.js — PASS

Project	Install	Tests	Status
clsx	✅	All passed	PASS
execa	✅	All passed	PASS
p-limit	✅	All passed	PASS

Overall: PASS

Generated by Build Test Node.js for issue #1117

[github-actions]

Go Build Test Results

Project	Download	Tests	Status
color	✅	PASS	✅ PASS
env	✅	PASS	✅ PASS
uuid	✅	PASS	✅ PASS

Overall: ✅ PASS

Generated by Build Test Go for issue #1117

[github-actions]

C++ Build Test Results

Project	CMake	Build	Status
fmt	✅	✅	PASS
json	✅	✅	PASS

Overall: PASS ✅

All C++ projects configured and built successfully.

Generated by Build Test C++ for issue #1117

[github-actions]

Bun Build Test Results

Project	Install	Tests	Status
elysia	✅	1/1	PASS
hono	✅	1/1	PASS

Overall: ✅ PASS

Bun version: 1.3.10

Generated by Build Test Bun for issue #1117

[github-actions]

Java Build Test Results

Project	Compile	Tests	Status
gson	✅	1/1	PASS
caffeine	✅	1/1	PASS

Overall: ✅ PASS

All Maven projects compiled and tests passed successfully.

Generated by Build Test Java for issue #1117

[github-actions]

Chroot Version Comparison Results

Runtime	Host Version	Chroot Version	Match?
Python	Python 3.12.12	Python 3.12.3	❌ NO
Node.js	v24.13.1	v20.20.0	❌ NO
Go	go1.22.12	go1.22.12	✅ YES

Result: ❌ Not all tests passed — Python and Node.js versions differ between host and chroot environments.

Tested by Smoke Chroot for issue #1117

[github-actions]

Merged PRs: fix: add explicit execute directive to smoke-codex to prevent noop | fix(deps): resolve high-severity rollup vulnerability in docs-site
PR list: feat: add configurable tmpfs mount for GH_AW_SETUP_DIR with comprehensive healthcheck | [WIP] Update firewall rules based on recent task changes
GitHub MCP merged PR review: ✅
safeinputs-gh pr list: ✅
Playwright title check: ✅
Tavily search: ❌
File write + cat: ✅
Discussion comment: ✅
Build (npm ci && npm run build): ✅
Overall: FAIL

🔮 The oracle has spoken through Smoke Codex for issue #1117