From 15efb410d035faf117d584570ca0566b476b01cd Mon Sep 17 00:00:00 2001
From: Zexin Yuan <git@yzx9.xyz>
Date: Mon, 20 Apr 2026 09:56:47 +0800
Subject: [PATCH] fix(nix): make working directory writable

---
 nix/nixosModules.nix | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/nix/nixosModules.nix b/nix/nixosModules.nix
index 641b98d1d..d3cb71a39 100644
--- a/nix/nixosModules.nix
+++ b/nix/nixosModules.nix
@@ -777,7 +777,10 @@ HERMES_NIX_ENV_EOF
             NoNewPrivileges = true;
             ProtectSystem = "strict";
             ProtectHome = false;
-            ReadWritePaths = [ cfg.stateDir ];
+            ReadWritePaths = [
+              cfg.stateDir
+              cfg.workingDirectory
+            ];
             PrivateTmp = true;
           };