CLAUDE.md: Phase 5c split
This commit is contained in:
müde
parent
967ec7c9d7
commit
2a33697cda
1 changed files with 23 additions and 9 deletions
32
CLAUDE.md
32
CLAUDE.md
|
|
@ -143,8 +143,11 @@ in.
|
||||||
- ✅ Phase 4 — `hm1nd` manager binary + manager socket + declarative `containers.hm1nd`
|
- ✅ Phase 4 — `hm1nd` manager binary + manager socket + declarative `containers.hm1nd`
|
||||||
- ✅ Phase 5 — git-commit approval flow:
|
- ✅ Phase 5 — git-commit approval flow:
|
||||||
- 5a — sqlite approval queue (`request_apply_commit` / `pending` / `approve` / `deny`)
|
- 5a — sqlite approval queue (`request_apply_commit` / `pending` / `approve` / `deny`)
|
||||||
- 5b — per-agent config flakes at `/var/lib/hyperhive/agents/<name>/config/`;
|
- 5b — per-agent config flakes (proposed + applied repos)
|
||||||
`approve <id>` validates the commit + advances `main` + rebuilds
|
- 5c — split: manager edits `proposed`, hive-c0re writes-only `applied`; the
|
||||||
|
container builds from `applied`. Approve = read `agent.nix` at the
|
||||||
|
approved commit from `proposed`, copy into `applied`, commit + rebuild.
|
||||||
|
Manager cannot move `main` on its own.
|
||||||
- 🔜 Phase 6 — per-agent web UI + dashboard MVP
|
- 🔜 Phase 6 — per-agent web UI + dashboard MVP
|
||||||
- 🔜 Phase 7 — dashboard commit-view + polish
|
- 🔜 Phase 7 — dashboard commit-view + polish
|
||||||
|
|
||||||
|
|
@ -168,19 +171,30 @@ sudo hive-c0re approve N # validates, advances main, rebuilds h-alice
|
||||||
sudo nixos-container run h-alice -- which htop # /run/current-system/sw/bin/htop
|
sudo nixos-container run h-alice -- which htop # /run/current-system/sw/bin/htop
|
||||||
```
|
```
|
||||||
|
|
||||||
Per-agent flake layout (generated by `setup_config` on every spawn / rebuild):
|
Per-agent layout — two separate git repos:
|
||||||
|
|
||||||
```
|
```
|
||||||
/var/lib/hyperhive/agents/<name>/config/
|
/var/lib/hyperhive/agents/<name>/config/ # proposed — manager edits, hive-c0re reads only
|
||||||
├── .git/
|
├── .git/
|
||||||
├── flake.nix # managed by hive-c0re — rewritten when hyperhive flake URL changes
|
└── agent.nix # the only file the manager can change
|
||||||
└── agent.nix # manager-editable; per-agent NixOS overrides
|
# (initial commit by hive-c0re on first spawn,
|
||||||
|
# never touched by hive-c0re again)
|
||||||
|
|
||||||
|
/var/lib/hyperhive/applied/<name>/ # applied — hive-c0re-only; container builds here
|
||||||
|
├── .git/
|
||||||
|
├── flake.nix # hive-c0re-managed; references hyperhive_flake
|
||||||
|
└── agent.nix # overwritten by approve from the proposed commit
|
||||||
```
|
```
|
||||||
|
|
||||||
The flake's `inputs.hyperhive.url` is the same URL `hive-c0re` was launched with
|
The container's `--flake` ref is `<applied_dir>#default`. The flake's
|
||||||
(`services.hive-c0re.hyperhiveFlake`), inlined as a string. The flake's
|
|
||||||
`nixosConfigurations.default` extends `hyperhive.nixosConfigurations.agent-base`
|
`nixosConfigurations.default` extends `hyperhive.nixosConfigurations.agent-base`
|
||||||
with `./agent.nix`. So adding packages is a one-line edit in `agent.nix`.
|
with `./agent.nix` plus an inline module setting `environment.etc."gitconfig".text`
|
||||||
|
with the agent's name as the git committer identity.
|
||||||
|
|
||||||
|
On approve: `git show <commit>:agent.nix` from `proposed/<name>`, write the bytes
|
||||||
|
into `applied/<name>/agent.nix`, commit there as `hive-c0re`, then
|
||||||
|
`nixos-container update`. The manager can only propose; only hive-c0re advances
|
||||||
|
`applied`'s `main`.
|
||||||
|
|
||||||
See PLAN.md for the full design and the deferred-out-of-scope list.
|
See PLAN.md for the full design and the deferred-out-of-scope list.
|
||||||
|
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue