Companion to colibri fix/clawdie-db-path. The rc.d default already derives
clawdie_db_path from clawdie_data_dir, but write it explicitly into the staged
rc.conf (and the rc.conf.sample) so the operator can see the DB lives in
clawdie's own dir (/var/db/clawdie/clawdie.sqlite), not the colibri daemon's.
Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
Adds an opt-in FEATURE_CLAWDIE lane that stages the new one-binary clawdie
agent (glasspane + herdr + DeepSeek/Telegram) from the shared ../colibri
checkout, alongside the existing Colibri daemon staging.
- build.cfg: FEATURE_CLAWDIE (default NO), CLAWDIE_ARTIFACT_DIR, CLAWDIE_ENABLE,
plus build-flag credential notes.
- scripts/stage-clawdie-iso.sh: install clawdie binary + rc.d + rc.conf sample
+ optional clawdie.env override template.
- build.sh: resolve_clawdie_paths, preflight_clawdie_artifacts,
install_clawdie_service (creates clawdie user/group, enables rc.d like
Clawdie-AI), status line, and call-site wiring. Gated; default build unchanged.
- iso-build skill: clawdie preflight section + a "carry the XFCE operator-USB
fixes" reminder for the next build (SDDM-over-LightDM, clawdie-live-gpu KMS,
hardened USB power policy).
sh -n clean on build.sh and stage-clawdie-iso.sh; markdown gate clean on
touched files.
Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
Merge origin/pi/live-boot-xfce-colibri-fixes into origin/main for the next mainline operator USB build target. Resolved AGENTS.md in favor of the Forgejo/three-repo version from the build target rather than the stale line-numbered main copy.\n\nChecks: sh -n build.sh build-vps.sh firstboot/shell-deploy.sh live/operator-session/hw-report live/operator-session/clawdie-xfce-visuals-guard.sh scripts/build-and-log.sh scripts/stage-colibri-iso.sh scripts/write-artifact-manifest.sh; ./scripts/check-format.sh; git diff --check.
Reported on AMD live USB: colibri_daemon blocked rc.d boot until Ctrl-C; XFCE still showed default wallpaper and missing panel/start icons. Stage Colibri but disable daemon at boot by default, validate daemon(8) rc.d supervision, regenerate all icon caches, install Clawdie start icon into hicolor, add a visual guard, and expand hw-report XFCE/Colibri diagnostics.\n\nChecks: sh -n build.sh scripts/stage-colibri-iso.sh live/operator-session/clawdie-xfce-session-inner live/operator-session/hw-report live/operator-session/clawdie-xfce-visuals-guard.sh; ./scripts/check-format.sh; git diff --check; stage-colibri smoke with dummy artifacts.
Use packages/npm-globals.txt as the source of truth for offline npm CLI tarballs, update Pi to 0.75.5, and keep Claude Code out of the XFCE USB path.
---
Build: not run — ISO build not requested
Tests: pass — sh -n fetch-npm-globals and shell-npm-globals; pinned npm pack smoke passed
Adds a JSON manifest writer for published ISO artifacts, updates the publish skill to publish the manifest and Hermes deploy block, and records Hermes as the USB/IMG deploy role.
---
Build: not run — publish/deploy contract only
Tests: pass — sh -n scripts/write-artifact-manifest.sh; ./scripts/check-format.sh; git diff --check; manifest JSON validated with python3 -m json.tool
Point build-time npm commands at empty repo-local npm config files so stale host global settings such as python=/usr/local/bin/python3.11 do not emit npm warnings or affect the generated operator USB.
---
Build: pass — sh -n build.sh; sh -n scripts/fetch-npm-globals.sh
Tests: pass — git diff --check; npm config get globalconfig with repo-local config
Remove the fetched legacy privilege package archive from the offline USB package cache after repacking NetworkMgr, and keep repack scratch files under repo tmp.
---
Build: pass — sh -n build.sh; node --check scripts/repack-networkmgr-for-mdo.mjs
Tests: pass — git diff --check; local NetworkMgr repack smoke test
Ships @anthropic-ai/claude-code, @google/gemini-cli, and
@mariozechner/pi-coding-agent as prebuilt .tgz tarballs on the install
media so the agent runtime has its CLI dependencies on first boot
without network access.
Critical: installs to /home/clawdie/.npm-global to match the
npm_config_prefix set by shell-system.sh in /etc/profile.d/clawdie.sh,
so the clawdie user's PATH (and the agent's commandExists() probes)
actually resolve the binaries.
- scripts/fetch-npm-globals.sh: npm pack the 3 CLIs into tmp/npm-globals/
- firstboot/shell-npm-globals.sh: offline install as clawdie user with
matching prefix, runs between pkg setup and deploy
- build.sh: fetch + bundle into ${SHARE}/npm-globals/
- firstboot.sh: source module and run_step before deploy
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
Moves bhyve VMs off warden0 (jail bridge) to avoid ARP/routing conflicts
with running agent jails. Auto-picks unused tap interface, adds PF NAT
idempotently, cleans up tap on exit.
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
- build.sh: force LC_TIME=C so date +%b always outputs "Mar" not "Mar."
Prevents double-dot filenames (e.g. 30.mar..2026.img) on sl_SI locale
- bhyve-test.sh: auto-detect newest baremetal .img or accept path as $1
Removes hardcoded filename that breaks after each new build
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
Wraps build.sh, captures stdout+stderr with tee, generates a styled
HTML page matching the site's dark theme (DM Mono terminal block,
status badge, duration). Publishes two copies:
- /docs/iso-build-log.html (always latest)
- /docs/iso-build-YYYY-MM-DD.html (dated archive permalink)
Usage: sudo ./scripts/build-and-log.sh [build.sh args...]
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
firstboot.sh:
- Set SHELL_{GPU,NVIDIA,PKG,ENV,DEPLOY}_TEST=1 before sourcing modules
(prevents double-execution on source — same bug fixed in integration-test)
- Add --resume: run_step() skips steps already recorded in progress file
- Add --reset: clears progress file, starts over from scratch
- Add --help
- Wizard tracked as checkpoint so --resume skips re-prompting the user
- run_step() helper: guard → run → mark done in one call
scripts/bhyve-test.sh (was tmp/bhyve-test-setup.sh):
- Moved to tracked scripts/ directory (tmp/ is gitignored)
- Timeout 300→1800s (full install is 20–25 min, not 5)
scripts/run-bhyve-test.sh (was tmp/run-bhyve-test.sh):
- Moved to scripts/, log output redirected to logs/ (also gitignored)
BUILD.md, TESTING.md, IMPLEMENTATION-PLAN.md:
- Update all bhyve script references to scripts/bhyve-test.sh
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
1. Determine memstick partition layout: /dev/\${MD}s2a (UFS)
2. Implement payload injection in build.sh steps 5-6
3. Create scripts/publish.sh to copy ISO to CMS nginx /downloads/
4. Fix --fetch-only to not require root (use temp pkg config)
All 4 quickstart tasks now unblocked. Next: test in bhyve VM.
Co-Authored-By: Claude Haiku 4.5 <noreply@anthropic.com>
