clawdie/layered-soul
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

docs(hive): add 2026-06-20 status block — MVP code-complete, first-proof path

Browse source 
Persist the reconstructed plan: all four MVP steps code-complete on colibri main;
first proof is not code-blocked (interim manual runbook path); open work
categorized (hardening #100/#92, CLI-driveability #101/#102, naming #98/iso#70).
PR #90 (tenants table) closed as superseded — already on main.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
This commit is contained in:
Sam & Claude 2026-06-20 09:00:09 +02:00
parent 7c3016cf06
commit 4192574f74
1 changed files with 34 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

34
docs/HIVE-ONBOARDING.md
View file

@ -9,6 +9,40 @@ invention. Sections are tagged `[LIVE]` / `[PLANNED]`.
--- ---
## Status — 2026-06-20
The four MVP steps (§8) are **code-complete on colibri `main`**:
| MVP step | Status | Landed via |
| -------- | ------ | ---------- |
| 1. `colibri-vault` crate | done; hardening in flight | #85#94 → PR #100 (server-match + serialize) |
| 2. `tenants` table | on `main` | (PR #90 closed as superseded) |
| 3. spawner → provision hook | done | #91 (root-verify) → #94 (wired) |
| 4. `mother` skill | done (draft) | layered-soul |
Supporting pieces merged: `agent-jail-bootstrap.sh` (#96#97 version-pin → #104
cold-cache guard), `provider.env` staging (#69/#99), vault-fetch shell helper
server-match (#67/#68/#69).
**First proof is *not* code-blocked** — the chain works today via the interim manual
path in [`../docs/VAULT-PROVISION-FIRST-PROOF.md`](https://code.smilepowered.org/clawdie/colibri)
(colibri). Critical path: merge PR #100 + #103 → run the runbook (scratch jail + test
collection, manual SQLite tenant insert, raw-socket jailed spawn) → verify `.env` at
`0600` + tenant `active`.
Open work, categorized:
- **Hardening:** colibri PR #100 (closes #95), #92 (path canonicalization/containment).
- **CLI-driveability (post-proof ergonomics, not proof blockers):** #101 (`register-tenant`
command), #102 (`--jail` on `spawn-agent`) — these replace the runbook's manual steps.
- **Source-of-truth/naming:** #98 (`npm-node24` vs `npm`), clawdie-iso #70 (agent-jail
section in `pkg-list-jails.txt`).
**One-line plan:** merge #100 + #103 → run the runbook for the first proof → then land
#101/#102 for CLI driveability, and #92 before promoting past scratch.
---
## 1. The core idea ## 1. The core idea
The Vaultwarden→`.env` fetch we proved is not a utility — it is the **onboarding The Vaultwarden→`.env` fetch we proved is not a utility — it is the **onboarding