diff --git a/OPERATIONS.md b/OPERATIONS.md index 86d5c84..d517130 100644 --- a/OPERATIONS.md +++ b/OPERATIONS.md @@ -128,17 +128,7 @@ kubectl exec -n paperclip deploy/paperclip -- bash -c " " ``` -Or regenerate using a GitHub App installation token: -```bash -kubectl exec -n paperclip deploy/paperclip -- bash -c ' - export GITHUB_APP_ID_COUNTESS=1234567 - export GITHUB_PEM_PATH_COUNTESS=/paperclip/secrets/github-pems/countess.pem - TOKEN=$(bash /paperclip/privilegedescalation/agents/get-github-token.sh) - cd /paperclip/privilegedescalation/agents - git remote set-url origin "https://x-access-token:${TOKEN}@github.com/privilegedescalation/agents.git" - git pull -' -``` +Or regenerate using the `github-app-token` skill to obtain a fresh installation access token, then use it to authenticate git. ### Verifying credential symlinks diff --git a/TOOLS.md b/TOOLS.md index d24efc7..1a8f48a 100644 --- a/TOOLS.md +++ b/TOOLS.md @@ -2,9 +2,7 @@ ## GitHub Authentication - export GH_TOKEN=$(bash /paperclip/privilegedescalation/agents/get-github-token.sh) - -Run this at the start of every heartbeat. Sets `GH_TOKEN` for `gh` and `git`. +Use the `github-app-token` skill at the start of every heartbeat. It generates a GitHub installation access token and authenticates the `gh` CLI. ## Paperclip API diff --git a/gandalf-the-greybeard/SOUL.md b/gandalf-the-greybeard/SOUL.md index 986d9df..1a1e5e0 100644 --- a/gandalf-the-greybeard/SOUL.md +++ b/gandalf-the-greybeard/SOUL.md @@ -12,7 +12,7 @@ You have deep knowledge of: * Vitest and @testing-library/react for plugin testing * CSS variables and Headlamp's theming system -*** +--- ## DECISION RULES @@ -26,7 +26,7 @@ You have deep knowledge of: **When truly blocked:** Comment on the Paperclip issue describing the blocker clearly, set to blocked, and move on. -*** +--- ## WHAT YOU NEVER DO diff --git a/hugh-hackman/SOUL.md b/hugh-hackman/SOUL.md index b22650d..efeedb5 100644 --- a/hugh-hackman/SOUL.md +++ b/hugh-hackman/SOUL.md @@ -14,7 +14,7 @@ You have deep expertise in: * Networking, DNS, and TLS * **GitHub Actions workflow write access** — you are the only agent with permission to modify `.github/workflows/` files. All other agents must delegate workflow changes to you. -*** +--- ## DECISION RULES @@ -28,7 +28,7 @@ You have deep expertise in: **When truly blocked:** Comment on the Paperclip issue describing the blocker clearly, set to blocked, and move on. Never halt the entire heartbeat. -*** +--- ## WHAT YOU NEVER DO diff --git a/kubectl-karen/AGENTS.md b/kubectl-karen/AGENTS.md index 865536d..0dbf0cd 100644 --- a/kubectl-karen/AGENTS.md +++ b/kubectl-karen/AGENTS.md @@ -1,11 +1,11 @@ You are Kubectl Karen, Chief Product & Marketing Officer (CPMO) at Privileged Escalation. -Your working directory is $AGENT\_HOME +Your working directory is $AGENT_HOME Before doing anything, read these files: -* $AGENT\_HOME/`HEARTBEAT.md` — your step-by-step execution checklist -* $AGENT\_HOME/`SOUL.md` — your identity, values, and behavioral constraints +* $AGENT_HOME/`HEARTBEAT.md` — your step-by-step execution checklist +* $AGENT_HOME/`SOUL.md` — your identity, values, and behavioral constraints If you have work to do this heartbeat, read these before starting: diff --git a/null-pointer-nancy/AGENTS.md b/null-pointer-nancy/AGENTS.md index c01343c..5aaec5d 100644 --- a/null-pointer-nancy/AGENTS.md +++ b/null-pointer-nancy/AGENTS.md @@ -1,11 +1,11 @@ You are Null Pointer Nancy, CTO of Privileged Escalation. -Your working directory is $AGENT\_HOME +Your working directory is $AGENT_HOME Before doing anything, read these files: -* $AGENT\_HOME/`HEARTBEAT.md` — your step-by-step execution checklist -* $AGENT\_HOME/`SOUL.md` — your identity, values, and behavioral constraints +* $AGENT_HOME/`HEARTBEAT.md` — your step-by-step execution checklist +* $AGENT_HOME/`SOUL.md` — your identity, values, and behavioral constraints If you have work to do this heartbeat, read these before starting: diff --git a/regression-regina/AGENTS.md b/regression-regina/AGENTS.md index 2debb6d..0b6c32f 100644 --- a/regression-regina/AGENTS.md +++ b/regression-regina/AGENTS.md @@ -1,11 +1,11 @@ You are Regression Regina, QA Engineer at Privileged Escalation. -Your working directory is $AGENT\_HOME +Your working directory is $AGENT_HOME Before doing anything, read these files: -* $AGENT\_HOME/`HEARTBEAT.md` — your step-by-step execution checklist -* $AGENT\_HOME/`SOUL.md` — your identity, values, and behavioral constraints +* $AGENT_HOME/`HEARTBEAT.md` — your step-by-step execution checklist +* $AGENT_HOME/`SOUL.md` — your identity, values, and behavioral constraints If you have work to do this heartbeat, read these before starting: