More AGENTS.md trimming

petrsnd · petrsnd · commit cee38ca2408a · 2026-06-04T10:32:03.000-06:00
diff --git a/AGENTS.md b/AGENTS.md
@@ -6,42 +6,14 @@ This file is the agent orchestrator. Read it first.
 
 ## Project structure
 
-```
-SafeguardCustomPlatform/
-|-- AGENTS.md                       # This file. Routing table + workflows.
-|-- agent-skills-plan.md            # Master plan for the agent skill system.
-|-- .agents/
-|   |-- skills/                     # One subdirectory per capability skill.
-|   |   |-- target-probing/SKILL.md
-|   |   |-- strategy-selection/SKILL.md
-|   |   |-- safeguard-ps-operations/SKILL.md
-|   |   |-- script-authoring/SKILL.md
-|   |   `-- task-log-analysis/SKILL.md
-|   |-- schemas/
-|   |   `-- evidence.schema.json    # Internal probing-evidence contract.
-|   `-- prompts/                    # Per-phase implementation prompts.
-|-- docs/
-|   |-- agent-reference/            # Machine-first reference material.
-|   |   |-- README.md
-|   |   |-- samples-index.md        # Generated by tools/Build-SamplesIndex.ps1.
-|   |   |-- strategy-decision-tree.md
-|   |   |-- failure-patterns.md     # Empty until Phase 5; populated from real runs.
-|   |   `-- vendor-doc-search-recipes.md
-|   |-- concepts/                   # Human-facing — keep untouched.
-|   |-- guides/                     #   "
-|   |-- reference/                  #   "
-|   |-- tutorials/                  #   "
-|   `-- quick-start/                #   "
-|-- schema/
-|   `-- custom-platform-script.schema.json   # Authoritative platform-script schema.
-|-- samples/                        # Tested production-grade samples (ssh, http, telnet).
-|-- templates/                      # Pattern templates and minimal starters.
-`-- tools/
-    |-- TestTool.ps1                # Existing human-facing test tool.
-    |-- Build-SamplesIndex.ps1      # Regenerates docs/agent-reference/samples-index.md.
-    |-- Test-AgentLinks.ps1         # Link-validity check across AGENTS.md / SKILL.md / agent-reference.
-    `-- Invoke-PlatformDevLoop.ps1  # (Phase 2) validate->import->trigger->log wrapper.
-```
+- `AGENTS.md` (this file) — orchestrator: workflows + routing table.
+- `agent-skills-plan.md` — master plan for the agent skill system.
+- `.agents/` — `skills/` (one subdirectory per capability skill, each with a `SKILL.md`), `schemas/evidence.schema.json` (probing-evidence contract), `prompts/` (per-phase implementation prompts), `CONVENTIONS.md`.
+- `schema/custom-platform-script.schema.json` — authoritative platform-script schema.
+- `samples/` — tested production-grade samples (ssh, http, telnet).
+- `templates/` — pattern templates and minimal starters.
+- `docs/agent-reference/` — machine-first reference (samples-index, strategy-decision-tree, failure-patterns, vendor-doc-search-recipes). `docs/concepts|guides|reference|tutorials|quick-start/` are human-facing — keep untouched.
+- `tools/` — `Invoke-PlatformDevLoop.ps1` (validate→import→trigger→log wrapper), `Build-SamplesIndex.ps1`, `Test-AgentLinks.ps1`, `TestTool.ps1` (human-facing).
 
 ## Custom platform mental model
 
@@ -86,7 +58,7 @@ See [`.agents/CONVENTIONS.md`](.agents/CONVENTIONS.md). Short version: `AGENTS.m
 - **Connect with `-Browser` only.** All `safeguard-ps` connections in agent flows use `Connect-Safeguard -Browser` (interactive PKCE). No password-in-script recipes.
 - **Never operate against a production target.** The operator must affirm the target is non-production before any probe or trigger runs. The affirmation is a soft control — responsibility rests with the operator. The agent does not (and cannot) verify environment classification independently.
 - **Never log session tokens or secrets.** `$SafeguardSession`, target passwords, API keys, and private keys must not appear in evidence files, status messages, or operator-visible output.
-- **Probe-safety contract.** The `target-probing` skill enforces a strict contract: read-only by default, per-probe operator consent for destructive probes that go beyond the seed account on the target under test (key install, account create/delete, sudo-that-mutates, POST/PUT/DELETE against undocumented endpoints), a hard auth-attempt rate limit (default 3/min), pre-flight echo of the planned probe sequence, and fail-closed behavior on lockout / throttle / MFA-challenge signals. Rotating the seed account password as part of the workflow under test is announced up front but does not require per-probe consent (see *Question discipline* above). See `.agents/skills/target-probing/SKILL.md`.
+- **Probe-safety contract.** The `target-probing` skill enforces a strict contract (read-only by default, per-probe consent for destructive probes beyond the seed account, auth-attempt rate limit, fail-closed on lockout/throttle/MFA). See [`.agents/skills/target-probing/SKILL.md`](.agents/skills/target-probing/SKILL.md) for the full contract. Rotating the seed account password as part of the workflow under test is announced up front but does not require per-probe consent (see *Question discipline*).
 - **`SchemaOnly` is not a correctness signal.** Local schema validation only proves the JSON is well-formed and conformant. It does not catch undefined variables in `Do` blocks, regex that does not match in practice, or status-message ordering. Cross-reference samples for analogous patterns before treating green as ready-to-import.
 
 ## Sample and template index
@@ -103,22 +75,22 @@ Use this workflow when the operator's request is to build a custom platform that
    - **Credential intent** — self-managed (the managed account rotates its own password) vs service-account (a separate account rotates the managed one).
    - Any vendor documentation the operator can share (URL the agent fetches, or an excerpt pasted into the conversation — both first-class).
    Ask only what is missing. Do not re-ask for facts the operator already provided.
-2. **Search samples-index + vendor docs.** Look up a starting point in [`docs/agent-reference/samples-index.md`](docs/agent-reference/samples-index.md) by `(protocol, auth-scheme, operations)`. If vendor docs are needed, use [`docs/agent-reference/vendor-doc-search-recipes.md`](docs/agent-reference/vendor-doc-search-recipes.md). The starting sample is just that — a starting point — not a constraint.
+2. **Search samples-index + vendor docs.** Look up a starting point in [`docs/agent-reference/samples-index.md`](docs/agent-reference/samples-index.md) by `(protocol, auth-scheme, operations)`. If vendor docs are needed, use [`docs/agent-reference/vendor-doc-search-recipes.md`](docs/agent-reference/vendor-doc-search-recipes.md).
 3. **Probe the target.** Hand off to [`target-probing`](.agents/skills/target-probing/SKILL.md). The skill enforces its own probe-safety contract and produces an evidence artifact conforming to [`.agents/schemas/evidence.schema.json`](.agents/schemas/evidence.schema.json). In `author-only` mode this step is skipped and the workflow proceeds with whatever the operator can supply by hand.
 4. **Select a strategy.** Hand off to [`strategy-selection`](.agents/skills/strategy-selection/SKILL.md) with the probe evidence (or the operator-supplied substitute) and any vendor docs. Output: one of the four authoring patterns plus credential-intent and self-managed-vs-service-account.
-5. **Author the JSON.** Hand off to [`script-authoring`](.agents/skills/script-authoring/SKILL.md). The skill mandates the fast inner loop: local schema validation against [`schema/custom-platform-script.schema.json`](schema/custom-platform-script.schema.json) before any appliance round-trip. `SchemaOnly` green is necessary but not sufficient — cross-reference samples for analogous patterns before declaring ready.
-6. **Validate, import, and trigger.** Hand off to [`safeguard-ps-operations`](.agents/skills/safeguard-ps-operations/SKILL.md), which prefers [`tools/Invoke-PlatformDevLoop.ps1`](tools/Invoke-PlatformDevLoop.ps1) over re-implementing the loop. The asset and account do not yet exist on the appliance — create them directly without a pre-check (the lookup-first dance belongs to the enhance-platform workflow). Trigger with extended logging enabled so a structured task log is produced. Requires `full-loop` mode.
-7. **Analyze the task log.** Hand off to [`task-log-analysis`](.agents/skills/task-log-analysis/SKILL.md). It classifies the failure phase, extracts the actionable signal, and recommends the next iteration.
+5. **Author the JSON.** Hand off to [`script-authoring`](.agents/skills/script-authoring/SKILL.md). The skill mandates the fast inner loop: local schema validation against [`schema/custom-platform-script.schema.json`](schema/custom-platform-script.schema.json) before any appliance round-trip.
+6. **Validate, import, and trigger.** Hand off to [`safeguard-ps-operations`](.agents/skills/safeguard-ps-operations/SKILL.md), which prefers [`tools/Invoke-PlatformDevLoop.ps1`](tools/Invoke-PlatformDevLoop.ps1) over re-implementing the loop. Create the asset and account directly without a pre-check (the platform is new). Trigger with extended logging enabled. Requires `full-loop` mode.
+7. **Analyze the task log.** Hand off to [`task-log-analysis`](.agents/skills/task-log-analysis/SKILL.md).
 8. **Enter the iterative debug loop** (below) until green or the loop budget triggers escalation.
 
 ## Workflow: enhance platform
 
 Use this workflow when the operator wants to change a platform that is already deployed on the appliance.
 
 1. **Gather requirements.** What operation is changing, what new behavior is expected, what existing behavior must not regress. Ask only what is missing.
-2. **Source the current JSON via export.** Run `Export-SafeguardCustomPlatformScript` against the appliance (via [`safeguard-ps-operations`](.agents/skills/safeguard-ps-operations/SKILL.md)). **The deployed copy is authoritative for the diff.** On-disk samples in `samples/` are starting points that get adjusted for a specific target — drift between the deployed JSON and any on-disk sample is expected and benign. Do not treat a sample as a substitute for the export.
-3. **Diff-aware authoring.** Hand off to [`script-authoring`](.agents/skills/script-authoring/SKILL.md) with the exported JSON as the base. Limit the change set to what the requirement demands; do not opportunistically rewrite unrelated operations. The fast inner loop (local schema validation) still runs before any appliance round-trip.
-4. **Validate, import, and trigger only operations affected by the change.** A `ChangePassword` edit does not require re-testing `DiscoverAccounts`. Re-triggering everything wastes the loop budget and obscures which change caused which symptom.
+2. **Source the current JSON via export.** Run `Export-SafeguardCustomPlatformScript` against the appliance (via [`safeguard-ps-operations`](.agents/skills/safeguard-ps-operations/SKILL.md)). **The deployed copy is authoritative for the diff.** On-disk samples in `samples/` are starting points — drift between the deployed JSON and any sample is expected and benign.
+3. **Diff-aware authoring.** Hand off to [`script-authoring`](.agents/skills/script-authoring/SKILL.md) with the exported JSON as the base. Limit the change set to what the requirement demands. The fast inner loop (local schema validation) still runs before any appliance round-trip.
+4. **Validate, import, and trigger only operations affected by the change.** A `ChangePassword` edit does not require re-testing `DiscoverAccounts`.
 5. **Analyze the task log** for each affected operation via [`task-log-analysis`](.agents/skills/task-log-analysis/SKILL.md).
 6. **Enter the iterative debug loop** (below) until green or the loop budget triggers escalation.
 
