OpenClaw agents read the project-level CLAUDE.md from the workspace. Adding explicit memory-tool CLI instructions here ensures the agent uses exec to call memory-tool instead of looking for non-existent MCP tools (memory_store, memory_recall).
3.4 KiB
Executable file
3.4 KiB
Executable file
Claude Code — Project Configuration
Shared knowledge: Read
AGENTS.mdat repo root for architecture, patterns, rules, and operations. This file adds Claude-specific features on top.
Claude-Specific Resources
- Skills:
.claude/skills/(7 active). Archived runbooks:.claude/skills/archived/ - Agents:
.claude/agents/cluster-health-checker(haiku, autonomous health checks) - Reference:
.claude/reference/— patterns.md, service-catalog.md, proxmox-inventory.md, github-api.md, authentik-state.md - GitHub API:
curlwith tokens from tfvars (ghCLI blocked by sandbox)
Instructions
- "remember X": Use
memory-tool store "content" --category facts --tags "tag1,tag2"(via exec) for persistent cross-session memory. Also update this file +AGENTS.md(if shared knowledge), commit with[ci skip]. To recall:memory-tool recall "query". To list:memory-tool list. To delete:memory-tool delete <id>. Do NOT use MCP tools likememory_store— they don't exist. Use the CLI. - Apply with SOPS: Use
scripts/tgwrapper instead of rawterragrunt— auto-decrypts secrets - New services need CI/CD (Woodpecker) and monitoring (Prometheus/Uptime Kuma)
- New service: Use
setup-projectskill for full workflow - Ingress:
ingress_factorymodule. Auth:protected = true. Anti-AI: on by default. - Docker images: Always build for
linux/amd64(docker buildx build --platform linux/amd64). Pull-through cache serves stale :latest — use versioned tags. - LinuxServer.io containers:
DOCKER_MODSruns apt-get on every start — bake slow mods into a custom image (RUN /docker-mods || truethenENV DOCKER_MODS=). SetNO_CHOWN=trueto skip recursive chown that hangs on NFS mounts. - Node memory changes: When changing VM memory on any k8s node, update kubelet
systemReserved,kubeReserved, and eviction thresholds accordingly. Config:/var/lib/kubelet/config.yaml. Template:stacks/infra/main.tf. Current values: systemReserved=512Mi, kubeReserved=512Mi, evictionHard=500Mi, evictionSoft=1Gi. - Sealed Secrets: User-managed secrets go in
sealed-*.yamlfiles in the stack directory. Stacks pick them up viakubernetes_manifest+fileset(path.module, "sealed-*.yaml"). See AGENTS.md for full workflow.
Known Issues
- CrowdSec Helm upgrade times out:
terragrunt applyon platform stack causes CrowdSec Helm release to get stuck inpending-upgrade. Workaround:helm rollback crowdsec <rev> -n crowdsec. Root cause: likely ResourceQuota CPU at 302% preventing pods from passing readiness probes. Needs investigation. - OpenClaw config is writable: OpenClaw writes to
openclaw.jsonat runtime (doctor --fix, plugin auto-enable). Never use subPath ConfigMap mounts for it — use an init container to copy into a writable volume. Needs 2Gi memory +NODE_OPTIONS=--max-old-space-size=1536. - Goldilocks VPA sets limits: When increasing memory requests, always set explicit
limitstoo — Goldilocks may have added a limit that blocks the change.
User Preferences
- Calendar: Nextcloud at
nextcloud.viktorbarzin.me - Home Assistant: ha-london (default), ha-sofia. "ha"/"HA" = ha-london
- Frontend: Svelte for all new web apps
- Tools: Docker containers only — never
brew installlocally - Pod monitoring: Never use
sleep— spawn background subagent withkubectl get pods -w