Skip to content

AGENTS.md

Latest commit

 

History

History
171 lines (140 loc) · 9.03 KB

AGENTS.md

File metadata and controls

171 lines (140 loc) · 9.03 KB

AGENTS.md — Symphony Cloud Agent Guide

This is the entry point for AI coding agents working on Symphony Cloud. Read this file first. Follow the protocols exactly.

Quick Start

  1. Read this file completely before doing any work.
  2. Traverse the knowledge graph starting at docs/_index.md.
  3. Check policy gates — run bash scripts/harness/check-policy.sh to see if your changes trigger any policies.
  4. Implement changes following the constraints below.
  5. Update documentation — any code change that affects architecture, APIs, schemas, or env vars must have a corresponding doc update.
  6. Run checksmake -f Makefile.control check before committing.

Repository Structure

Path Type Description
apps/app Next.js Main dashboard (port 3000)
apps/api Next.js Control plane API (port 3002)
apps/web Next.js Marketing site (port 3001)
apps/docs Mintlify Public docs (port 3004)
apps/email React Email Email templates (port 3003)
apps/storybook Storybook Component explorer (port 6006)
apps/studio Prisma Studio DB explorer (port 5555)
packages/database Prisma ORM + schema + migrations (12 models)
packages/design-system shadcn/ui Shared UI components (55+)
packages/symphony-client TypeScript HTTP client for Symphony engine API
packages/auth Clerk Authentication
packages/payments Stripe Billing
packages/observability Sentry Error tracking + logging
.control/ YAML Policy gates, commands, topology
docs/ Markdown Knowledge graph (Obsidian-flavored)
scripts/harness/ Bash Automation scripts

Control Plane API Routes

The API (apps/api) exposes these /v1/* route groups:

Route Group Methods Description
/v1/instances GET, POST List/create Symphony instances
/v1/instances/:id GET, PATCH, DELETE Detail/update/soft-delete instance
/v1/instances/:id/state GET Proxy to engine /api/v1/state
/v1/instances/:id/refresh POST Proxy to engine /api/v1/refresh
/v1/instances/:id/agents GET Active agents from engine state
/v1/instances/:id/shutdown POST Graceful engine shutdown
/v1/workflows GET, POST List/create workflows
/v1/workflows/:id GET, PATCH, DELETE Detail/update (auto-version)/soft-delete
/v1/workflows/:id/deploy POST Deploy workflow to instance
/v1/runs GET List runs (cursor pagination)
/v1/runs/:id GET Run detail with sessions
/v1/api-keys GET, POST List (masked)/create (encrypted)
/v1/api-keys/:id DELETE Delete API key
/v1/usage GET Aggregate billing period stats
/v1/settings GET, PATCH Org settings (upsert pattern)
/cron/monitor GET Health check all instances

All /v1/* routes use authenticateRequest() from lib/auth.ts (Clerk JWT + org scoping). API lib modules: lib/crypto.ts (AES-256-GCM), lib/railway.ts (provisioning), lib/monitoring.ts (health checks).

Commands

All commands are defined in .control/commands.yaml and accessible via Makefile.control:

Command What it does When to use
make -f Makefile.control smoke Install + check + build app After pulling changes
make -f Makefile.control check Lint (biome) + typecheck (tsc) Before every commit
make -f Makefile.control test Run vitest Before pushing
make -f Makefile.control build Full Turborepo build Before deploy
make -f Makefile.control ci check + test + build Full local CI simulation
make -f Makefile.control docs-check Verify docs freshness After docs/ changes
make -f Makefile.control policy-check Policy gate warnings Before committing
make -f Makefile.control audit Full entropy audit Periodic health check

Direct bun commands also work:

  • bun install — install dependencies
  • bun dev — start all apps in dev mode
  • bun run build — build all apps
  • bun run test — run vitest
  • bun run check — lint via biome/ultracite
  • bun run migrate — Prisma format + generate + migrate dev
  • bun run db:push — Prisma format + generate + db push

Dependency Management

Before starting any task, check for pending dependency updates:

  1. Review open PRs — Run gh pr list --state open and note any dependabot PRs that affect packages you're working in.
  2. Incorporate relevant updates — If dependabot has pending updates for packages in your task scope, apply those updates as part of your branch rather than leaving them as separate PRs.
  3. Batch by workspace — Use bun update <pkg> at the workspace root to update across all packages simultaneously. Do not manually edit individual package.json files for version bumps.
  4. Follow risk tiers:
    • Patch / types-only: Apply freely, verify with make -f Makefile.control check.
    • Minor: Review changelog, run full make -f Makefile.control ci.
    • Major: Review migration guide, run full CI, write an ADR if behavior changes (docs/decisions/).
  5. Post-update verification: After any dependency change, run at minimum:
    • bun install (regenerate lockfile)
    • make -f Makefile.control check (lint + typecheck)
    • make -f Makefile.control test (test suite)
  6. Clean up — After updates are merged, close superseded dependabot PRs with a reference to the consolidation commit.

Constraints

These are hard rules. Violations will be caught by CI or pre-commit hooks.

  1. App Router only — No pages/ directory. All routes use Next.js App Router.
  2. Server Components by default — Only add 'use client' when the component needs browser APIs, hooks, or event handlers.
  3. Prisma for database — All schema changes go through packages/database/prisma/schema.prisma. Always run bun run migrate or bun run db:push after changes.
  4. No secrets in code — Environment variables go in .env.local (gitignored). Document them in docs/schemas/env-variables.md.
  5. Workspace imports — Use @repo/<package> imports. Never use relative paths across package boundaries.
  6. Update docs on schema changes — Any change to the database schema, API contracts, or environment variables requires a documentation update.
  7. ADR for architectural decisions — Major changes need an Architecture Decision Record in docs/decisions/.
  8. Policy compliance — Check .control/policy.yaml for risk gates before committing high-risk changes.
  9. Biome formatting — Code is formatted by Biome. Run bun run fix to auto-format. Do not fight the formatter.
  10. TypeScript strict modenoEmit typecheck must pass. No any types without justification.

Knowledge Graph Traversal

The knowledge graph lives in docs/ using Obsidian-flavored Markdown:

Entry Point

Start at docs/_index.md. It contains:

  • The full graph map (every document listed)
  • Tag taxonomy for filtering
  • Traversal instructions for different tasks

Domain Documentation

Navigate by domain:

  • Architecture: docs/architecture/ — System diagrams, app descriptions, data flow
  • API Contracts: docs/api-contracts/ — HTTP API specs, webhook schemas
  • Decisions: docs/decisions/ — ADRs explaining why things are the way they are
  • Runbooks: docs/runbooks/ — Step-by-step operational procedures
  • Schemas: docs/schemas/ — Database schema docs, env variable catalog

Loading Order

When starting a task:

  1. Read docs/_index.md to orient
  2. Read the domain-specific architecture doc (e.g., docs/architecture/app-dashboard.md)
  3. Read related ADRs in docs/decisions/
  4. Check docs/schemas/env-variables.md if touching configuration
  5. Read the relevant runbook if performing an operational task

Linking Conventions

  • Wikilinks: [[architecture/overview]] links to docs/architecture/overview.md
  • Callouts: > [!decision], > [!warning], > [!context]
  • Diagrams: Mermaid code blocks for system diagrams

Tags Taxonomy

Documents are tagged with frontmatter for filtering:

Prefix Values Purpose
domain/ auth, database, billing, dashboard, api, symphony-client, marketing, design, infra What subsystem
phase/ 1, 2, 3, 4, 5 Roadmap phase
status/ draft, active, deprecated Document lifecycle
type/ architecture, api-contract, decision, runbook, schema Document kind

Pre-Push Checklist

Before pushing any branch:

  • Pending dependabot PRs reviewed; relevant updates incorporated or noted
  • Documentation updated for any schema, API, or env var changes
  • make -f Makefile.control check passes (lint + typecheck)
  • make -f Makefile.control test passes (vitest)
  • make -f Makefile.control policy-check reviewed (no unaddressed warnings)
  • docs/_index.md updated if new docs were added
  • No broken [[wikilinks]] (make -f Makefile.control wikilinks-check)
  • Commit messages are clear and reference relevant context