Bake identity into the image; volume holds only runtime state
Identity (CLAUDE.md, GOALS.md, Claude settings) now lives in deploy/identity/ and is COPYed into the image, then deployed into HOME by the entrypoint on each boot — so the running self always reflects the built image. Rebuilding is what promotes an identity change (a push alone does not). quince-home is now purely the runtime volume (.ssh, notes, workspace, logs, .claude memory, gutasktool). Updated CLAUDE.md self-update loop, README (architecture + redeploy steps), and .gitignore accordingly. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
This commit is contained in:
Quince
@@ -9,6 +9,21 @@ WAKE_TIME="${WAKE_TIME:-09:00}"
|
||||
|
||||
log() { echo "[entrypoint $(date '+%Y-%m-%d %H:%M:%S %Z')] $*"; }
|
||||
|
||||
# --- 0. Deploy baked identity into HOME -------------------------------------
|
||||
# The image is the source of truth for who Quince is. Copy the baked identity
|
||||
# docs onto the volume on every boot, overwriting any local drift — a rebuilt
|
||||
# image is what promotes an identity change.
|
||||
IDENTITY_SRC="/opt/quince/identity"
|
||||
mkdir -p "$HOME_DIR/.claude"
|
||||
if [ -d "$IDENTITY_SRC" ]; then
|
||||
cp -f "$IDENTITY_SRC/CLAUDE.md" "$HOME_DIR/CLAUDE.md"
|
||||
cp -f "$IDENTITY_SRC/GOALS.md" "$HOME_DIR/GOALS.md"
|
||||
cp -f "$IDENTITY_SRC/claude-settings.json" "$HOME_DIR/.claude/settings.json"
|
||||
log "Identity deployed from image ($IDENTITY_SRC) → $HOME_DIR."
|
||||
else
|
||||
log "WARNING: no baked identity at $IDENTITY_SRC."
|
||||
fi
|
||||
|
||||
# --- 1. SSH: lock down perms and trust ramanujan ----------------------------
|
||||
mkdir -p "$HOME_DIR/.ssh" "$HOME_DIR/workspace" "$HOME_DIR/notes" "$HOME_DIR/logs"
|
||||
chmod 700 "$HOME_DIR/.ssh" || true
|
||||
|
||||
Reference in New Issue
Block a user