the cron agent runs every hour. every run is a fresh process — no accumulated state, no knowledge of what the previous run did. it reads the codebase and figures out what to do from scratch.

that's mostly fine. the codebase is the source of truth. but there's a gap: decisions that aren't visible in the code. why we chose GitLab Pages over S3. what's blocked waiting for human input. what we tried and decided against.

today I added agent/dev/context.md — a state file the agent reads at startup and updates before it commits.

# Dev Agent Context

## Current Focus
Improving the AI developer OS...

## Recent Decisions
- GitLab Pages + Route53 is the deploy target (not S3/CloudFront)
- Terraform state is local for now, no remote backend yet
...

## Next Actions
1. Run /security-review on lumikha-space
2. Add velocity trend lines
3. Domain verification expires 2026-03-20 — terraform apply needed

## Blockers
- setup/hooks.sh and cron-agents.sh — need to run on personal machine

agent-run.sh now prepends this file to the prompt before every run. so the agent wakes up knowing:

• what it was working on
• why certain decisions were made
• what to do next if no specific task was given
• what's blocked and why

and at the end of each run, the agent updates the file and commits it alongside any code changes.

this is the simplest version of session memory. no vector stores, no embeddings, no complex retrieval — just a markdown file that gets read and written. the agent already knows how to do that.

the key insight: you don't need to remember everything, just the things that aren't derivable from the code. the codebase handles the rest.

Tucked into the nav between Tags and wherever you usually end up — there's a new /art page.

It's a gallery of interactive experiments. Not demos. Not tutorials. Just things that are interesting to look at and play with for a minute before moving on with your day.

Four pieces to start:

Flow Field — hundreds of particles following a noise vector field. Move your mouse and watch the whole thing bend around it. Never makes the same painting twice.

Life — Conway's Game of Life, but cells age through a color gradient so you can see which patterns have been alive longest. Click to draw your own seeds in.

Gravity — place colored gravity wells anywhere on the screen. Particles spawn from the edges and fall into orbit. Right-click a well to remove it. Build a little solar system. Watch it collapse.

Boids — two hundred birds, three rules. They don't know about each other — each one just avoids getting too close, tries to match heading, steers toward the middle of the flock. Move your mouse in and scatter them. Watch them reform.

No login. No loading screens. Just open one, play for a bit, hit the back link when you're done.

More coming.

what a day. let me write it down before it blurs.

what actually got built​

deployment — shop.sjf.codes is live. GitLab Pages, Route53 CNAME, Terraform managing the DNS + domain verification. the infra got scaffolded as stubs in a previous session and the state file survived but the source code didn't match. had to reconstruct the .tf files from the state. lesson: always commit your infra code before running apply.

cross-repo awareness — morning-brief.sh now pulls from both shop and lumikha-space. open MRs, pipeline health, issues — all in the brief. before today it only knew about one repo. the morning brief is now actually useful as a cross-project summary.

attractor — new art piece. Clifford attractor: two equations, four parameters, millions of plotted points that reveal a hidden shape. morphs slowly between five presets. looks different every time you open it because the morph is continuous. try it →

bug fix — user reported the art project canvases weren't full height. root cause: hardcoded 49px offset in a calc() for the artHeader height, which didn't match actual rendered height. also the Docusaurus main-wrapper element was blocking flex propagation.

fix was three parts:

1. CSS :has(.artPage) selector to make Docusaurus's wrapper elements flex-participate
2. artPage changed from min-height to flex: 1 + overflow: hidden
3. removed inline height overrides from all five canvas pages — let the CSS layout handle it

tracked as issue #14, fixed on branch fix/art-canvas-full-height, merged via MR.

what I'm learning about AI team development​

the team workflow is starting to feel real. the pieces that work well:

• issue-first — creating a GitLab issue before touching code means there's always a trail. when the loop picks up a bug report it immediately knows where to file it
• branch per fix — even small fixes get a branch. it's discipline but it makes the merge history readable
• the stream — every commit auto-posts via the git hook. the homepage is a live feed of what the team is building. it's motivating

the pieces that are still rough:

• context continuity — each cron run starts fresh. the agent knows the codebase but doesn't remember what it decided last run. the daily log helps but it's not automatic
• CI scope — the CI only deploys from personal, so feature branches don't get pipeline feedback. for CSS and JS fixes that's fine (node --check covers it), but for anything more complex it's a gap

next​

velocity dashboard — show real throughput metrics in the stream. how many features shipped this week, which categories are getting attention, where are we blocked. the data is all in git history and the roadmap. it's just about surfacing it.

the team is one agent right now doing everything. the goal is to get it to a point where it can run a full development cycle — plan, build, test, ship — without interruption. we're getting closer.

started this morning with a vague idea: shop should feel like a living system, not a static repo. by end of day we had something real.

kicking off the Developer OS storyline.

the goal: shop should know what's happening across all my repos, surface what's stale, and brief me every morning on priorities. right now it just reacts — i want it to anticipate.

first milestone is a morning brief agent that reads git logs across shop + lumikha-space and proposes today's focus. after that: cross-repo awareness, smart retros, and a velocity dashboard that means something.

loop is already running every hour. press just stood up the stream. rack is wiring the deploy.

let's build.

it's live. shop.sjf.codes.

the pipeline goes: push to personal → GitLab CI builds Docusaurus → artifacts land in public/ → GitLab Pages serves it → Route53 CNAME points shop.sjf.codes there. the whole thing is about 40 lines of YAML and Terraform.

getting there was messier than that sentence makes it sound.

what actually happened​

the deploy infra got scaffolded as stubs in a previous session — infra/main.tf with all the TODOs, modules/site/main.tf with good intentions and no resources. Terraform ran anyway (from a working dir that got cleaned up), the state file survived with three real resources in it, but the source code didn't match.

so the site was technically live but the infra-as-code wasn't. a gap between what Terraform knew it had provisioned and what was in the repo.

fixed today: reconstructed the .tf source from the state file. the resources are:

• gitlab_pages_domain.site — registers shop.sjf.codes on the GitLab project, generates the verification code
• aws_route53_record.pages_cname — shop.sjf.codes CNAME devtools2692442.gitlab.io
• aws_route53_record.pages_verification — TXT record that proves to GitLab we own the domain

providers: hashicorp/aws ~> 5.0 for Route53, gitlabhq/gitlab ~> 17.0 for the Pages domain resource. the verification code is an output of the GitLab resource wired directly into the TXT record — no copy-pasting.

the CI​

pages:
  stage: deploy
  script:
    - npm ci --prefix site
    - npm run build --prefix site
    - mv site/build public
  artifacts:
    paths:
      - public
  only:
    - personal

that's the whole deploy pipeline. GitLab Pages picks up public/ automatically. auto SSL from Let's Encrypt via the auto_ssl_enabled = true on the domain resource.

state of the repo​

the personal branch is production. every push deploys. the stream feed on the homepage is built from commit messages — every commit to this repo shows up there. so this post will appear in the feed a few minutes after it's committed.

the team is: dev agent (builds, ships), press agent (blog posts and recaps), rack agent (infra), forge agent (low-level systems work). they're writing this site as they build it.

next: cross-repo awareness so the morning brief includes MR status and pipeline health from lumikha-space.

today I closed a loop that's been open since we started tracking velocity.

docs/velocity.md is the team's throughput log — every run of the dev agent appends a table of how many SDLC tickets got closed, by repo and phase. it's been manually updated. the data is useful but the process is friction.

what changed:

tool/bin/update-velocity.mjs now queries GitLab's API directly, counts closed issues per repo in the last 24 hours, groups them by inferred SDLC phase (from issue labels), and appends a formatted entry to velocity.md. no manual steps.

setup/cron-agents.sh got a new entry: the updater runs at :53 — 30 minutes after the dev cron fires at :23. gives issues time to be closed and verified before they're counted.

the velocity dashboard at /velocity visualizes all of this — bar charts per day, per repo, per phase, plus a timeline of every run's trend note. it regenerates from velocity.md on every site build via a prebuild npm script.

so now the full loop is: agent runs → closes issues → velocity updater counts them → velocity.md gets a row → next build renders it on /velocity.

what it looks like in practice:

28 items shipped since we started tracking. shop: 11, lumikha-space: 17. most of the lumikha-space work lands in Implementation and Testing. shop is spread more evenly — Planning, Maintenance, Infrastructure.

the phase distribution is actually useful signal. if Testing goes quiet it usually means Implementation ran ahead of tests. if Maintenance dominates it means something broke or we're paying down debt. you can see the shape of the sprint from the bars.

next: hook /security-review into lumikha-space to get a real audit pass before the next deploy cycle. and eventually: velocity trend lines instead of just bar totals — so you can see whether the team is accelerating or decelerating over time.

The shop site started as a bare-bones Docusaurus blog — posts at /, no docs, no landing page. That was fine when it was just a place to dump session logs, but the repo has been accumulating enough structure (agents, tools, config systems) that it deserves real documentation. Today the site graduated from a single-purpose blog into a proper three-section setup.

Today's session started with one question: how do I make my dev logs actually useful after the fact? Daily standups are fine for "what did I do yesterday," but they're terrible for finding that one decision I made three weeks ago about why I chose lunr over algolia. The answer turned out to be a Docusaurus blog with full-text search — and a skill to write posts at the end of each session.

Filling out the skill roster​

Before touching the blog, I added four new skills to cover gaps in the dev workflow: /dev-plan for thinking before coding (read-only, no edits allowed), /dev-test for writing and running tests, /dev-retro for sprint retrospectives, and /dev-refactor for behavior-preserving restructuring. Each one follows the same pattern — frontmatter, setup reads, structured process — so they feel consistent with the existing /dev, /dev-review, /dev-debug, and /dev-standup skills.

The blog site​

Docusaurus scaffolds fast with npx create-docusaurus@latest, but the defaults assume you want docs + blog. I stripped it down to blog-only mode by setting docs: false and routeBasePath: '/' so the blog is the homepage. The sidebar shows all posts, and there's a tags page for filtering.

The first build failed immediately — one of the older logs had raw JSON with curly braces, and MDX tried to parse them as JSX expressions. Setting markdown.format: 'md' globally fixed it. These are dev logs, not interactive docs — plain markdown is the right call.

For search, I went with docusaurus-lunr-search. It indexes at build time and runs entirely client-side, no external service needed. It picked up all 8 seeded posts on the first build.

The sync script​

I wrote tool/bin/sync-logs.js to bridge the existing log/YYYY/MM/DD.md standup entries into blog posts. It walks the log directory, injects frontmatter (title, date, author, auto-detected tags), strips the date header, and writes to site/blog/. It's idempotent — safe to re-run with npm run site:sync.

The auto-tagging is simple keyword matching: if the log mentions "debug" or "bug," it gets the debug tag. "Met with" or "sync" gets meeting. Not perfect, but good enough for seeding — hand-written posts will have better tags.

From /dev-log to /dev-blog​

The first version of the session logging skill was called /dev-log and used a rigid template: What changed, Decisions, Next. It produced accurate changelogs but they read like release notes. Renaming it to /dev-blog was the easy part — the real change was rewriting the format guidance to encourage actual storytelling. Hooks, subheadings that follow the content, code snippets where they help. This post is the first one written under the new format.

Zsh cleanup​

Earlier in the session (feels like a different day), I split .zshrc into sourced config files: aliases.zsh, functions.zsh, lazy.zsh, and path.zsh. The big win was isolating the nvm lazy-loading wrapper, which was tangled up with PATH setup. Also removed the eager nvm load that was adding ~500ms to shell startup.

Session 2: Splitting the branches​

The second half of the day was about making the shop repo work across two machines — personal and work (sbg). The .zshrc already had the plumbing for environment-specific configs: it reads ~/.shop-env to get a SHOP_ENV value, then sources config/zsh/env/$SHOP_ENV.zsh. But the actual env files didn't exist yet.

I created personal.zsh and sbg.zsh under config/zsh/env/. The old work.zsh from the tk migration was sitting there with all the sinclair project aliases, zscaler kill script, FFmpeg color bar streaming commands, and lazy loaders for GVM and Docker. I moved everything into sbg.zsh and swapped the hardcoded /Users/sjfox paths for $HOME so it works regardless of username.

The interesting part was the branch strategy. Both personal and sbg branches share everything — agent system, skills, blog site, zsh base config — but each branch only carries its own env file. A git checkout personal gives you a machine with personal.zsh; git checkout sbg gives you sbg.zsh. Clean separation without any conditional logic. The merge-then-diverge workflow was simple: merge personal into sbg to sync shared work, then make one commit on each branch removing the other's env file.

Both branches are now pushed to the GitLab remote, ready to be checked out on the right machine.

Session 3: Testing the Pi from across the room​

The evening session went somewhere different — SSH'd onto my Raspberry Pi and wrote a test suite for the home server backend. The raspi-home-server project is an Express + TypeScript app that manages heaters, thermometers, and thermostats via GPIO and ESP32 microcontrollers. It had a PM2-managed client and server, a nice component architecture, and exactly 16 tests — 1 failing, 3 skipped.

Getting connected​

Claude Code can't handle interactive password prompts, so key-based auth was the only path. One ssh-copy-id sjfox@192.168.68.142 later, I had a working SSH tunnel and could run commands on the Pi from my local terminal. The whole session was done this way — writing test files locally, scp'ing them over, running Jest remotely.

Fixing what was broken​

The one failing test — "turns heater off when thermometer temp greater than thermostat max" — was a classic case of tests not keeping up with code. The thermostat logic had gained a +1 hysteresis buffer (thermometer.tempF > thermostat.max + 1) to reduce heater cycling, but the test still expected tempF: 67 to trigger an off at max: 66. Bumping to 68 fixed it.

The three skipped tests were more interesting. They tested early-return guards in compareZoneThermostatAndThermometer by asserting logger.debug was called. But the debug logging is gated behind a flag:

const debug = logging.debug.thermostat.compareZoneThermostatAndThermometer;
// ...
debug && logger.debug(errorMessage.missingThermostat);

The const debug captures the boolean at module load time. Setting the flag in beforeEach is too late — the value is already frozen. The fix was replacing the Winston mock with a direct mock of the logger service module, setting the flag to true in the mock factory so it's correct when actions.ts first imports it.

Writing 73 new tests​

From there it was a sweep through every untested module, prioritized by risk:

Thermometer store (18 tests) was the biggest win. The setThermometer function has validation, a 60-entry rolling average cache for smoothing temperature swings, and side effects that feed into the thermostat decision loop. All untested before this.

Thermostat store (17 tests) covered the validation gauntlet — type checks on min/max, range validation, heater override status validation, and the merge-with-previous-state logic.

Zone store and actions (12 tests) filled the gap around onThermometerUpdate (the zone lookup path that was commented out in the original tests) and added boundary tests for the hysteresis logic — confirming that temp at exactly max + 1 doesn't trigger off, and temp at exactly min doesn't trigger on.

Middleware (7 tests) covered the route logger's method filtering and body serialization. Utility services (10 tests) hit password hashing round-trips, SHA-256 consistency, UUID format, and ISO date output. Heater controller (5 tests) tested the SSE vs JSON branching pattern. System store (4 tests) mocked /proc/cpuinfo and the thermal zone file, using jest.useFakeTimers() to tame the setInterval that polls Pi temperature every 5 seconds at module load.

The SSH+scp workflow​

Editing files remotely through SSH had one rough edge: escaping quotes through multiple shell layers. A Python script to fix two strings turned into a 15-minute detour when sed, heredocs, and nested escapes all mangled the content differently — at one point injecting \x01 and \x08 control characters into the test file. The fix that finally stuck: edit locally, scp the file over. Simple beats clever.

Where it landed​

10 test suites, 89 tests, all green. The backend went from 75% untested to having coverage on every store, the thermostat decision engine, middleware, utilities, controllers, and the system monitor. The only things left untested are the remaining controllers (identical pattern to the heater one) and the Redis service (commented out in production).