create-ironclaws 1.0.0

package/template/agent-credentials.yaml

@@ -0,0 +1,33 @@
+# agent-credentials.yaml — Security scope for each agent.
+#
+# Controls what each agent is allowed to see inside its container:
+#   config:  env vars forwarded from .env (no secrets by default)
+#   skills:  SKILL.md files available (dangerous skills must be explicitly opted in)
+#   tools:   Python scripts mounted at /workspace/extra/tools/
+#
+# Dangerous skills (edit-agent, agent-browser, agent-status) are NOT in common —
+# they must be explicitly listed per-agent.
+
+common:
+  skills:
+    - capabilities
+    - status
+    - slack-formatting
+  tools: []
+  config:
+    - ANTHROPIC_BASE_URL
+    - ANTHROPIC_BEDROCK_BASE_URL
+    - ANTHROPIC_MODEL
+    - ANTHROPIC_SMALL_FAST_MODEL
+    - ANTHROPIC_DEFAULT_SONNET_MODEL
+    - ANTHROPIC_DEFAULT_HAIKU_MODEL
+    - ANTHROPIC_DEFAULT_OPUS_MODEL
+    - CLAUDE_CODE_USE_BEDROCK
+    - CLAUDE_CODE_SKIP_BEDROCK_AUTH
+    - CLAUDE_CODE_API_KEY_HELPER_TTL_MS
+
+agents:
+  forge:
+    skills: []
+    tools: []
+    config: []

package/template/agents.yaml

@@ -0,0 +1,22 @@
+# agents.yaml — Your agent fleet.
+#
+# Add an entry here for each agent. Set the corresponding channel ID env var
+# in .env — IronClaws auto-registers agents on startup.
+#
+# Fields:
+#   folder:           Group folder name (under groups/)
+#   name:             Display name shown in Slack
+#   trigger:          Trigger word (e.g. "@Argus")
+#   channel_env:      Env var holding the Slack channel ID (set in .env)
+#   requires_trigger: Whether the agent waits for the trigger word (default: false)
+#   onecli_secrets:   Secrets to link in OneCLI (auto-registered on startup)
+#   onecli_id:        Stable UUID — generate with: python3 -c "import uuid; print(uuid.uuid4())"
+
+agents:
+  - folder: forge
+    name: "Forge"
+    trigger: "@Forge"
+    channel_env: FORGE_CHANNEL_ID
+    requires_trigger: false
+    onecli_secrets: [litellm]
+    onecli_id: 00000000-0000-0000-0000-000000000001

package/template/container/Dockerfile

@@ -0,0 +1,70 @@
+# NanoClaw Agent Container
+# Runs Claude Agent SDK in isolated Linux VM with browser automation
+
+FROM node:22-slim
+
+# Install system dependencies for Chromium
+RUN apt-get update && apt-get install -y \
+    chromium \
+    fonts-liberation \
+    fonts-noto-cjk \
+    fonts-noto-color-emoji \
+    libgbm1 \
+    libnss3 \
+    libatk-bridge2.0-0 \
+    libgtk-3-0 \
+    libx11-xcb1 \
+    libxcomposite1 \
+    libxdamage1 \
+    libxrandr2 \
+    libasound2 \
+    libpangocairo-1.0-0 \
+    libcups2 \
+    libdrm2 \
+    libxshmfence1 \
+    curl \
+    git \
+    && rm -rf /var/lib/apt/lists/*
+
+# Set Chromium path for agent-browser
+ENV AGENT_BROWSER_EXECUTABLE_PATH=/usr/bin/chromium
+ENV PLAYWRIGHT_CHROMIUM_EXECUTABLE_PATH=/usr/bin/chromium
+
+# Install agent-browser and claude-code globally
+RUN npm install -g agent-browser @anthropic-ai/claude-code
+
+# Create app directory
+WORKDIR /app
+
+# Copy package files first for better caching
+COPY agent-runner/package*.json ./
+
+# Install dependencies
+RUN npm install
+
+# Copy source code
+COPY agent-runner/ ./
+
+# Build TypeScript
+RUN npm run build
+
+# Create workspace directories
+RUN mkdir -p /workspace/group /workspace/global /workspace/extra /workspace/ipc/messages /workspace/ipc/tasks /workspace/ipc/input
+
+# Create entrypoint script
+# Container input (prompt, group info) is passed via stdin JSON.
+# Credentials are injected by the host's credential proxy — never passed here.
+# Follow-up messages arrive via IPC files in /workspace/ipc/input/
+RUN printf '#!/bin/bash\nset -e\ncd /app && npx tsc --outDir /tmp/dist 2>&1 >&2\nln -s /app/node_modules /tmp/dist/node_modules\nchmod -R a-w /tmp/dist\ncat > /tmp/input.json\nnode /tmp/dist/index.js < /tmp/input.json\n' > /app/entrypoint.sh && chmod +x /app/entrypoint.sh
+
+# Set ownership to node user (non-root) for writable directories
+RUN chown -R node:node /workspace && chmod 777 /home/node
+
+# Switch to non-root user (required for --dangerously-skip-permissions)
+USER node
+
+# Set working directory to group workspace
+WORKDIR /workspace/group
+
+# Entry point reads JSON from stdin, outputs JSON to stdout
+ENTRYPOINT ["/app/entrypoint.sh"]

package/template/container/Dockerfile.argus

@@ -0,0 +1,34 @@
+# Argus Claude Agent Container
+# Extends the NanoClaw agent image with Python, Poetry, gh CLI, and moon
+# so Claude's Bash tool can run poetry lock, gh pr create, moon lint, etc.
+#
+# Build the base image first:  ./container/build.sh
+# Then build this image:       ./container/build-argus.sh
+
+FROM nanoclaw-agent:latest
+
+USER root
+
+# Python 3 + pip (requests needed by elastic_query.py)
+RUN apt-get update && apt-get install -y python3 python3-pip && rm -rf /var/lib/apt/lists/*
+RUN pip3 install requests youtube-transcript-api markdownify --break-system-packages
+
+# Poetry
+RUN pip3 install poetry --break-system-packages
+
+# gh CLI
+RUN curl -fsSL https://cli.github.com/packages/githubcli-archive-keyring.gpg \
+    | dd of=/usr/share/keyrings/githubcli-archive-keyring.gpg 2>/dev/null && \
+    echo "deb [arch=$(dpkg --print-architecture) signed-by=/usr/share/keyrings/githubcli-archive-keyring.gpg] \
+    https://cli.github.com/packages stable main" | tee /etc/apt/sources.list.d/github-cli.list > /dev/null && \
+    apt-get update && apt-get install -y gh && rm -rf /var/lib/apt/lists/*
+
+# moon task runner
+RUN npm install -g @moonrepo/cli
+
+# Argus tools — baked into the image, no repo mount needed
+COPY tools/ /workspace/extra/tools/
+RUN chown -R node:node /workspace/extra/tools && chmod -R 755 /workspace/extra/tools
+
+USER node
+WORKDIR /workspace/group