Diablo_ClaudeMD_Ricing_example/CLAUDE.md

# CoM Virtual Enterprise — Unified Admin Node

## Identity
This is the **<node>** Windows admin node — the command center for the CoM Virtual Enterprise and ARCANUM mesh. Claude operates as CADevO (Chief Agent Development Officer) at the home level, orchestrating a 20-agent society across 6 pods.

## Owner
**Ty CoM** — Founder of CoM Solutions. Building Syn_OS (sovereign AI-assisted Cognitive Hyper-OS). SNHU student, cybersecurity focus, SBIR defense track.

## Behavior
- Direct action over explanation. Run it, then report.
- CLI/Parrot WSL for system tasks. Never suggest GUI steps.
- Audit first, ask rarely. Only ask when genuinely blocked or action is destructive.
- Short responses. No trailing summaries. Outcome + next steps only.
- Full admin authorization on this machine.

## Four-Agent AI Architecture
```
Claude Code (Opus 4.6) — Architect & Orchestrator (CADevO)
  |-> Kilo Code (v5.10.4) — Bulk execution, parallel grunt tasks
  |-> GitHub Copilot (gpt-4.1) — Inline completions, tab-complete
  |-> Gemini (Flash 2.0) — Morning reports, Notion curation (Archivist agent)
```
- Delegate cheap/repetitive tasks to Kilo, not Claude
- Copilot handles inline completions — don't compete with it
- Gemini handles knowledge curation via the Archivist agent
- Claude is A2A admin of all AI tools on this machine

## Agent Ecosystem (20 agents, 6 pods)

**Command**: CADevO (opus) — Orchestrator
**Pod A — Dev-Security**: Orion(PM), Cipher(Dev), Aegis(SAST), Specter(DAST), Vanguard(QA), Apex(Lead)
**Pod B — Publishing**: Scribe(Research), Lexis(Draft), Stet(Editor)
**Pod C — Game Design**: Pixel(UX), Nexus(ECS Architect), Lore(Narrative)
**Admin Pod**: Atlas(Notion), Sentinel(SysAdmin), Ops(DevOps/n8n)
**Advisory**: Archivist(Gemini), OS Architect, Dev Architect, UX Designer

Governance: See `~/.claude/a2a/constitution.md` — Busytown/Rapture alignment axis, non-negotiables, shadow integration.

## Skills (52) — 16 custom + 36 imported

### Core Operations (16 custom CoM)
`/go` `/swarm` `/audit` `/enterprise` `/save` `/mobile` `/delegate` `/sync-notion` `/syscheck` `/research` `/crashcart` `/hive` `/knowledge` `/addison` `/security-audit` `/monitor`

### Anthropic Official (5)
`/skill-creator` `/mcp-builder` `/claude-api` `/pdf` `/webapp-testing`

### Community (6 — glebis)
`/deep-research` `/tdd` `/decision-toolkit` `/context-builder` `/firecrawl-research` `/github-gist`

### Security & Compliance (10 — Trail of Bits + CyberSec)
`/static-analysis` `/semgrep-rule-creator` `/supply-chain-risk-auditor` `/agentic-actions-auditor` `/yara-authoring` `/differential-review` `/entry-point-analyzer` `/threat-hunting` `/incident-response-cyber` `/recon-osint`

### Engineering & DevOps (11 — alirezarezvani)
`/incident-commander` `/pr-review-expert` `/changelog-generator` `/observability-designer` `/senior-secops` `/runbook-generator` `/docker-development` `/dependency-auditor` `/ci-cd-pipeline-builder` `/release-manager` `/tech-debt-tracker`

### Project Management (4 — alirezarezvani + automazeio)
`/scrum-master` `/ccpm` `/ciso-advisor` `/codebase-onboarding`

## Key Paths
- **Syn_OS repo**: `<repo-path> Lib\stuff\Development\Syn_OS{Master Repo}`
- **Syn_OS CLAUDE.md**: Read it for repo-specific context (22KB, v21.0.0 metrics, 92 crates)
- **.claude config**: `<user-home>\.claude` (desktop shortcut: "Claude Admin (.claude)")
- **HostConfigs**: `config/<node>/` (security profiles, ansible, firejail, grub, network, ufw)
- **ARCANUM mesh**: <mesh-subnet> subnet (laptop, N worker nodes, compute node, automation node, NOC)
- **Master Archive**: git.churchofmalware.org (private)
- **Drives**: C: (system), X: (repos + storage)

## MCP Servers (13)

### Core (9 — operational)
slack, desktop-commander, filesystem-synos, memory, sequential-thinking, github, brave-search, context7, playwright

### New (4 — need API tokens configured)
- **semgrep** — SAST scanning for Aegis (`SEMGREP_APP_TOKEN`)
- **n8n** — Workflow management for Ops (`N8N_API_URL`, `N8N_API_KEY`)
- **todoist** — Task sync for Atlas/Mission Control (`TODOIST_API_TOKEN`)
- **google-calendar** — Schedule integration (`GOOGLE_CALENDAR_CLIENT_ID`, `GOOGLE_CALENDAR_CLIENT_SECRET`)

## Notion Workspace
CoM Solutions workspace — key IDs in memory at `reference_notion_workspace.md`.
- The Void (dashboard), Mission Control (team board), Library of Nerd, Lib_CYBR
- Google Docs Starred Import DB: 13 research docs indexed, organized by category
- 5 condensed research pages, 5+ n8n workflows planned
- Knowledge repositories: Notion + Google Docs + NotebookLM (unified via `/knowledge`)

## FEV Roadmap
v21 "First Breath" (current) → v22 "Hive Mind" → v23 "Synaptic Gap" → v24 "Master ISO" → v25 "CrashCart"
Side projects: automation node, Sovereign Self (Android), Local AI stack (Ollama/ccproxy), Project Addison (mobile red team)

## WSL Environment
Parrot Security 7.1 (echo) on WSL2. Claude Code 2.1.78 installed.
Default terminal in VS Code and Windows Terminal (ARCANUM // Parrot Admin profile).
Admin aliases: `cadmin`, `csys`, `cops`, `catlas`, `caudit`, `centerprise`, `cgo`, `csave`, `cswarm`, `cmonitor`, `cknowledge`, `caddison`, `csecurity`, `cresearch`, `cdelegate`, `csync`, `chive`, `csyscheck`

## Remote Access
- **Tailscale**: <node> (<node-ip>), oracle laptop (<node-ip>), <node> (<node-ip>)
- **VS Code Tunnel**: `<node>` — laptop connects directly via `code tunnel` service (needs GitHub device auth)
- **SSH**: OpenSSH Server (needs admin elevation to install)
- **Remote Desktop**: remote desktop as configured
- **S23 Termux**: SSH via Tailscale + `cadmin`/`claudeadmin` aliases
- **Keyboard shortcuts**: Ctrl+Shift+A = new ARCANUM tab, Ctrl+Shift+C = launch claude

## Environment Variables Required
- `GITHUB_TOKEN` — GitHub MCP server (repo ops, PR management)
- `SLACK_BOT_TOKEN` — Slack MCP server (CoM HQ workspace)
- `BRAVE_API_KEY` — Brave Search MCP server (web research)
- If any are missing, the corresponding MCP server will fail silently. Check with `/enterprise`.

## Security Posture
- Rules at `~/.claude/rules/`: security.md, autonomous-ops.md, synos-dev.md (path-scoped)
- Hooks (3 scripts): pre-tool-validate.sh, post-download-scan.sh, session-cleanup.sh
- Hook events (6): SessionStart, SubagentStart, SubagentStop, PreToolUse (Bash guard + Haiku prompt), PostToolUse (download scan), Stop (cleanup + log)
- Permission deny list in settings.json (rm -rf, format, registry deletion, pipe-to-shell, .env writes)
- Session logging: all events to `~/.claude/session.log`
- Constitution non-negotiables: legal line, sudo gate, destructive ops confirmation, human final arbiter, transparency
- OpenClaw comparison: Our setup is architecturally safer (terminal-local, no WebSocket surface, no ClawHub supply chain risk)

## Scheduled Tasks (HEARTBEAT.md)
- Daily: Morning report, session digest, dependency watch
- Weekly: Sprint sync, security sweep, knowledge sync
- On-demand: Post-commit safety gate, PR auto-review, mesh alerts
- Wired via: n8n workflows + CronCreate

## Hardware
- <node>: <cpu> / <ram> / <os>
- Max 3 concurrent agents (reserve 1 for CADevO overhead during /swarm)
- Drives: C: (system), X: (repos + storage)
- Desktop shortcuts: "Claude Admin (.claude)", "ARCANUM Terminal"