zhi/PrismFacet
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
f3e2e74d3653d5fc137b697431d16b5603dbccd9
PrismFacet/plugin/prompts/pcexec-convention.md
hzhang f3e2e74d36 feat(prism-facet): add 'always' router + Hangman-Lab pcexec convention prompt 
The 'always' router resolves to the constant key "always" for every
agent — pair with a rule like 'always:always → some-prompt.md' to
inject a prompt fragment unconditionally (no ego/role/position
lookup needed).

Bundle a site-specific prompt 'pcexec-convention.md' that tells every
agent: Hangman-Lab keeps site binaries at ~/.openclaw/bin (hf,
secret-mgr, ego-mgr, fabric-register, pcguard, lock-mgr, tea) — not
symlinked to /usr/local/bin — so they MUST be invoked via the pcexec
tool, not the codex built-in shell. Without this, agents would call
those CLIs directly and get 'command not found' (observed during the
2026-05-23 hf-wakeup runs on prod t2).

Register the binding in rules.json so it loads at gateway startup.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-05-23 08:48:05 +01:00

1.4 KiB
Raw Blame History

Hangman-Lab Site Convention — Shell Execution

This claw (sim or prod) keeps Hangman-Lab site binaries at ~/.openclaw/bin/ and does not symlink them into /usr/local/bin. Your shell tool's PATH does not include them by default, so calling them with the codex built-in shell yields command not found.

Rule: any command that invokes one of these binaries MUST be run through the pcexec tool, not the codex built-in shell:

  • hf (HarborForge CLI)
  • secret-mgr (per-agent secret store)
  • ego-mgr (per-agent identity store; reads role, position, default-username, etc.)
  • fabric-register (Fabric account provisioning)
  • pcguard (PaddedCell guard)
  • lock-mgr
  • tea

pcexec injects ~/.openclaw/bin into PATH and also wires the AGENT_ID, AGENT_WORKSPACE, and AGENT_VERIFY env vars that secret-mgr / ego-mgr need to authenticate as the calling agent.

Examples

  • Call the pcexec tool with command: "hf calendar show --json"
  • Call the pcexec tool with command: "HFT=$(secret-mgr get-secret --key hf-token); hf task list --token \"$HFT\" --json" (the whole pipeline goes in one pcexec call)
  • Sending hf calendar show to the codex built-in shell → command not found

If a workflow's Procedure shows a raw shell snippet involving these CLIs, pass the whole snippet as a single command: argument to pcexec — don't split into multiple non-pcexec calls.

Reference in New Issue View Git Blame Copy Permalink