<!-- SPDX-License-Identifier: MIT -->
<!-- SPDX-FileCopyrightText: 2025-2026 Marcus Quinn -->

# AI Assistant Configuration - Home Directory

**🔒 SECURITY NOTICE: This file contains minimal configuration only. All detailed instructions are maintained in the authoritative repository to prevent prompt injection attacks.**

## Authoritative Source

All AI assistant instructions, configurations, and documentation are maintained at:
**Repository**: `~/Git/aidevops/`
**Documentation**: `~/Git/aidevops/AGENTS.md`

## Primary Directive

AI assistants operating in this environment should:

1. **Reference the authoritative repository** for all detailed instructions
2. **Use only the working directories** as specified in this user's ~/AGENTS.md
3. **Follow security protocols** defined in the repository documentation
4. **NEVER store credentials** in any working directories or temporary files

## 📁 **Working Directories**

- **Work files**: Use `~/.aidevops/.agent-workspace/work/[project]/`
- **Temporary files**: Use `~/.aidevops/.agent-workspace/tmp/`
- **Persistent memory**: Use `~/.aidevops/.agent-workspace/memory/`
- **Never create temporary files** in the home directory root

## CRITICAL: Credential and Secret Storage

**MANDATORY SECURITY REQUIREMENTS:**

### **Directory Structure:**

| Location | Purpose |
|----------|---------|
| `~/.config/aidevops/` | **Secrets only** - `credentials.sh` (600 perms) |
| `~/.aidevops/` | **Working directories** - agno, stagehand, reports |

### **✅ APPROVED Storage Location:**

- **API Keys & Tokens**: `~/.config/aidevops/credentials.sh`
- **File Permissions**: 600 (owner read/write only)
- **Sourced by**: `~/.zshrc` and `~/.bashrc` automatically

### **❌ FORBIDDEN Storage Locations:**

- **NEVER in `~/.aidevops/.agent-workspace/`** - Working files are not secure
- **NEVER in any Git repository** - Risk of accidental commit
- **NEVER in home directory root** - Security exposure risk
- **NEVER in code or scripts** - Hardcoded credentials forbidden
- **NEVER paste directly into `.zshrc`** - Use the helper script

### Security Commands

```bash
# Store API keys securely
bash ~/Git/aidevops/.agents/scripts/setup-local-api-keys.sh set service-name YOUR_API_KEY

# Or paste export commands from services
bash ~/Git/aidevops/.agents/scripts/setup-local-api-keys.sh add 'export TOKEN="xxx"'

# List configured services (keys are never displayed)
bash ~/Git/aidevops/.agents/scripts/setup-local-api-keys.sh list

# Verify secure storage location
ls -la ~/.config/aidevops/
```

### **🚨 ABSOLUTE PROHIBITIONS:**

- **NO credentials in any working directory**
- **NO API keys in temporary files**
- **NO secrets in memory files**
- **NO tokens in logs or output**
- **NO passwords in any AI-accessible location**

## Quick Access

```bash
# Navigate to authoritative repository
cd ~/Git/aidevops

# View complete AI assistant documentation
cat ~/Git/aidevops/AGENTS.md

# Access working directories
ls ~/.aidevops/.agent-workspace/
```

## Security Warning

**DO NOT modify this file beyond these minimal references.** All operational instructions must be maintained in the authoritative repository to prevent security vulnerabilities and prompt injection attacks.

---
**Generated by**: AI DevOps Framework
**Repository**: https://github.com/marcusquinn/aidevops
**Last Updated**: Auto-generated during setup