# Dev-Agent Best Practices ## Architecture - `dev-poll.sh` (cron */10) → finds ready backlog issues → spawns `dev-agent.sh` - `dev-agent.sh` uses `claude -p` for implementation, runs in git worktree - Lock file: `/tmp/dev-agent.lock` (contains PID) - Status file: `/tmp/dev-agent-status` - Worktrees: `/tmp/harb-worktree-/` ## Safe Fixes - Remove stale lock: `rm -f /tmp/dev-agent.lock` (only if PID is dead) - Kill stuck agent: `kill ` then clean lock - Restart on derailed PR: `bash ${FACTORY_ROOT}/dev/dev-agent.sh &` - Clean worktree: `cd /home/debian/harb && git worktree remove /tmp/harb-worktree- --force` - Remove `in-progress` label if agent died without cleanup: ```bash codeberg_api DELETE "/issues//labels/in-progress" ``` ## Dangerous (escalate) - Restarting agent on an issue that has an open PR with review changes — may lose context - Anything that modifies the PR branch history - Closing PRs or issues ## Known Issues - `claude -p -c` (continue) fails if session was compacted — falls back to fresh `-p` - CI_FIX_COUNT is now reset on CI pass (fixed 2026-03-12), so each review phase gets fresh CI fix budget - Worktree creation fails if main repo has stale rebase — auto-heals now - Large text in jq `--arg` can break — write to file first - `$([ "$VAR" = true ] && echo "...")` crashes under `set -euo pipefail` ## Lessons Learned - Agents don't have memory between tasks — full context must be in the prompt - Prior art injection (closed PR diffs) prevents rework - Feature issues MUST list affected e2e test files - CI fix loop is essential — first attempt rarely works - CLAUDE_TIMEOUT=7200 (2h) is needed for complex issues ## Dependency Resolution **Trust closed state.** If a dependency issue is closed, the code is on master. Period. DO NOT try to find the specific PR that closed an issue. This is over-engineering that causes false negatives: - Codeberg shares issue/PR numbering — no guaranteed relationship - PRs don't always mention the issue number in title/body - Searching last N closed PRs misses older merges - The factory itself closes issues after merging, so closed = merged The only check needed: `issue.state == "closed"`. ## Fork Safety (Base Sepolia / Base Mainnet) **ERC-4337 code at well-known addresses.** Base Sepolia (and potentially other L2s) has 23-byte Account Abstraction proxy code at ALL well-known addresses: - Anvil default mnemonic accounts (0xf39Fd6..., 0x70997...) - Deterministic addresses (CREATE2 salts, keccak derivations) - Any address that "looks" like an EOA might actually have code This breaks any contract that checks `address.code.length` to distinguish EOAs from contracts. Specifically: `feeDestinationLocked` in LiquidityManager. **Fix pattern:** Before deploying on a forked Anvil, strip code from addresses that need to be EOAs: ```bash cast rpc --rpc-url $RPC anvil_setCode "$ADDRESS" "0x" ``` **Impersonated accounts need ETH.** `anvil_impersonateAccount` lets you send from any address, but gas estimation fails if the account has 0 balance: ```bash cast rpc --rpc-url $RPC anvil_setBalance "$ADDRESS" "0xDE0B6B3A7640000" # 1 ETH ``` **Mainnet vs Sepolia addresses differ.** Uniswap V3 contracts have different addresses per chain: - V3 Factory: `0x33128...` (mainnet) vs `0x4752...` (Sepolia) - SwapRouter02: `0x2626...` (mainnet) vs `0x94cC...` (Sepolia) Always verify which chain you're forking before using hardcoded addresses. **Docker creates root-owned files.** When forge runs inside a docker container, `cache/`, `out/`, `broadcast/` become root-owned. Subsequent runs as a non-root user fail with permission denied. ```bash sudo chown -R "$(id -u):$(id -g)" cache out broadcast 2>/dev/null || true ```