Open
Conversation
Add AGENTS.md at the repo root and native/AGENTS.md for the native C++ sub-project, following the https://agents.md/ open-source convention. These files give AI coding agents (Cursor, Claude Code, OpenAI Codex, GitHub Copilot, etc.) the project-specific context they need to work effectively: build/test commands, architectural patterns, platform gotchas, and coding conventions in a single discoverable location. Key guidelines documented: - Native logging: use ZLogger macros, never std::fprintf(stderr) - SDK errors: ImperativeError with user-friendly msg + additionalDetails - Error routing: onError callback when registered, throw as fallback - z/OS process creation: spawn()+SHAREAS=YES preferred over fork() - Changelog, versioning, SonarCloud, and Biome formatting conventions Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> Made-with: Cursor
plavjanik
added a commit
that referenced
this pull request
Mar 29, 2026
AGENTS.md and native/AGENTS.md are extracted to a separate PR (#894) for focused review. No functional changes. Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> Made-with: Cursor
|
Client artifacts: |
4 tasks
traeok
reviewed
Mar 30, 2026
Member
traeok
left a comment
traeok
left a comment
There was a problem hiding this comment.
Thanks Petr, left a few suggestions
| - Use `zut_spawn_shell_command()` for shell commands (uses `spawn()` + `_BPX_SHAREAS=YES`) | ||
| - `zut_run_program()` exists but uses `fork()`/`execvp()` — avoid for new command execution paths | ||
|
|
||
| **Identity-changing commands (newgrp, su, sg):** Commands that change real/effective UID or GID are not supported in a shared address space ([IBM newgrp doc](https://www.ibm.com/docs/en/zos/3.2.0?topic=descriptions-newgrp-change-new-group)). `zut_spawn_shell_command()` detects when the user's command is one of `newgrp`, `su`, or `sg` (by parsing the first token) and in that case does **not** pass `_BPX_SHAREAS=YES` to the child, so the child runs in its own address space. To support additional such commands, add the command basename to `ZUT_NOSHAREAS_COMMANDS` in `zut.cpp`. |
Member
There was a problem hiding this comment.
ZUT_NOSHAREAS_COMMANDS does not exist within the code on this branch. Is this added in a separate PR?
|
|
||
| ### Expired password detection | ||
|
|
||
| When an SSH session connects with an expired password, z/OS emits `FOTS1668`/`FOTS1669` on stderr. This can masquerade as SFTP failures or generic command errors. `ZSshUtils.routeExpiredPasswordError()` checks for these codes after every `execCommand` call: if an `onError` callback is registered it is called with an `ImperativeError` using `SshErrors.FOTS1668.summary` as the message (so the VSCE notification bubble shows a readable string); otherwise the error is thrown directly (preserving CLI behavior). The `errorCode` is always `"EPASSWD_EXPIRED"`. |
Member
There was a problem hiding this comment.
The routeExpiredPasswordError function does not exist in the ZSshUtils class. The detection is currently handled inline in AbstractConfigManager.ts and SshCommonApi.ts.
| - **RPC dispatch**: `native/c/server/rpc_commands.cpp` maps JSON-RPC method names to native handler functions | ||
| - **SDK bindings**: `packages/sdk/src/RpcClientApi.ts` maps client API methods to RPC method names | ||
| - **SDK types**: `packages/sdk/src/doc/rpc/` contains TypeScript interfaces for each RPC request/response | ||
| - **Command domains**: ds (data sets), uss (USS files), job (JES jobs), tso (TSO commands), tool (utilities) |
Member
There was a problem hiding this comment.
(nitpick) Consider factoring in console and system groups from zowex to the list in the final bulleted item.
|
|
||
| ## Test Framework | ||
|
|
||
| - CLI tests: `c/test/zowex.<domain>.test.cpp` — use `execute_command_with_output()` |
Member
There was a problem hiding this comment.
This doesn't apply to all test files, for example: zds.test.cpp, zjb.test.cpp, zut.test.cpp, etc.
Consider separating these into two points:
Suggested change
| - CLI tests: `c/test/zowex.<domain>.test.cpp` — use `execute_command_with_output()` | |
| - CLI-focused tests: `c/test/zowex.<domain>.test.cpp` — use `execute_command_with_output()` | |
| - API tests: `c/test/<api>.test.cpp` — use direct API calls |
|
|
||
| This applies to: code comments, usage examples, test scripts, markdown docs, commit messages, and any other checked-in artifact. | ||
|
|
||
| ## Maintaining This Guide |
Member
There was a problem hiding this comment.
Since we are now enabling more AI interoperability through the AGENTS file, would we be opposed to adding rules as well? Most of the team leverages AI and could benefit from shared rules.
It doesn't have to be this PR, but just curious to know if the team would enjoy having them - I have a couple I could contribute
zFernand0
added a commit
that referenced
this pull request
Mar 30, 2026
* feat(uss): add `issue` command for shell execution using spawn() Add `zut_spawn_shell_command()` utility using `spawn()` with `_BPX_SHAREAS=YES` for efficient same-address-space execution. Implement `uss issue` CLI subcommand, `unixCommand` RPC method, and corresponding SDK `uss.issueCmd()` with tests. Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> * Share the AGENTS.md files Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> * fix: address SonarCloud issues in spawn utility - Extract poll-read loop into helper functions to reduce cognitive complexity and nesting depth in zut_spawn_shell_command - Replace C-style arrays with std::array - Use std::make_shared for Command construction Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> Made-with: Cursor * fix: remove const_cast and fix environ declaration for SonarCloud - Remove const_cast by using types matching spawn() signature directly - Move extern environ declaration to file scope (standard POSIX pattern) - Use C-style argv array matching spawn() const char *argv[] parameter Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> Made-with: Cursor * fix: resolve remaining SonarCloud issues in spawn utility - Replace C-style argv array with std::vector<const char *> - Extract environ access into static helper to isolate extern declaration - Remove file-scope extern for environ Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> Made-with: Cursor * fix: remove explicit extern for environ (provided by unistd.h) Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> Made-with: Cursor * fix: restore extern environ declaration for z/OS compilation z/OS unistd.h does not expose environ without an explicit extern declaration. Added NOSONAR comment since this is a POSIX-mandated global that cannot be const-qualified. Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> Made-with: Cursor * docs: Add SDK packaging and rebuild instructions to README and AGENTS.md Document the different SDK rebuild workflows depending on whether TypeScript, native code, or both have changed. Also remove the packages/sdk/.gitignore that was ignoring *.tgz files. Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> * feat(sdk): detect expired z/OS passwords during server install/uninstall Detect FOTS1668/FOTS1669 error codes in `ZSshUtils.installServer` and `uninstallServer`, throwing `ImperativeError` with `errorCode: "EPASSWD_EXPIRED"` to provide clear error messages instead of generic failures. Add `SshErrors` definition for FOTS1668 with troubleshooting tips. Update `AGENTS.md` with z/OS SSH file transfer, encoding, and maintenance guidelines. Include `test-install.ts` manual integration test and add unit tests for install/uninstall flows. Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> * docs(agents): Add z/OS binary build/run compatibility section Explain CEE3561S errors when running CA32-built binaries on older z/OS levels and provide mitigation strategies. Update VSCE test correlation count to include expired password detection. Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> * fix(sdk): correct error code display and improve test maintainability - Fix SFTP upload error to display RC=0 (was hidden by falsy check) - Refactor ZSshUtils tests to use setupSftpMocks helper reducing duplication - Improve type safety in test-install.ts using unknown instead of any - Add jscpd report to .gitignore and update VSCE test comments Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> * Increase z/OS Build timeout to 30 Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> * Add license Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> * Update AGENTS.md Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> * fix(native): prevent _BPX_SHAREAS for identity-changing commands Skip setting _BPX_SHAREAS=YES when spawning newgrp, su, or sg commands as they require UID/GID changes incompatible with shared address spaces. Also add bounds checking and debug logging to parmlib listing. Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> * wip! Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> * chore(sdk): enable bundled dependencies for packaging Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> * chore: add *.tgz to .gitignore Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> * chore(sdk): remove bundled dependencies configuration Remove the `bundleDependencies` setting from package.json that was recently enabled, along with routine lockfile maintenance. Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> * refactor(native): eliminate duplicate poll-read loop in zut_private_run_program Use the shared zut_private_drain_fd/zut_private_drain_pipes helpers (already used by zut_spawn_shell_command) in zut_private_run_program, removing ~40 lines of duplicated inline poll-read logic. Add forward declarations so the helpers are visible before their definition. Add three regression tests verifying stdout/stderr separation, large output draining (>4096-byte pipe buffer), and merged-stream overload. Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> Made-with: Cursor * fix: address SonarCloud code quality issues - Replace C-style array with std::array for ZUT_NOSHAREAS_COMMANDS (cpp:S5945) - Flip negated condition in SFTP error handler to positive case (typescript:S7735) - Fix potential [object Object] stringification in test-install error message (typescript:S6551) - Add NOSONAR for async IIFE: top-level await is unavailable with module:commonjs (typescript:S7785) - Move setupSftpMocks helper to module scope in ZSshUtils tests (typescript:S7721) Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> Made-with: Cursor * fix(native): append newlines to TSO and USS command output Add missing newline characters to the end of command responses in handle_tso_issue and handle_uss_issue_cmd to ensure proper terminal formatting. Include comment explaining expected TTY behavior differences when USS commands are executed via pipes (non-interactive defaults). Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> * chore(sdk): format long lines for readability Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> * docs(agents): add Biome TypeScript formatting section Document Biome formatting and linting requirements for TypeScript files, including CI enforcement, local development commands, and inline rule suppression examples. Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> * docs: update changelogs and AGENTS.md for PR #867 Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> Made-with: Cursor * fix(build): simplify regex patterns and ensure stderr warnings are printed Remove unnecessary backslash escapes from hyphen characters in test failure regex patterns. Add logic to print stderr output (warnings) that wasn't already streamed live when running shell commands. Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> * docs(agents): document compiler warning checking for z/OS builds Add instructions for viewing compiler warnings from z/OS builds and identifying whether they are pre-existing or introduced by the current PR. Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> * docs(agents): add hygiene guidelines and sanitize internal system references Add "Code & Documentation Hygiene" section prohibiting real hostnames, system names, and user IDs in source code and documentation. Replace specific infrastructure references with generic terms in the binary compatibility section. Update test-install.ts examples to use placeholder values. Remove packages/vsce/AGENTS.md. Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> * unify run_program and spawn_shell Signed-off-by: MarkAckert <35308966+MarkAckert@users.noreply.github.com> * finish implementation, fix broken tests Signed-off-by: MarkAckert <35308966+MarkAckert@users.noreply.github.com> * fallback to $SHELL env Signed-off-by: MarkAckert <35308966+MarkAckert@users.noreply.github.com> * refactor(native): replace fprintf with ZLogger macros Add logging guidelines to AGENTS.md and migrate native C++ source and test files to use ZLOG_DEBUG/ZLOG_WARN macros instead of std::fprintf/std::fflush for diagnostic output. Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> * chore(sdk): remove manual test scripts Delete temporary integration test files (test-install.ts and test.ts) that were used for manual validation but are not part of the automated test suite. Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> * refactor(sdk): route errors through onError with user-friendly messages Standardize SDK error handling to use ImperativeError with msg/additionalDetails and route through onError callbacks when available (preserving CLI throw behavior as fallback). Update expired password detection to use SshErrors.FOTS1668.summary for consistent user-facing messages. Add SDK error handling guidelines to AGENTS.md documenting the two-layer error pattern for UI surfaces. Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> * docs: move AGENTS.md files to dedicated PR #894 AGENTS.md and native/AGENTS.md are extracted to a separate PR (#894) for focused review. No functional changes. Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> Made-with: Cursor --------- Signed-off-by: Petr Plavjanik <petr.plavjanik@broadcom.com> Signed-off-by: MarkAckert <35308966+MarkAckert@users.noreply.github.com> Signed-off-by: Fernando Rijo Cedeno <37381190+zFernand0@users.noreply.github.com> Co-authored-by: MarkAckert <35308966+MarkAckert@users.noreply.github.com> Co-authored-by: Fernando Rijo Cedeno <37381190+zFernand0@users.noreply.github.com>
zFernand0
requested changes
Mar 30, 2026
Member
zFernand0
left a comment
zFernand0
left a comment
There was a problem hiding this comment.
Curious if we could incorporate some of the Metal C and Function parameter count 🙏
I believe those could prove useful in the future 🙏
Member
There was a problem hiding this comment.
It seems as though these were generated at different times with slightly different context/prompts 🤔
Perhaps that's why there seems to be some information missing here.
I'm just going off the file in:
Original: AGENTS.md
|
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
4 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
This PR introduces
AGENTS.mdfiles at the repository root and undernative/followingthe AGENTS.md open-source convention — a project-level briefing
document for AI coding agents (supported by Cursor, Claude Code, GitHub
Copilot, and others).
The files were extracted from #867 to keep that PR focused on the USS issue-command
feature and allow broader discussion of the agent guide content here.
This document requires review of expects on Zowe Native Protocol!
Why AGENTS.md?
A README is written for human contributors. AGENTS.md is written for AI agents: it
documents the "tribal knowledge" a senior engineer carries — build commands, architectural
patterns, platform gotchas, and coding conventions — in a single predictable location that
AI tools discover automatically.
Top 5 general guidelines for AGENTS.md
These are the conventions recommended by the AGENTS.md specification:
to full documentation rather than duplicating it inline.
AGENTS.mdat the repository root for automaticdiscovery by all supported AI tools. Sub-project guides (e.g.
native/AGENTS.md) arelinked from the root file.
Include what a skilled engineer would need to be productive on day one: build/test
commands, architecture overview, and non-obvious conventions.
npm run z:uploadbeforenpm run z:test" over narrative descriptions. Agents act on instructions; they readdocumentation for context.
architectural change or platform gotcha. A stale guide is worse than no guide because
it misleads agents confidently.
Top 5 best practices captured in these guides
Native logging via ZLogger — Use
ZLOG_DEBUG/ZLOG_WARN/ZLOG_ERRORmacrosinstead of
std::fprintf(stderr, ...). Raw fprintf calls are invisible to the loggingsystem and pollute test output. A
git diffcheck is documented for catching forgottendebug prints before a PR is merged.
Two-layer SDK errors — Errors surfaced to a client UI must use
ImperativeErrorwith a jargon-free
msg(shown in the VSCode notification bubble) and technicaladditionalDetails(shown in "Show Details"). Never pass raw command strings or returncodes directly to the user.
Route errors through
onError, throw as fallback — SDK utility functions thataccept an
ISshCallbacksoptions object must calloptions.onErrorwhen it isregistered and fall back to throwing only when there is no callback. This keeps VSCE
and CLI error surfaces consistent.
z/OS process creation — prefer
spawn()overfork()— On z/OS USS,fork()creates a new address space (expensive). Use
spawn()+_BPX_SHAREAS=YESto runchild processes as a new TCB in the same address space. Identity-changing commands
(
newgrp,su,sg) are the documented exception.Keep AGENTS.md current — When an architectural decision or platform-specific
gotcha is discovered, update the relevant
AGENTS.mdas part of the same change, notin a follow-up. The guide is consumed by AI agents and human developers alike —
accuracy matters more than prose.
References
Made with Cursor