From 96e02457ff4a63a9104d6ae21b7d088d6fe72d1a Mon Sep 17 00:00:00 2001
From: Simon Gardling <titaniumtown@proton.me>
Date: Tue, 17 Mar 2026 14:56:18 -0400
Subject: [PATCH] AGENTS.md: update

---
 AGENTS.md | 10 ++--------
 1 file changed, 2 insertions(+), 8 deletions(-)

diff --git a/AGENTS.md b/AGENTS.md
index 9bfd8c9..31661b3 100644
--- a/AGENTS.md
+++ b/AGENTS.md
@@ -102,10 +102,10 @@ Each service file in `services/` follows this structure:
 
 ### Important Patterns
 - **Impermanence**: Root `/` is tmpfs. Only `/persistent`, `/nix`, and ZFS mounts survive reboots. Any new persistent state must be declared in `modules/impermanence.nix`.
-- **Port uniqueness**: `flake.nix` has an assertion that all ports in `service_configs.ports` are unique. Always add new ports there.
+- **Port uniqueness**: `flake.nix` has an assertion that all ports in `service_configs.ports` are unique. Always add new ports there. Make sure to put them in the specific "Public" and "Private" sections that are seperated by comments.
 - **Hugepages**: Services needing large pages declare their budget in `service-configs.nix` under `hugepages_2m.services`. The kernel sysctl is set automatically from the total.
 - **Domain**: Primary domain is `sigkill.computer`. Old domain `gardling.com` redirects automatically.
-- **Hardened kernel**: Uses `linuxPackages_6_12_hardened`. Security-sensitive defaults apply.
+- **Hardened kernel**: Uses `_hardened` kernel. Security-sensitive defaults apply.
 
 ### Test Pattern
 Tests use `pkgs.testers.runNixOSTest` (NixOS VM tests):
@@ -135,9 +135,3 @@ ssh root@server-public    # deploy user
 ssh primary@server-public # normal user (doas instead of sudo)
 ```
 
-## Learnings
-
-Discoveries, gotchas, and patterns found during sessions. Add new entries at the bottom.
-
-<!-- Format: ### YYYY-MM-DD: Short title \n Description of the learning. -->
-