stable vm run and container spin up, not reachable via ssh

AGENTS.md

@@ -5,20 +5,51 @@ This file provides guidelines for AI coding agents operating within this reposit
 ## Build, Lint, and Test Commands
 
 - **Build**: `make build-usb` (Builds the NixOS workshop ISO)
-- **Lint**: No specific linting command found. Follow general code style guidelines.
-- **Test**: No specific testing command found. Use `make status-cloud` for health checks.
-- **Single Test**: No specific command for running a single test.
+- **Local VM**: `make local-vm-run` (Starts local development environment with 15 containers)
+- **Lint**: `make lint` (Runs markdownlint, JSON validation, and nixpkgs-fmt)
+- **Test**: `make status-cloud` (Health checks for cloud infrastructure)
+- **Deploy**: `make deploy-cloud` (Deploys 15 VMs to Hetzner Cloud)
 
 ## Code Style Guidelines
 
 - **Imports**: Organize imports alphabetically. Avoid unused imports.
-- **Formatting**: Adhere to Nixpkgs formatting conventions. Use `nixpkgs-fmt` if available.
+- **Formatting**: Adhere to Nixpkgs formatting conventions. Use `nixpkgs-fmt` for consistency.
 - **Types**: Use Nix's type system rigorously. Define types explicitly where possible.
 - **Naming Conventions**:
-    - Variables and functions: `camelCase` or `snake_case` (be consistent).
-    - Package names: `lowercase-with-hyphens`.
+    - Variables and functions: `camelCase` for Nix expressions
+    - Container/server names: `lowercase` (hopper, curie, lovelace, etc.)
+    - Script names: `kebab-case` for executables
+- **SSH Keys**: Always use Ed25519 keys (`~/.ssh/id_ed25519.pub`)
+- **Domain**: Use `codecrispi.es` consistently across all environments
+- **Password Policy**: Minimize password usage; prefer key-based authentication
 - **Error Handling**: Handle errors explicitly. Use Nix's error reporting mechanisms.
-- **General**:
-    - Keep code concise and readable.
-    - Prefer declarative over imperative approaches.
-    - Document complex logic.
+
+## Container Architecture
+
+- **Local VM**: Creates 15 containers (192.168.100.11-25) matching production count
+- **Container Names**: hopper, curie, lovelace, noether, hamilton, franklin, johnson, clarke, goldberg, liskov, wing, rosen, shaw, karp, rich
+- **Networking**: Private networking with NAT for local development
+- **DNS**: Local `.local` domain resolution for testing
+
+## Available Scripts
+
+- `connect <name>` - SSH into specific container
+- `containers` - List all containers with IPs  
+- `logs` - Show container setup logs
+- `recipes` - Display available Co-op Cloud recipes
+- `help` - Show command help
+
+## Development Workflow
+
+1. Use `make local-vm-run` for local development
+2. Test with all 15 containers to match production
+3. Use `make build-usb` for workshop USB drives
+4. Deploy to cloud with `make deploy-cloud`
+
+## General Guidelines
+
+- Keep code concise and readable
+- Prefer declarative over imperative approaches  
+- Document complex logic with comments
+- Test locally before cloud deployment
+- Maintain feature parity between USB/VM environments where possible