docs: enforce AMI rebuild

- note manual host fixes require rebuild + redeploy
2026-02-03 17:02:15 -08:00 · 2026-02-03 17:02:15 -08:00 · 634f7fc0ce
commit 634f7fc0ce
parent 1384ee7b47
1 changed files with 1 additions and 0 deletions
--- a/AGENTS.md
+++ b/AGENTS.md
@ -118,6 +118,7 @@ End-to-end SDLC (local → AMI → host) **(verified)**:

 Important:
 - Repo/workspace on host is seeded from the **AMI snapshot**. `git pull` is ephemeral; rebuild AMI for persistent changes.
+- Any manual host fix is triage-only; always rebuild the AMI and redeploy before calling it done.
 - If SSH access is lost, use SSM (instance profile is attached via OpenTofu) to re-add `/root/.ssh/authorized_keys`.

 Key principle: mental notes don’t survive restarts — write it to a file.