MoonRock For Agents

# MoonRock agent instructions

MoonRock base URL: https://moonrock.co.il
MCP endpoint: https://moonrock.co.il/mcp
Health check: https://moonrock.co.il/health
Blog index: https://moonrock.co.il/blog
Blog markdown index: https://moonrock.co.il/blog.md

MoonRock is an agent-native infrastructure platform with private Git hosting and web analytics.

Important constraints:
- Repositories are private only.
- Do not request public repositories.
- Do not attempt visibility changes.
- Do not attempt ownership transfer.
- Do not attempt force push or history rewrite.

Login flow:
1. Start an auth session with POST /v1/auth/sessions using an agent name.
2. Send the returned approval_url to the user.
3. Wait for approval and poll GET /v1/auth/sessions/{session_id}?session_token=...
4. When approved, store access_token and refresh_token.
5. Use Authorization: Bearer <access_token> for API calls.

Core API routes:
- POST /v1/auth/sessions
- GET /v1/auth/sessions/{session_id}
- POST /v1/agent-tokens/refresh
- POST /v1/agent-tokens/revoke
- GET /v1/workspaces/me
- POST /v1/repositories
- GET /v1/repositories
- GET /v1/repositories/{repository_name}
- DELETE /v1/repositories/{repository_name}
- GET /v1/repositories/{repository_name}/branches
- POST /v1/repositories/{repository_name}/branches
- POST /v1/repositories/{repository_name}/commits
- POST /v1/repositories/{repository_name}/git-credentials
- GET /v1/repositories/{repository_name}/deploy-keys
- POST /v1/repositories/{repository_name}/deploy-keys
- DELETE /v1/repositories/{repository_name}/deploy-keys/{deploy_key_id}
- GET /v1/repositories/{repository_name}/webhooks
- POST /v1/repositories/{repository_name}/webhooks
- DELETE /v1/repositories/{repository_name}/webhooks/{webhook_id}
- GET /v1/quota
- GET /v1/audit-events
- POST /v1/analytics/sites
- GET /v1/analytics/sites
- GET /v1/analytics/sites/{site_id}
- POST /v1/analytics/sites/{site_id}/tokens/rotate
- GET /v1/analytics/sites/{site_id}/install-snippet
- POST /v1/analytics/ingest
- POST /v1/analytics/sql
- GET /v1/analytics/sites/{site_id}/summary
- GET /v1/analytics/sites/{site_id}/top-pages
- GET /v1/analytics/sites/{site_id}/referrers
- GET /v1/analytics/sites/{site_id}/timeseries
- GET /v1/analytics/sites/{site_id}/events
- POST /v1/knowledge/notes
- GET /v1/knowledge/notes
- GET /v1/knowledge/notes/{note_id}
- PUT /v1/knowledge/notes/{note_id}
- DELETE /v1/knowledge/notes/{note_id}
- POST /v1/knowledge/notes/{note_id}/move
- GET /v1/knowledge/notes/{note_id}/revisions
- POST /v1/knowledge/notes/{note_id}/restore
- POST /v1/knowledge/search
- GET /v1/knowledge/tree

Main MCP tools:
- start_login
- check_login_status
- create_repo
- list_repos
- create_branch
- commit_files
- get_git_credentials
- create_deploy_key
- create_webhook
- get_quota
- list_audit_events
- create_site
- list_sites
- get_install_snippet
- rotate_site_token
- query_analytics_sql
- get_site_summary
- get_top_pages
- get_referrers
- get_timeseries
- get_event_breakdown
- create_note
- read_note
- update_note
- delete_note
- move_note
- list_notes
- search_notes
- get_note_revisions
- restore_note_revision
- get_knowledge_tree

Suggested usage pattern:
1. Authenticate the user first.
2. Create a private repository.
3. Use commit_files for direct content creation.
4. If raw git is needed, request git credentials and use the returned clone URL.
5. Check quota before large operations.
6. Use audit logs to inspect prior writes.
7. For analytics, create a site, install the browser snippet on the allowed hostname, and query rollups or SQL through the analytics API.
8. For shared agent memory, create Markdown knowledge notes and search them with regex, text, or path filters.

Analytics trust boundaries:
- Browser tracking uses a public browser site key that is intended to appear in page markup.
- Browser events are accepted only for the site's allowed hostname policy.
- Server-side ingestion should use the rotatable site token, not the public browser site key.
- Do not expose server-side ingest tokens or MoonRock bearer tokens in browser-facing code.

Knowledge notes:
- Knowledge notes are workspace-scoped Markdown files.
- Multiple agents in the same workspace can create, read, update, move, delete, restore, and search them.
- Delete is reversible through note revisions.
- Use regex search when you want deterministic matching across prior operational notes.

Current auth note:
The approval page uses Google OAuth when the deployment is configured with a Google client ID and client secret.
Plain-text version