#workspace #run #provisioning #provider #docker #local #provision

bin+lib derrick

A tool for provisioning workspaces to run code projects in

12 releases

new 0.0.12 Dec 24, 2024
0.0.11 Dec 19, 2024
0.0.10 Nov 29, 2024
0.0.3 Oct 31, 2024

#1022 in Network programming

Download history 321/week @ 2024-10-26 41/week @ 2024-11-02 479/week @ 2024-11-09 56/week @ 2024-11-16 203/week @ 2024-11-23 62/week @ 2024-11-30 10/week @ 2024-12-07 93/week @ 2024-12-14 132/week @ 2024-12-21

373 downloads per month

AGPL-3.0-or-later

105KB
2.5K SLoC

Derrick Workspace Provider

The Derrick workspace provider is responsible for setting up a workspace for an agent to run tasks in.

Motivation

When running our agents we want them to have a fresh environment that does not conflict with the environments of other agents that are running at the same time.

The manner in which we provision such an environment can vary depending on the circumstances. In a test it might be local or in Docker, for a customer it might be in a specific cloud provider, etc.

In the workspace we want our agent to be able to run tasks.

Since provisioning workspaces is a fairly expensive operation, we want to provide whatever is useful for being able to undo or reset the workspace after a task has run.

Special considerations

Provisioning caching

The agent will (almost always) need to download the source code of the repository(s) that it is working on into the workspace. After that it will probably download and/or install any dependencies. After these steps have been completed the workspace is in a clean state, and it would be a prime candidate for caching, so it makes sense to have an explicit phase for the setup of the workspace.

Specifically for Git repositories, we could even reuse a cached workspace if there are changes in the repository if we know not to clone the repository again, but instead to fetch the changes. This means the provider should be aware of which repositories are checked out and how to fetch changes for them.

Secrets / configuration

It would be ideal if the workspace itself does not have access to any secrets, for example the authentication tokens for the git repositories. Instead, the provider should be responsible for setting up the workspace before the agent gets access to it.

Technical design

The workspace provider is started with the following arguments:

  • provisioning mode (e.g. local, docker, cloud)
  • repositories and their target paths, and authentication tokens
  • a setup script

Once the provider is started, it exposes a server that the agent controller can send requests to. The requests are:

  • setup workspace
  • teardown workspace
  • run commands in a workspace
  • fetch git changes in a workspace

Usage

Usage: derrick --provisioning-mode <PROVISIONING_MODE> --workspace-config-path <WORKSPACE_CONFIG_PATH> --server-mode <SERVER_MODE>

Options:
  -p, --provisioning-mode <PROVISIONING_MODE>
          The provisioning mode to use (local, docker, remote_nats)
  -w, --workspace-config-path <WORKSPACE_CONFIG_PATH>
          The path to the workspace configuration file
  -s, --server-mode <SERVER_MODE>
          The server mode to use (nats, http)
  -h, --help
          Print help
  -V, --version
          Print version

Example config:

{
  "name": "test-123",
  "repositories": [],
  "setup_script": "echo \"Hello World\""
}

Example invocation:

derrick -p local -s http -w config.json

Dependencies

~40–72MB
~1.5M SLoC