Homelab Docs

Appearance

ADR 007: Agent Run Orchestration Service

Author: jomcgi Status: Draft Created: 2026-03-07 Supersedes: None (extends 004-autonomous-agents)

Problem

The agent-run CLI triggers Goose tasks via SandboxClaims but has no persistence — job state, output, and outcomes are ephemeral. There is no way to:

  • Query what jobs have run, are running, or are pending
  • Retry failed jobs with context from previous attempts
  • Trigger jobs programmatically (e.g. from GitHub webhooks or Linear)
  • Review job output after the terminal session ends

We need a service that wraps the existing agent-run logic with durable state and a queryable API, designed for both MCP chat interfaces and future webhook-driven automation.

Proposal

A single Go service (agent-orchestrator) that combines an HTTP API with a NATS JetStream consumer. The service accepts job submissions via REST, queues them in JetStream, and processes them serially using the existing SandboxClaim lifecycle.

AspectToday (agent-run CLI)Proposed (agent-orchestrator)
TriggerHuman at terminalREST API (future: webhooks)
StateEphemeral (terminal session)NATS KV (durable, queryable)
OutputStreamed to stdoutCaptured to KV + pod logs
RetriesManual re-runAutomatic with context inheritance
ConcurrencyOne per terminalSerialized via JetStream consumer
LifecycleProcess lifetimeService lifetime (survives restarts)

The API is designed for MCP tool wrapping — each endpoint maps to a natural conversational action (submit, list, check status, cancel, read output).

Architecture

mermaid
graph TB
    Client[REST Client / MCP Tool] -->|POST /jobs| API[HTTP API :8080]
    Client -->|GET /jobs| API
    Client -->|POST /jobs/:id/cancel| API

    API -->|1. Write JobRecord| KV[(NATS KV<br/>job-records)]
    API -->|2. Publish job ID| JS[(NATS JetStream<br/>agent.jobs)]

    JS -->|pull max-in-flight=1| Consumer[Consumer Goroutine]
    Consumer -->|3. Update status| KV
    Consumer -->|4. Create| SC[SandboxClaim]
    SC -->|5. Allocate from pool| WP[Warm Pool Pod]
    Consumer -->|6. Exec goose run| WP
    Consumer -->|7. Capture output| KV
    Consumer -->|8. Cleanup| SC

Key design decisions

NATS JetStream + KV — Durable queue survives service restarts. KV provides queryable state without a separate database. Both use the existing single-node NATS deployment.

MaxAckPending=3 (configurable) — Allows up to 3 concurrent job executions via the MAX_CONCURRENT environment variable. Provides natural backpressure via JetStream's MaxAckPending setting. A stuck Goose session is detected by an inactivity watchdog (default 10 minutes of no output) which kills the execution context.

Self-provisioning — The service creates the JetStream stream and KV bucket on startup if they don't exist (idempotent).

Cancellation via KV polling — The consumer checks job status in KV before each lifecycle phase. Setting status to CANCELLED in KV is sufficient; no separate cancel channel needed.

Retry with context inheritance — Failed attempts enrich the next attempt's prompt with previous output summaries, helping the agent avoid repeated failure modes.

Data model 

JobRecord
├── id (ULID — sortable, URL-safe)
├── task, status, created_at, updated_at
├── max_retries, source ("api" | "github" | "cli")
├── github_issue (reserved), debug_mode (reserved)
├── attempts[]
│   ├── number, sandbox_claim_name
│   ├── exit_code, output
│   └── started_at, finished_at
└── failure_summary (reserved for DLQ)

REST API

MethodPathPurposeMCP use case
POST/jobsSubmit job (202 Accepted)"run this task"
GET/jobsList jobs (?status=, ?limit=, ?offset=)"what's running?"
GET/jobs/:idJob detail + all attempts"show me job X"
POST/jobs/:id/cancelCancel running/pending job"stop that job"
GET/jobs/:id/outputLatest attempt output"what did it produce?"
GET/healthLiveness/readinessk8s probes

Implementation

Phase 1: MVP

  • [ ] Create services/agent-orchestrator/ with Go module and main.go
  • [ ] Implement NATS client (connect, ensure stream + KV bucket)
  • [ ] Implement job store (KV CRUD operations on JobRecord)
  • [ ] Implement HTTP API handlers (submit, list, get, cancel, output, health)
  • [ ] Port SandboxClaim lifecycle from tools/agent-run/main.go (create, poll, exec, cleanup)
  • [ ] Implement consumer goroutine (pull, execute, retry logic)
  • [ ] Build apko container image (charts/agent-orchestrator/image/)
  • [ ] Create Helm chart (charts/agent-orchestrator/) with Deployment, Service, SA, RBAC
  • [ ] Create overlay (overlays/prod/agent-orchestrator/) with ArgoCD Application
  • [ ] Add BUILD files and verify bazel build //services/agent-orchestrator/...

Phase 2: Observability & Resilience

  • [ ] Add structured logging (slog JSON) with job context
  • [ ] Prometheus metrics (jobs submitted, completed, failed, duration histogram)
  • [ ] SigNoz dashboard for job lifecycle
  • [ ] Output size limits (truncate in KV, full output in pod logs)
  • [ ] Graceful shutdown (drain consumer, finish in-flight job)

Phase 3: External Access & Webhooks

  • [ ] Add Cloudflare Access authentication
  • [ ] Expose via Cloudflare tunnel
  • [ ] Add POST /webhooks/github endpoint with signature verification
  • [ ] MCP tool definitions for Context Forge

Phase 4: DLQ & Debug Mode

  • [ ] DLQ stream for exhausted-retry jobs
  • [ ] DLQ handler: synthesise failure_summary via Claude API
  • [ ] DLQ handler: create/update GitHub issue with summary + attempt logs
  • [ ] Re-queue with debug_mode: true and enriched prompt

Security

  • No auth for MVP — ClusterIP-only, not exposed outside the cluster
  • Non-root container — uid 65532, drop ALL capabilities
  • RBAC scoped — ServiceAccount can only manage SandboxClaims/Sandboxes in goose-sandboxes namespace + pod exec
  • No secrets in config — all secrets via 1Password Operator (existing agent-secrets, claude-auth)
  • Sandbox isolation — each attempt gets a fresh SandboxClaim; workspace data is ephemeral

See docs/security.md for baseline. No deviations.

Risks

RiskLikelihoodImpactMitigation
Hung Goose session blocks queueMediumMediumSandbox timeout behaviour terminates stuck pods
NATS KV output size limitsLowLowTruncate output in KV; full output remains in pod logs
Single-node NATS downtimeLowHighService retries NATS connection; jobs resume after reconnect
Warm pool exhaustion during retriesLowLowSandboxClaim waits for pool replenishment; no data loss

Open Questions

  1. Should output capture have a max size before truncation in KV? (Phase 2)
  2. Webhook payload format for GitHub → job mapping (Phase 3)
  3. How to handle long-running Goose sessions that exceed KV value size limits

References

ResourceRelevance
ADR 004: Autonomous AgentsCurrent agent architecture this extends
ADR 003: Context ForgeMCP gateway for future tool wrapping
tools/agent-run/main.goExisting CLI being wrapped
NATS JetStream docsQueue and KV backing store
agent-sandbox CRDsSandboxClaim lifecycle