mosaic/stack
1
0
Fork 0
Code Issues 10 Pull Requests Actions Packages Projects Releases 2 Wiki Activity
Files
d2ed1f281755be630dea858241ffe2ed4fff5ac8
stack/apps/orchestrator
History
Jason Woltje d2ed1f2817
Some checks failed
ci/woodpecker/push/infra Pipeline was successful
Details
ci/woodpecker/push/orchestrator Pipeline failed
Details
ci/woodpecker/push/api Pipeline failed
Details
ci/woodpecker/push/coordinator Pipeline was successful
Details
ci/woodpecker/push/web Pipeline was successful
Details
fix: eliminate apt-get from Kaniko builds, use static dumb-init binary 
Kaniko fundamentally cannot run apt-get update on bookworm (Debian 12)
due to GPG signature verification failures during filesystem snapshots.
Neither --snapshot-mode=redo nor clearing /var/lib/apt/lists/* resolves
this.

Changes:
- Replace apt-get install dumb-init with ADD from GitHub releases
  (static x86_64 binary) in api, web, and orchestrator Dockerfiles
- Switch coordinator builder from python:3.11-slim to python:3.11
  (full image includes build tools, avoids 336MB build-essential)
- Replace wget healthcheck with node-based check in orchestrator
  (wget no longer installed)
- Exclude telemetry lifecycle integration tests in CI (fail due to
  runner disk pressure on PostgreSQL, not code issues)

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-02-16 20:06:06 -06:00
..
src
fix(orchestrator): resolve DockerSandboxService DI failure on startup
2026-02-09 21:22:52 -06:00
tests
Merge branch 'develop' into feature/229-performance-testing
2026-02-05 19:33:06 +00:00
.env.example
fix(CQ-ORCH-10): Make BullMQ job retention configurable via env vars
2026-02-06 15:25:55 -06:00
.prettierrc
feat(#66): implement tag filtering in search API endpoint
2026-02-02 14:33:31 -06:00
AGENTS.md
docs(agents): add AGENTS.md context files for all modules
2026-02-09 22:04:43 -06:00
Dockerfile
fix: eliminate apt-get from Kaniko builds, use static dumb-init binary
2026-02-16 20:06:06 -06:00
ERROR_CONTEXT_DEMO.md
fix(orchestrator): resolve all M6 remediation issues (#260-#269)
2026-02-03 12:44:04 -06:00
eslint.config.js
feat(M6): Set up orchestrator service foundation
2026-02-02 13:16:19 -06:00
nest-cli.json
feat(M6): Set up orchestrator service foundation
2026-02-02 13:16:19 -06:00
package.json
fix(#338): Add rate limiting to orchestrator API
2026-02-05 18:26:50 -06:00
README.md
fix(#230): Correct documentation errors from code review
2026-02-05 13:24:54 -06:00
SECURITY.md
fix(orchestrator): resolve all M6 remediation issues (#260-#269)
2026-02-03 12:44:04 -06:00
tsconfig.json
feat(M6): Set up orchestrator service foundation
2026-02-02 13:16:19 -06:00
vitest.config.ts
feat(#66): implement tag filtering in search API endpoint
2026-02-02 14:33:31 -06:00

README.md

Mosaic Orchestrator

Agent orchestration service for Mosaic Stack built with NestJS.

Overview

The Orchestrator is the execution plane of Mosaic Stack, responsible for:

  • Spawning and managing Claude agents (worker, reviewer, tester)
  • Task queue management via BullMQ with Valkey backend
  • Agent lifecycle state machine (spawning → running → completed/failed/killed)
  • Git workflow automation with worktree isolation per agent
  • Quality gate enforcement via Coordinator integration
  • Killswitch emergency stop with cleanup
  • Docker sandbox isolation (optional)
  • Secret scanning on agent commits

Architecture

AppModule
├── HealthModule          → GET /health, GET /health/ready
├── AgentsModule          → POST /agents/spawn, GET /agents/:id/status, kill endpoints
│   ├── QueueModule       → BullMQ task queue (priority 1-10, retry with backoff)
│   ├── SpawnerModule     → Agent session management, Docker sandbox, lifecycle FSM
│   ├── KillswitchModule  → Emergency kill + cleanup (Docker, worktree, Valkey state)
│   └── ValkeyModule      → Distributed state persistence and pub/sub events
├── CoordinatorModule     → Quality gate checks (typecheck, lint, tests, coverage, AI review)
├── GitModule             → Clone, branch, commit, push, conflict detection, secret scanning
└── MonitorModule         → Agent health monitoring (placeholder)

Part of the Mosaic Stack monorepo at apps/orchestrator/. Controlled by apps/coordinator/ (Quality Coordinator). Monitored via apps/web/ (Agent Dashboard).

API Reference

Health

Method Path Description
GET /health Uptime and status
GET /health/ready Readiness check

Agents

Method Path Description
POST /agents/spawn Spawn a new agent
GET /agents/:agentId/status Get agent status
POST /agents/:agentId/kill Kill a single agent
POST /agents/kill-all Kill all active agents

POST /agents/spawn

{
  "taskId": "string (required)",
  "agentType": "worker | reviewer | tester",
  "gateProfile": "strict | standard | minimal | custom (optional)",
  "context": {
    "repository": "https://git.example.com/repo.git",
    "branch": "main",
    "workItems": ["US-001"],
    "skills": ["typescript"]
  }
}

Response:

{
  "agentId": "uuid",
  "status": "spawning"
}

GET /agents/:agentId/status

Response:

{
  "agentId": "uuid",
  "taskId": "string",
  "status": "spawning | running | completed | failed | killed",
  "spawnedAt": "ISO timestamp",
  "startedAt": "ISO timestamp (optional)",
  "completedAt": "ISO timestamp (optional)",
  "error": "string (optional)"
}

POST /agents/kill-all

Response:

{
  "message": "Kill all completed: 3 killed, 0 failed",
  "total": 3,
  "killed": 3,
  "failed": 0,
  "errors": []
}

Services

Service Module Responsibility
AgentSpawnerService Spawner Create agent sessions, generate UUIDs, track state
AgentLifecycleService Spawner State machine transitions with Valkey pub/sub events
DockerSandboxService Spawner Container creation with memory/CPU limits
QueueService Queue BullMQ priority queue with exponential backoff retry
KillswitchService Killswitch Emergency agent termination with audit logging
CleanupService Killswitch Multi-step cleanup (Docker, worktree, Valkey state)
GitOperationsService Git Clone, branch, commit, push operations
WorktreeManagerService Git Per-agent worktree isolation
ConflictDetectionService Git Merge conflict detection before push
SecretScannerService Git Detect hardcoded secrets (AWS, API keys, JWTs, etc.)
ValkeyService Valkey Distributed state and event pub/sub
CoordinatorClientService Coordinator HTTP client for quality gate API with retry
QualityGatesService Coordinator Pre-commit and post-commit gate evaluation

Valkey State Keys

orchestrator:task:{taskId}    → TaskState (status, agentId, context, timestamps)
orchestrator:agent:{agentId}  → AgentState (status, taskId, timestamps, error)
orchestrator:events           → Pub/sub channel for lifecycle events

Quality Gate Profiles

Profile Default For Gates
strict reviewer typecheck, lint, tests, coverage (85%), build, integration, AI review
standard worker typecheck, lint, tests, coverage (85%)
minimal tester tests only

Development

# Install dependencies (from monorepo root)
pnpm install

# Run in dev mode
pnpm --filter @mosaic/orchestrator dev

# Build
pnpm --filter @mosaic/orchestrator build

# Run unit tests
pnpm --filter @mosaic/orchestrator test

# Run E2E/integration tests
pnpm --filter @mosaic/orchestrator test:e2e

# Type check
pnpm --filter @mosaic/orchestrator typecheck

# Lint
pnpm --filter @mosaic/orchestrator lint

Testing

  • Unit tests: Co-located *.spec.ts files (19 test files, 447+ tests)
  • Integration tests: tests/integration/*.e2e-spec.ts (17 E2E tests)
  • Coverage threshold: 85% (lines, functions, branches, statements)

Configuration

Environment variables loaded via @nestjs/config. Key variables:

Variable Description
ORCHESTRATOR_PORT HTTP port (default: 3001)
CLAUDE_API_KEY Claude API key for agents
VALKEY_HOST Valkey/Redis host (default: localhost)
VALKEY_PORT Valkey/Redis port (default: 6379)
COORDINATOR_URL Quality Coordinator base URL
SANDBOX_ENABLED Enable Docker sandbox (true/false)

Related Documentation

  • Design: docs/design/agent-orchestration.md
  • Setup: docs/ORCHESTRATOR-MONOREPO-SETUP.md
  • Milestone: M6-AgentOrchestration (0.0.6)
Reference in New Issue View Git Blame Copy Permalink