mirror of https://github.com/harivansh-afk/agentikube.git synced 2026-04-15 05:02:07 +00:00

stateful kubernetes pods for ai-agents

Find a file

Harivansh Rathi ea1e837dce update config and initgo CRD		2026-02-07 14:19:40 -05:00
.github/workflows	build	2026-02-07 14:08:09 -05:00
cmd/agentikube	init	2026-02-07 13:49:11 -05:00
internal	update config and initgo CRD	2026-02-07 14:19:40 -05:00
.gitignore	readme + gitig	2026-02-07 14:00:08 -05:00
agentikube.yaml	update config and initgo CRD	2026-02-07 14:19:40 -05:00
go.mod	init	2026-02-07 13:49:11 -05:00
go.sum	init	2026-02-07 13:49:11 -05:00
Makefile	init	2026-02-07 13:49:11 -05:00
README.md	clean	2026-02-07 14:09:25 -05:00

README.md

agentikube

This repo is a small Go CLI for running isolated agent sandboxes on Kubernetes.

The main job of agentikube is:

set up shared sandbox infra (init, up)
create one sandbox per user/handle (create)
let you inspect and access sandboxes (list, status, ssh)
clean up sandboxes or shared infra (destroy, down)

It is built for AWS-style setups (EFS + optional Karpenter).

What This Stands Up

When you run up, it renders and applies Kubernetes manifests from templates.

Core resources:

Namespace
StorageClass (efs-sandbox, provisioner efs.csi.aws.com)
SandboxTemplate (sandbox-template)

Optional resources:

SandboxWarmPool (if sandbox.warmPool.enabled: true)
NodePool + EC2NodeClass (if compute.type: karpenter)

When you run create <handle>, it creates:

Secret (sandbox-<handle>) with provider credentials
SandboxClaim (sandbox-<handle>) that points to sandbox-template
PVC from template (workspace volume claim template)

Filesystem

cmd/agentikube/main.go         # CLI entrypoint + subcommand wiring
internal/config/               # config structs + validation/defaults
internal/manifest/             # template rendering
internal/manifest/templates/   # Kubernetes YAML templates
internal/kube/                 # kube client, apply, wait, exec helpers
internal/commands/             # command implementations
agentikube.example.yaml        # example config you copy to agentikube.yaml
Makefile                       # build/install/fmt/vet targets

How It Works (Simple Flow)

flowchart TD
    A[agentikube command] --> B[Load agentikube.yaml]
    B --> C[Validate config + apply defaults]
    C --> D{Command}
    D -->|init| E[Install CRDs + check prereqs + ensure namespace]
    D -->|up| F[Render templates -> server-side apply]
    D -->|create| G[Create Secret + SandboxClaim]
    G --> H[Watch SandboxClaim until Ready]
    D -->|list/status| I[Read SandboxClaim/WarmPool state]
    D -->|ssh| J[Resolve pod name -> kubectl exec -it]
    D -->|destroy| K[Delete SandboxClaim + Secret + best-effort PVC]
    D -->|down| L[Delete warm pool + template, keep user sandboxes]

Resource Diagram (Abilities + Resources)

flowchart LR
    CLI[agentikube CLI] --> K8S[Kubernetes API]
    CLI --> KUBECTL[kubectl binary]

    K8S --> NS[Namespace]
    K8S --> SC[StorageClass efs-sandbox]
    K8S --> ST[SandboxTemplate]
    K8S --> WP[SandboxWarmPool]
    K8S --> NP[NodePool]
    K8S --> ENC[EC2NodeClass]

    K8S --> CLAIM[SandboxClaim per user]
    K8S --> SECRET[Secret per user]
    CLAIM --> POD[Sandbox Pod]
    POD --> PVC[Workspace PVC]
    PVC --> SC
    SC --> EFS[(AWS EFS)]

    NP --> EC2[(EC2 nodes via Karpenter)]
    ENC --> EC2

Commands

agentikube init
Installs agent-sandbox CRDs, checks for EFS CSI/Karpenter, and ensures namespace exists.
agentikube up [--dry-run]
Renders manifests and applies them with server-side apply. --dry-run prints YAML only.
agentikube create <handle> --provider <name> --api-key <key>
Creates per-user Secret + SandboxClaim and waits (up to 3 minutes) for Ready.
agentikube list
Shows handle, status, age, and pod name for all sandbox claims.
agentikube ssh <handle>
Finds the sandbox pod and opens /bin/sh using kubectl exec -it.
agentikube destroy <handle> [--yes]
Deletes SandboxClaim + Secret + best-effort PVC for that handle.
agentikube down
Deletes shared warm pool/template infra but preserves existing user sandboxes.
agentikube status
Prints warm pool numbers, sandbox count, and Karpenter node count (if enabled).

Quick Start

Copy config:

cp agentikube.example.yaml agentikube.yaml

Fill your values in agentikube.yaml:

namespace
EFS filesystem ID / base path
sandbox image
compute settings

Run:

agentikube init
agentikube up
agentikube create demo --provider openai --api-key <key>
agentikube list
agentikube ssh demo

Test CLI Locally

Use this exact flow to verify the CLI on your machine:

# 1) Build + tests
mkdir -p .cache/go-build .cache/go-mod
GOCACHE=$(pwd)/.cache/go-build GOMODCACHE=$(pwd)/.cache/go-mod go build ./...
GOCACHE=$(pwd)/.cache/go-build GOMODCACHE=$(pwd)/.cache/go-mod go test ./...

# 2) Root help + command help
GOCACHE=$(pwd)/.cache/go-build GOMODCACHE=$(pwd)/.cache/go-mod go run ./cmd/agentikube --help
for c in init up create list ssh down destroy status; do
  GOCACHE=$(pwd)/.cache/go-build GOMODCACHE=$(pwd)/.cache/go-mod go run ./cmd/agentikube "$c" --help >/dev/null
done

# 3) Manifest generation smoke test
./agentikube up --dry-run --config agentikube.example.yaml

If those pass, the CLI wiring + config + templating path is working locally.

CI And Auto Release

This repo now has two GitHub Actions workflows:

.github/workflows/ci.yml
Runs go build ./... and go test ./... on PRs and non-main branch pushes.
.github/workflows/release.yml
Runs on push to main, auto-bumps patch version (vX.Y.Z), writes VERSION, creates/pushes tag, builds multi-platform binaries, and creates a GitHub Release with artifacts.

Notes / Current Limits

storage.type currently must be efs.
kubectl must be installed (used by init and ssh).
compute.type: fargate is validated, but this repo currently renders templates for the Karpenter path.
No Go tests are present yet (go test ./... reports no test files).