Fluid/fluidpop-v1
1
0
Fork 0
Code Issues 17 Pull requests Projects Releases Packages Wiki Activity Actions

feat(agents): Resolver Dispatcher + ephemeral per-issue Resolver #26

Merged
navigator merged 1 commit from feature/swarm-resolver-dispatcher-on-25 into main 2026-05-24 14:50:13 -03:00
Conversation 1 Commits 1 Files changed 4 +416
navigator commented 2026-05-24 14:49:22 -03:00
Owner
Copy link

Summary

Second wave of the swarm scaffolding. Builds on PR #25 (lib + Operator + Opener). Lands the long-running dispatcher and the ephemeral per-issue resolver it spawns.

What it does

resolver-dispatcher.shType=simple, Restart=always, 5-min poll loop:

  • Reaps finished children; transitions issue labels based on resolver exit code + presence of <!-- agent:pr --> marker comment
  • Atomic claim: swaps agent:queuedagent:in-progress + posts claim marker BEFORE creating the worktree
  • git worktree add -b auto/issue-<N>-<runid> origin/main under /var/lib/fluidpop-worktrees/ (root created by PR #27's install-swarm.sh)
  • Per-worktree identity: FluidPop Swarm <swarm@pop.coop> (per ADR-017)
  • Cap: $MAX_CONCURRENT_RESOLVERS (default 2)
  • git worktree prune on startup catches orphans
  • SIGTERM-safe: traps reap-before-exit

resolver.sh — ephemeral one-shot, invoked by dispatcher (not by systemd):

  • Background heartbeat poster comments <!-- agent:heartbeat run=… ts=… --> every 5 min on source issue (Operator uses staleness to detect dead resolvers)
  • sandbox_claude envelope with cgroup caps (MemoryMax=8G, CPUQuota=400%, TasksMax=512)
  • Post-mortem scan_escalation parses stream.jsonl for any tool call touching ADR-017 off-limits paths → quarantines + Telegram high
  • claude itself does the work: branch → commit → push → open PR → post <!-- agent:pr --> marker on source issue

resolver.md prompt — hard constraints (1 PR per issue, ≤600 LOC, off-limits paths, no --no-verify, no AI attribution); step-by-step commands; explicit blocker-handling protocol.

Validation

  • bash -n green on both .sh
  • systemd-analyze --user verify green on the .service
  • End-to-end test gated by Stage 4 cold start

Notes

This PR does NOT activate the dispatcher — install/start happens in PR #27.

Depends on PR #25 (merged) for lib/*.

## Summary Second wave of the swarm scaffolding. Builds on PR #25 (lib + Operator + Opener). Lands the long-running dispatcher and the ephemeral per-issue resolver it spawns. ## What it does **`resolver-dispatcher.sh`** — `Type=simple`, `Restart=always`, 5-min poll loop: - Reaps finished children; transitions issue labels based on resolver exit code + presence of `<!-- agent:pr -->` marker comment - Atomic claim: swaps `agent:queued` → `agent:in-progress` + posts claim marker BEFORE creating the worktree - `git worktree add -b auto/issue-<N>-<runid> origin/main` under `/var/lib/fluidpop-worktrees/` (root created by PR #27's `install-swarm.sh`) - Per-worktree identity: `FluidPop Swarm <swarm@pop.coop>` (per ADR-017) - Cap: `$MAX_CONCURRENT_RESOLVERS` (default 2) - `git worktree prune` on startup catches orphans - SIGTERM-safe: traps reap-before-exit **`resolver.sh`** — ephemeral one-shot, invoked by dispatcher (not by systemd): - Background heartbeat poster comments `<!-- agent:heartbeat run=… ts=… -->` every 5 min on source issue (Operator uses staleness to detect dead resolvers) - `sandbox_claude` envelope with cgroup caps (MemoryMax=8G, CPUQuota=400%, TasksMax=512) - Post-mortem `scan_escalation` parses `stream.jsonl` for any tool call touching ADR-017 off-limits paths → quarantines + Telegram `high` - claude itself does the work: branch → commit → push → open PR → post `<!-- agent:pr -->` marker on source issue **`resolver.md` prompt** — hard constraints (1 PR per issue, ≤600 LOC, off-limits paths, no `--no-verify`, no AI attribution); step-by-step commands; explicit blocker-handling protocol. ## Validation - [x] `bash -n` green on both `.sh` - [x] `systemd-analyze --user verify` green on the `.service` - [ ] End-to-end test gated by Stage 4 cold start ## Notes This PR does NOT activate the dispatcher — install/start happens in PR #27. Depends on PR #25 (merged) for `lib/*`.
feat(agents): Resolver Dispatcher + ephemeral per-issue Resolver
All checks were successful
build / scalafmt-check (push) Successful in 3s
Details
build / sbt-compile (push) Successful in 3s
Details
build / shell-lint (push) Successful in 10s
Details
build / scalafmt-check (pull_request) Successful in 3s
Details
build / sbt-compile (pull_request) Successful in 4s
Details
build / shell-lint (pull_request) Successful in 9s
Details
b0fa96f872 
Second wave of the autonomous swarm. Adds the long-running dispatcher
that consumes agent:queued issues and the per-issue ephemeral resolver
it spawns inside isolated git worktrees.

resolver-dispatcher.sh (Type=simple, Restart=always):
- 5-min poll loop with circuit-breaker guard
- Reaps finished children, transitions issue labels based on resolver
  exit code + presence of <!-- agent:pr --> marker comment
- Atomic claim: swap agent:queued -> agent:in-progress + post claim
  marker BEFORE creating worktree (single-instance via flock means no
  real race, belt+braces)
- git worktree add -b auto/issue-<N>-<runid> origin/main
  WORKTREE_ROOT=/var/lib/fluidpop-worktrees (writable by navigator;
  install-swarm.sh in PR #27 will create it with correct perms)
- Per-worktree git identity = FluidPop Swarm <swarm@pop.coop>
- Max parallel = $MAX_CONCURRENT_RESOLVERS (default 2, override via env)
- Worktree prune on startup catches orphaned worktrees from prior crashes
- SIGTERM-safe: traps to reap before exit

resolver.sh (ephemeral, invoked by dispatcher — not by systemd):
- Inherits ISSUE_N RUN_ID WORKTREE BRANCH EXIT_FILE LOG_DIR via env
- Starts a 5-min heartbeat poster in background that comments
  <!-- agent:heartbeat run=<id> ts=<utc> --> on the source issue
  (Operator uses heartbeat staleness to detect dead resolvers)
- Composes prompt from issue body + last 5 comments
- Invokes sandbox_claude (systemd-run --user --scope cgroup-capped)
- Post-mortem: scan_escalation parses stream.jsonl for any tool call
  touching ADR-017 off-limits paths; if found, labels swarm:quarantined
  and Telegram high-pri (no PR push)
- claude itself is responsible for: branch, commit, push, open PR via
  Forgejo REST, post <!-- agent:pr pr=#N --> marker comment on source
  issue. Resolver doesn't do any of that on claude's behalf.
- trap EXIT writes exit code to file for dispatcher reap

resolver.md prompt (roles/prompts/):
- Hard constraints: 1 PR per issue, <=600 LOC, no off-limits paths,
  no --no-verify, no AI attribution in artifacts
- Step-by-step: read issue -> code -> validate -> commit -> push ->
  open PR -> apply ready-for-review label -> post <!-- agent:pr --> marker
- Blocker handling: if stuck, post <!-- agent:fail reason=... --> and exit
  non-zero (dispatcher transitions issue to agent:blocked-resolver)

Test:
- bash -n green on both .sh files
- systemd-analyze --user verify green on the .service
fluidpop-bot approved these changes 2026-05-24 14:50:12 -03:00
fluidpop-bot left a comment
Collaborator
Copy link

CI green (head b0fa96f872), auto-approving

CI green (head b0fa96f87279cef54cfcfac1ef898a155b4738df), auto-approving
Sign in to join this conversation.
Reviewers
No reviewers
fluidpop-bot
Labels
Clear labels   
adr

Architecture Decision Record

  
agent:blocked-ci

CI failed on the PR

  
agent:blocked-human

Operator escalated; awaiting Marcos input

  
agent:blocked-resolver

Resolver crashed, returned empty, or timed out

  
agent:done

PR merged; issue auto-closed

  
agent:in-progress

Resolver claimed and running

  
agent:no-touch

Human-reserved; swarm Opener/Dispatcher skip

  
agent:pinged

Operator already escalated; suppress repeat pings

  
agent:pr-open

Resolver opened a PR; awaiting review/merge

  
agent:queued

Issue ready for swarm Resolver to claim

  
agent:wip

PR work-in-progress; Approver skips

  
area:board

PCB / mechanical / cooling

  
area:funding

PACID / grants / RFQs

  
area:infra

Dev env, CI, containers

  
area:phy

Physical layer / SerDes

  
area:poplink

PopLink protocol

  
area:rtl

Chisel/RTL work

  
area:software

Driver / runtime / frameworks

  
area:supply-chain

Foundry, OSAT, PCB, components

  
area:verification

Test, formal, coverage

  
ci-failed

auto-merge.sh detected CI failure

  
ci-timeout

auto-merge.sh hit CI timeout

  
docs

Documentation

  
do-not-merge

Hard hold; PR Approver skips

  
human-approved

Marcos approved via Telegram; release governance hold

  
needs-human-approval

Touches governance path; awaits Marcos label human-approved

  
needs-rebase

PR is not mergeable; rebase needed

  
needs-triage

Issue from untrusted author; Marcos triage needed

  
phase:1

Phase 1 (Section 6 of PLAN.md)

  
ready-for-review

Resolver done; PR Approver triages

  
review:findings

PR semantic review flagged blocking findings

  
review:pass

PR semantic review passed; safe for pr-approver

  
risk:tripwire

Section 0.5 tripwire fired

  
swarm:quarantined

Escalation tripwire fired; resolver tried off-limits paths

No labels
adr
agent:blocked-ci
agent:blocked-human
agent:blocked-resolver
agent:done
agent:in-progress
agent:no-touch
agent:pinged
agent:pr-open
agent:queued
agent:wip
area:board
area:funding
area:infra
area:phy
area:poplink
area:rtl
area:software
area:supply-chain
area:verification
ci-failed
ci-timeout
docs
do-not-merge
human-approved
needs-human-approval
needs-rebase
needs-triage
phase:1
ready-for-review
review:findings
review:pass
risk:tripwire
swarm:quarantined
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
2 participants
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
Fluid/fluidpop-v1!26
No description provided.