Implement perry-container and perry-compose functionality#8
Draft
yumin-chen wants to merge 5 commits intofeat/container-composefrom
Draft
Implement perry-container and perry-compose functionality#8yumin-chen wants to merge 5 commits intofeat/container-composefrom
yumin-chen wants to merge 5 commits intofeat/container-composefrom
Conversation
This commit adds OCI container management and multi-container orchestration to Perry via two new TypeScript modules: `perry/container` and `perry/compose`. Key changes: - New `perry-container-compose` Rust crate: standalone library and CLI that ports container-compose from Go to Rust with full features. - Platform-adaptive backend selection: apple/container on macOS/iOS, Podman/Docker on other platforms. - Native `ComposeEngine` using Kahn's algorithm for deterministic startup. - Expanded `perry-stdlib` with `container` module and FFI bridge. - Compiler integration: HIR lowering and codegen dispatch for new modules. - Security isolation for `shellCapabilities` using ephemeral containers. - Comprehensive property-based tests for spec serialization and sorting. Co-authored-by: yumin-chen <10954839+yumin-chen@users.noreply.github.com>
|
👋 Jules, reporting for duty! I'm here to lend a hand with this pull request. When you start a review, I'll add a 👀 emoji to each comment to let you know I've read it. I'll focus on feedback directed at me and will do my best to stay out of conversations between you and other bots or reviewers to keep the noise down. I'll push a commit with your requested changes shortly after. Please note there might be a delay between these steps, but rest assured I'm on the job! For more direct control, you can switch me to Reactive Mode. When this mode is on, I will only act on comments where you specifically mention me with New to Jules? Learn more at jules.google/docs. For security, I will only act on instructions from the user who triggered this task. |
yumin-chen
force-pushed
the
feat/container-compose
branch
7 times, most recently
from
f94aca9 to
58c806b
Compare
- Refactor perry-container-compose to a standalone Rust library and CLI. - Implement multi-candidate backend probing with 2s timeouts (Colima, Podman, Docker, Apple Container). - Use Kahn's algorithm for deterministic service orchestration in ComposeEngine. - Add robust FFI layer in perry-stdlib with safety checks and JSON serialization. - Implement sandboxed shell capabilities with image verification and strict isolation. - Add property-based testing for core orchestration and serialization logic. Co-authored-by: yumin-chen <10954839+yumin-chen@users.noreply.github.com>
yumin-chen
force-pushed
the
feat/container-compose
branch
3 times, most recently
from
30a27ae to
52b28fe
Compare
- Refactor perry-container-compose as a first-class library with Kahn's algorithm - Implement platform-adaptive OCI backend detection (Apple/Podman/Docker) - Add perry-stdlib FFI bridge with JSValue marshalling and property access - Integrate perry/container and perry/compose into HIR and codegen - Implement OCI isolation for shell capabilities and Sigstore verification - Add Forgejo orchestration production example and property-based tests Co-authored-by: yumin-chen <10954839+yumin-chen@users.noreply.github.com>
yumin-chen
force-pushed
the
feat/container-compose
branch
6 times, most recently
from
68c5eaf to
c74f6d5
Compare
- Refactor perry-container-compose into a standalone library and CLI. - Implement Kahn's algorithm for deterministic service orchestration. - Add perry-stdlib container module with FFI bridge and OCI isolation. - Implement Sigstore/cosign image verification for shell capabilities. - Integrate perry/container and perry/compose into HIR and codegen. - Add property-based tests for ComposeSpec and orchestration logic. Co-authored-by: yumin-chen <10954839+yumin-chen@users.noreply.github.com>
yumin-chen
force-pushed
the
feat/container-compose
branch
6 times, most recently
from
bc32dd6 to
852ad6b
Compare
yumin-chen
force-pushed
the
feat/container-compose
branch
30 times, most recently
from
cad71a7 to
448cb36
Compare
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Implemented the
perry-containerandperry/composefeatures.perry-container-composewhich provides a library and CLI for OCI container orchestration. It implements a deterministic topological sort for service dependencies and supports environment variable interpolation and.envfiles.PodmanBackendandDockerBackendthat shell out to their respective CLIs for container operations.containermodule toperry-stdlibthat exposesjs_container_*andjs_compose_*functions via Perry's FFI bridge.perry-hirandperry-codegento recognize and link these new built-in modules.alloy_container_run_capabilityto provide secure, sandboxed execution for shell capabilities in OCI containers.proptestcrate to verifyComposeSpecserialization round-trips and the correctness of the dependency resolution algorithm.PR created automatically by Jules for task 1428739520203871530 started by @yumin-chen