claude-ceo-assistant
d9e380c5bc
Some checks failed
E2E Staging Canvas (Playwright) / Canvas tabs E2E (pull_request) Successful in 7s
Handlers Postgres Integration / Handlers Postgres Integration (pull_request) Successful in 7s
CI / Shellcheck (E2E scripts) (pull_request) Successful in 5s
CI / Detect changes (pull_request) Successful in 7s
CI / Canvas (Next.js) (pull_request) Successful in 7s
E2E API Smoke Test / E2E API Smoke Test (pull_request) Successful in 1m38s
E2E API Smoke Test / detect-changes (pull_request) Successful in 7s
Secret scan / Scan diff for credential-shaped strings (pull_request) Successful in 7s
Harness Replays / detect-changes (pull_request) Successful in 7s
Harness Replays / Harness Replays (pull_request) Failing after 42s
CI / Platform (Go) (pull_request) Successful in 3m32s
CodeQL / Analyze (${{ matrix.language }}) (javascript-typescript) (pull_request) Successful in 1s
CI / Canvas Deploy Reminder (pull_request) Has been skipped
CodeQL / Analyze (${{ matrix.language }}) (go) (pull_request) Successful in 1s
Handlers Postgres Integration / detect-changes (pull_request) Successful in 6s
E2E Staging Canvas (Playwright) / detect-changes (pull_request) Successful in 7s
Runtime PR-Built Compatibility / detect-changes (pull_request) Successful in 7s
CI / Python Lint & Test (pull_request) Successful in 6s
CodeQL / Analyze (${{ matrix.language }}) (python) (pull_request) Successful in 1s
Retarget main PRs to staging / Retarget to staging (pull_request) Has been skipped
Block internal-flavored paths / Block forbidden paths (pull_request) Successful in 4s
Runtime PR-Built Compatibility / PR-built wheel + import smoke (pull_request) Successful in 5s
OSS contributors who clone molecule-core and `go run ./workspace-server/cmd/server`
now get a working end-to-end provision without authenticating to GHCR or AWS ECR.
Pre-fix: with MOLECULE_IMAGE_REGISTRY unset, the provisioner attempted to pull
ghcr.io/molecule-ai/workspace-template-<runtime>:latest, which has been
returning 403 since the 2026-05-06 GitHub-org suspension.
Post-fix: when MOLECULE_IMAGE_REGISTRY is unset, the provisioner switches to
local-build mode — looks up the workspace-template-<runtime> repo's HEAD sha
on Gitea via a single API call, shallow-clones into ~/.cache/molecule/, and
runs `docker build --platform=linux/amd64`. SHA-pinned cache key skips the
clone+build entirely on subsequent provisions.
Production tenants are unaffected: every prod tenant sets the var to its
private ECR mirror, so the SaaS pull path is byte-for-byte identical.
SSOT for mode detection lives in Resolve() (registry_mode.go) returning a
discriminated RegistrySource{Mode, Prefix} so call sites that branch on
mode get a compile-time push instead of a string-equality footgun.
Coverage:
* registry_mode.go — new SSOT (Resolve, RegistryMode, IsKnownRuntime)
* registry_mode_test.go — 8 tests pinning mode-decision contract
* localbuild.go — clone+build pipeline (570 LOC, fully unit-tested)
* localbuild_test.go — 22 tests covering happy/sad paths, fail-closed
* provisioner.go — Start() inserts ensureLocalImageHook in local mode
* docs/adr/ADR-002 — design rationale + alternatives + security review
* docs/development/local-development.md — local-build flow + env overrides
Security:
* Allowlist-only runtime names (knownRuntimes) gate the clone path.
* Repo prefix hardcoded to git.moleculesai.app/molecule-ai/molecule-ai-workspace-template-;
forks via opt-in MOLECULE_LOCAL_TEMPLATE_REPO_PREFIX.
* MOLECULE_GITEA_TOKEN masked in every log line via maskTokenInURL/maskTokenInString.
* Fail-closed: Gitea unreachable / runtime not mirrored → clear error, never
silently fall back to GHCR/ECR.
* docker build invocation passes no --build-arg from external input.
* HTTP body cap 64KB on Gitea API responses (defence vs malicious upstream).
Closes #63 / Task #194.
Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
97 lines
4.0 KiB
Go
97 lines
4.0 KiB
Go
package provisioner
|
|
|
|
import "os"
|
|
|
|
// localImagePrefix is the synthetic registry hostname used for images
|
|
// that the local-build path produces. It is intentionally NOT a real
|
|
// hostname — Docker won't try to pull it from the network (no DNS
|
|
// resolution path), and the workspace-image-refresh / image-watch
|
|
// paths short-circuit on it.
|
|
//
|
|
// Tag scheme: `molecule-local/workspace-template-<runtime>:<tag>` where
|
|
// `<tag>` is either the 12-char Gitea HEAD sha for SHA-pinned references
|
|
// or the moving `:latest` for human inspection (the provisioner
|
|
// consumes the SHA-pinned form via EnsureLocalImage()).
|
|
//
|
|
// Issue #63 / Task #194.
|
|
const localImagePrefix = "molecule-local"
|
|
|
|
// RegistryMode classifies how the provisioner sources workspace-template
|
|
// container images. The two modes are mutually exclusive and selected
|
|
// by presence/absence of the MOLECULE_IMAGE_REGISTRY env var (Q2 design
|
|
// lock, 2026-05-07): set ⇒ SaaS-mode pull; unset ⇒ local-build mode.
|
|
//
|
|
// Discriminated value rather than a bare string return so every call
|
|
// site that decides on image source has to acknowledge the two modes —
|
|
// a bare string returning `""` on local-mode would silently produce
|
|
// malformed image refs (e.g. `/workspace-template-foo:latest`).
|
|
type RegistryMode string
|
|
|
|
const (
|
|
// RegistryModeSaaS — pull workspace-template-* images from a real
|
|
// container registry whose URL is in `MOLECULE_IMAGE_REGISTRY`.
|
|
// Used by every prod tenant (env injected via Railway / EC2
|
|
// user-data) and any self-hosted operator who has mirrored the
|
|
// images to their own GHCR/ECR/Harbor.
|
|
RegistryModeSaaS RegistryMode = "saas"
|
|
|
|
// RegistryModeLocal — clone the workspace-template-<runtime> repo
|
|
// from Gitea
|
|
// (`https://git.moleculesai.app/molecule-ai/molecule-ai-workspace-template-<runtime>`)
|
|
// and `docker build` the image locally. Used by OSS contributors
|
|
// who run `go run ./workspace-server/cmd/server` without setting
|
|
// MOLECULE_IMAGE_REGISTRY. Closes the post-2026-05-06 GHCR-403 gap
|
|
// (Task #194 / Issue #63).
|
|
RegistryModeLocal RegistryMode = "local"
|
|
)
|
|
|
|
// RegistrySource is the SSOT for image-resolution decisions. Returned
|
|
// by Resolve(); read by:
|
|
// - the provisioner Start() path — branches on Mode for clone+build
|
|
// vs pull
|
|
// - admin_workspace_images.go — skips remote pull in local mode
|
|
// - imagewatch.Watcher — short-circuits in local mode (no GHCR poll)
|
|
//
|
|
// SaaS-mode .Prefix matches the existing RegistryPrefix() return value;
|
|
// local-mode .Prefix is the synthetic `molecule-local`.
|
|
type RegistrySource struct {
|
|
Mode RegistryMode
|
|
Prefix string
|
|
}
|
|
|
|
// Resolve inspects the runtime environment and returns the image-source
|
|
// classification. Treats both unset AND empty-string MOLECULE_IMAGE_REGISTRY
|
|
// as "local mode" — an operator who set the var to "" via a misconfigured
|
|
// deploy would otherwise silently get malformed image refs in SaaS-mode;
|
|
// instead they get the local-build path, which fails loudly if the host
|
|
// has no Docker daemon (better blast radius).
|
|
//
|
|
// Mirrors the existing RegistryPrefix() empty-string handling, so the two
|
|
// functions agree on every input.
|
|
func Resolve() RegistrySource {
|
|
if v := os.Getenv("MOLECULE_IMAGE_REGISTRY"); v != "" {
|
|
return RegistrySource{Mode: RegistryModeSaaS, Prefix: v}
|
|
}
|
|
return RegistrySource{Mode: RegistryModeLocal, Prefix: localImagePrefix}
|
|
}
|
|
|
|
// IsKnownRuntime reports whether the given runtime name is in the
|
|
// canonical knownRuntimes list. Exposed so the local-build path can
|
|
// refuse to clone arbitrary repo paths supplied via cfg.Runtime —
|
|
// defence-in-depth against a future code path that might let an
|
|
// attacker influence the runtime string before it reaches the build
|
|
// code.
|
|
func IsKnownRuntime(runtime string) bool {
|
|
for _, r := range knownRuntimes {
|
|
if r == runtime {
|
|
return true
|
|
}
|
|
}
|
|
return false
|
|
}
|
|
|
|
// LocalImagePrefix returns the synthetic registry hostname used by the
|
|
// local-build path. Exposed so handlers that need to branch on "is
|
|
// this a local-built image?" don't have to duplicate the constant.
|
|
func LocalImagePrefix() string { return localImagePrefix }
|