aa-runtime 0.0.1-alpha.8

Tokio async runtime wrapper and lifecycle management for Agent Assembly
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64

# syntax=docker/dockerfile:1.7

# cargo-chef + BuildKit cache mounts let us reuse the dependency build
# layer across PRs as long as Cargo.lock is unchanged, and persist the
# cargo registry / git / target directories across builds.

FROM rust:alpine AS chef
RUN --mount=type=cache,target=/usr/local/cargo/registry \
    --mount=type=cache,target=/usr/local/cargo/git \
    cargo install cargo-chef --locked
WORKDIR /app

# Planner: emit recipe.json describing the dependency graph. This layer's
# output only changes when Cargo.toml / Cargo.lock change.
FROM chef AS planner
COPY . .
RUN cargo chef prepare --recipe-path recipe.json --bin aa-runtime

# Builder: install system deps, pick the musl target for TARGETARCH,
# cook (compile) dependencies from recipe.json, then compile app code.
# The cook step is layer-cached on Cargo.lock; the final cargo build only
# rebuilds workspace crates.
FROM chef AS builder
RUN apk add --no-cache \
    musl-dev \
    protobuf-dev \
    openssl-dev \
    pkgconfig

ARG TARGETARCH
RUN case "$TARGETARCH" in \
      amd64) TARGET=x86_64-unknown-linux-musl ;; \
      arm64) TARGET=aarch64-unknown-linux-musl ;; \
      *) echo "Unsupported arch: $TARGETARCH" && exit 1 ;; \
    esac && \
    rustup target add "$TARGET" && \
    echo "$TARGET" > /tmp/rust_target

COPY --from=planner /app/recipe.json recipe.json
RUN --mount=type=cache,target=/usr/local/cargo/registry \
    --mount=type=cache,target=/usr/local/cargo/git \
    --mount=type=cache,target=/app/target,id=aa-runtime-target-${TARGETARCH} \
    TARGET=$(cat /tmp/rust_target) && \
    cargo chef cook --release --target "$TARGET" --recipe-path recipe.json --bin aa-runtime

COPY . .
RUN --mount=type=cache,target=/usr/local/cargo/registry \
    --mount=type=cache,target=/usr/local/cargo/git \
    --mount=type=cache,target=/app/target,id=aa-runtime-target-${TARGETARCH} \
    TARGET=$(cat /tmp/rust_target) && \
    cargo build --release --target "$TARGET" -p aa-runtime && \
    strip "target/$TARGET/release/aa-runtime" && \
    cp "target/$TARGET/release/aa-runtime" /app/aa-runtime

# Final stage: minimal distroless image running as non-root.
FROM gcr.io/distroless/static:nonroot AS runtime

COPY --from=builder /app/aa-runtime /aa-runtime

LABEL org.opencontainers.image.source="https://github.com/ai-agent-assembly/agent-assembly" \
      org.opencontainers.image.description="aa-runtime sidecar — AI agent assembly runtime" \
      org.opencontainers.image.licenses="Apache-2.0"

ENTRYPOINT ["/aa-runtime"]