smol_workflow_engine/js_runtime/

mod.rs

//! JavaScript runtime boundary for executing workflow modules.
//!
//! The boundary in this module is intentionally independent of any particular
//! JavaScript engine. The first implementation is backed by QuickJS via
//! [`rquickjs`], but callers should depend on these traits and types rather than
//! directly on the engine crate.
//!
//! Runtime implementations own JavaScript parsing, execution, sandboxing, and
//! the local JavaScript ↔ Rust bridge. The Rust workflow core drives the runtime
//! as a resumable execution and handles semantic calls/requests such as log,
//! phase, agent, and child workflow invocations.

use serde::{Deserialize, Serialize};
use serde_json::Value;
use std::collections::BTreeMap;
use std::time::Duration;

pub mod rquickjs;

/// Input for one workflow-module evaluation.
#[derive(Debug, Clone)]
pub struct WorkflowModuleInput {
    /// JavaScript/ESM-like workflow source.
    pub source: String,
    /// Human-readable source name used in runtime diagnostics.
    pub source_name: String,
    /// Workflow `args` global.
    pub args: Value,
    /// Initial budget snapshot exposed through the `budget` global.
    pub budget: WorkflowBudgetSnapshot,
    /// Sandbox limits and access policy for the runtime.
    pub sandbox: SandboxOptions,
}

impl WorkflowModuleInput {
    pub fn new(source: impl Into<String>, source_name: impl Into<String>, args: Value) -> Self {
        Self {
            source: source.into(),
            source_name: source_name.into(),
            args,
            budget: WorkflowBudgetSnapshot::default(),
            sandbox: SandboxOptions::default(),
        }
    }
}

/// Budget values exposed through the workflow `budget` global.
#[derive(Debug, Clone, Default, Deserialize, Serialize, PartialEq)]
pub struct WorkflowBudgetSnapshot {
    pub total: Option<u64>,
    pub spent: u64,
}

/// Sandbox limits for JavaScript execution.
#[derive(Debug, Clone)]
pub struct SandboxOptions {
    /// Maximum QuickJS heap size.
    pub memory_limit_bytes: usize,
    /// Maximum QuickJS stack size.
    pub max_stack_size_bytes: usize,
    /// Wall-clock timeout enforced by the QuickJS interrupt handler.
    pub timeout: Duration,
    /// Import policy for workflow modules.
    pub import_policy: ImportPolicy,
}

impl Default for SandboxOptions {
    fn default() -> Self {
        Self {
            // TODO: expose this as a user-configurable workflow runtime limit.
            memory_limit_bytes: 128 * 1024 * 1024,
            max_stack_size_bytes: 1024 * 1024,
            timeout: Duration::from_secs(5),
            import_policy: ImportPolicy::DenyAll,
        }
    }
}

/// Module import policy for workflow JavaScript.
#[derive(Debug, Clone, Copy, Eq, PartialEq)]
pub enum ImportPolicy {
    /// Do not allow workflow code to import user, filesystem, package, or host
    /// platform modules. Runtime-owned virtual modules may still be exposed by
    /// a concrete engine implementation, such as `workflow:extra`.
    DenyAll,
}

/// Result from evaluating a workflow module.
#[derive(Debug, Clone, Deserialize, Serialize, PartialEq)]
pub struct WorkflowModuleOutput {
    /// Default-exported workflow result after function invocation, if the default
    /// export was a function.
    pub result: Value,
}

/// Reference to a child workflow, matching the TypeScript SDK shape.
#[derive(Debug, Clone, Deserialize, Serialize, PartialEq)]
#[serde(untagged)]
pub enum WorkflowRef {
    Name(String),
    ScriptPath {
        #[serde(rename = "scriptPath")]
        script_path: String,
    },
}

/// Synchronous calls emitted by workflow JS.
///
/// These calls do not produce JavaScript-visible values. The workflow core should
/// update its run state and continue polling the runtime.
#[derive(Debug, Clone, Deserialize, Serialize, PartialEq)]
#[serde(tag = "type")]
pub enum WorkflowRuntimeCall {
    /// Workflow called `log(...)`.
    #[serde(rename = "log")]
    Log { values: Vec<Value> },

    /// Workflow called `phase(...)`.
    #[serde(rename = "phase")]
    Phase {
        name: String,
        #[serde(default, skip_serializing_if = "Option::is_none")]
        options: Option<Value>,
    },
}

/// Long-running JavaScript-visible request emitted by workflow JS.
#[derive(Debug, Clone, Deserialize, Serialize, PartialEq)]
#[serde(tag = "type")]
pub enum WorkflowRuntimeRequest {
    /// Workflow called `agent(...)` and is awaiting the provider result.
    #[serde(rename = "agent")]
    Agent {
        id: String,
        prompt: String,
        #[serde(default, skip_serializing_if = "Option::is_none")]
        options: Option<Value>,
    },

    /// Workflow called `workflow(...)` and is awaiting a child workflow result.
    #[serde(rename = "workflow")]
    Workflow {
        id: String,
        #[serde(rename = "ref")]
        workflow_ref: WorkflowRef,
        #[serde(default, skip_serializing_if = "Option::is_none")]
        args: Option<Value>,
    },

    /// Workflow called `sleep(...)` from the `workflow:extra` namespace.
    #[serde(rename = "sleep")]
    Sleep {
        id: String,
        #[serde(rename = "durationMs")]
        duration_ms: u64,
    },

    /// Workflow called `sandbox.exec(...)` and is awaiting command output.
    #[serde(rename = "sandbox_exec")]
    SandboxExec {
        id: String,
        profile: String,
        request: WorkflowSandboxExecRequest,
    },
}

/// Command request for `workflow:sandbox` / `SW.sandbox.exec`.
#[derive(Debug, Clone, Deserialize, Serialize, PartialEq, Eq)]
pub struct WorkflowSandboxExecRequest {
    pub command: String,
    #[serde(default)]
    pub args: Vec<String>,
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub cwd: Option<String>,
    #[serde(default, skip_serializing_if = "BTreeMap::is_empty")]
    pub env: BTreeMap<String, String>,
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub stdin: Option<String>,
}

/// Command output returned by `workflow:sandbox` / `SW.sandbox.exec`.
#[derive(Debug, Clone, Deserialize, Serialize, PartialEq, Eq)]
pub struct WorkflowSandboxExecOutput {
    #[serde(rename = "exitCode")]
    pub exit_code: i32,
    pub stdout: String,
    pub stderr: String,
}

impl WorkflowRuntimeRequest {
    pub fn id(&self) -> &str {
        match self {
            Self::Agent { id, .. }
            | Self::Workflow { id, .. }
            | Self::Sleep { id, .. }
            | Self::SandboxExec { id, .. } => id,
        }
    }

    pub fn kind(&self) -> &'static str {
        match self {
            Self::Agent { .. } => "agent",
            Self::Workflow { .. } => "workflow",
            Self::Sleep { .. } => "sleep",
            Self::SandboxExec { .. } => "sandbox_exec",
        }
    }
}

/// Response used to resume a pending long-running runtime request.
#[derive(Debug, Clone, Deserialize, Serialize, PartialEq)]
pub enum WorkflowRuntimeRequestResolution {
    Ok(Value),
    OkUndefined,
    OkWithBudget {
        value: Value,
        budget: WorkflowBudgetSnapshot,
    },
    Err {
        message: String,
    },
}

/// Result of polling a workflow JavaScript runtime execution.
#[derive(Debug, Clone, Deserialize, Serialize, PartialEq)]
pub enum WorkflowRuntimePoll {
    /// Runtime emitted a synchronous call. Core should handle it and poll again.
    Call(WorkflowRuntimeCall),
    /// Runtime is waiting for a long-running request to be resolved.
    Request(WorkflowRuntimeRequest),
    /// Workflow module completed.
    Complete(WorkflowModuleOutput),
    /// Runtime has no work ready and is not complete.
    Pending,
}

/// Resumable workflow JavaScript execution.
///
/// Runtime executions are expected to be owned by a single scheduler/actor and
/// accessed serially. Implementations are not required to be `Send` or safe for
/// concurrent access. The workflow coordinator should keep JavaScript-engine
/// calls isolated from provider tasks and communicate through this polling and
/// request-resolution boundary.
pub trait WorkflowRuntimeExecution {
    /// Poll the JavaScript runtime for the next call, request, completion, or
    /// pending state.
    fn poll(&mut self) -> anyhow::Result<WorkflowRuntimePoll>;

    /// Drain all currently queued unresolved runtime requests.
    ///
    /// Call this after [`poll`](Self::poll) returns
    /// [`WorkflowRuntimePoll::Request`] when the caller wants to schedule all
    /// JavaScript-created host requests concurrently. Draining removes requests
    /// from the runtime's event queue, but their JavaScript promises remain
    /// pending and must later be completed with [`resolve_request`](Self::resolve_request).
    ///
    /// If callers repeatedly poll after a request is observed without draining
    /// or resolving it, implementations may report the same request again.
    fn take_pending_requests(&mut self) -> anyhow::Result<Vec<WorkflowRuntimeRequest>>;

    /// Resolve or reject a previously emitted runtime request by id.
    fn resolve_request(
        &mut self,
        id: &str,
        resolution: WorkflowRuntimeRequestResolution,
    ) -> anyhow::Result<()>;
}

/// Engine-independent JavaScript workflow runtime interface.
pub trait WorkflowJSRuntime {
    fn start_module(
        &self,
        input: WorkflowModuleInput,
    ) -> anyhow::Result<Box<dyn WorkflowRuntimeExecution>>;
}