feat: add Docker containerization (#455)

[Harshit28j]

fixes #455

Description

Adds production-ready Docker containerization for AgenticFleet, enabling users to run the full stack with a single docker compose up command. This includes multi-stage builds for optimized image sizes, CI/CD integration for automated image publishing, and comprehensive deployment documentation.

Type of Change

• New feature (non-breaking change which adds functionality)
• Documentation update
• Configuration change

Related Issues

Fixes #455

Changes Made

• Add Dockerfile for backend with multi-stage build using uv, non-root user, and health check
• Add src/frontend/Dockerfile for frontend with Vite build served via nginx alpine
• Add src/frontend/nginx.conf for API proxying and SPA routing
• Add docker-compose.yml orchestrating backend, frontend, and optional Jaeger tracing
• Add .github/workflows/docker.yml for automated image builds to ghcr.io
• Add docs/guides/docker-deployment.md with quickstart and configuration guide
• Add .dockerignore files to optimize build context
• Fix unused formatMessageContent function in chat-messages.tsx that blocked production build

Testing

• [] All existing tests pass (uv run pytest)
• [] Linting passes (uv run ruff check .)

Test Commands Run

# Docker build and run
docker compose build
docker compose up -d
curl http://localhost:8000/health  # Returns {"status": "ok"}

# Frontend lint check
cd src/frontend && npm run lint  # Passes

[coderabbitai]

Note

Other AI code review bot(s) detected

CodeRabbit has detected other AI code review bot(s) in this pull request and will avoid duplicating their findings in the review comments. This may lead to a less comprehensive review.

📝 Walkthrough

Summary by CodeRabbit

• Documentation

  • Added Docker quick-start guide to README.
  • New comprehensive Docker deployment guide with setup instructions and environment configuration details.

• Chores

  • Implemented containerization for both backend and frontend components.
  • Added automated Docker image builds and publishing via CI/CD pipeline.

_{✏️ Tip: You can customize this high-level summary in your review settings.}

Walkthrough

Adds containerization and CI for backend and frontend: root and frontend .dockerignore files, multi-stage Dockerfiles (backend/frontend), nginx config, production docker-compose, GitHub Actions to build/push images, Docker deployment docs, and a small frontend cleanup.

Changes

Cohort / File(s)	Summary
Repo ignore & CI \.dockerignore, .github/workflows/docker.yml	Add root .dockerignore; add GitHub Actions workflow to build/push backend and frontend images to GHCR using Buildx with caching and conditional push.
Backend image Dockerfile	Add multi-stage Python 3.12 Dockerfile (builder installs deps from lockfiles, runtime copies venv, non-root user, expose 8000, healthcheck, uvicorn entrypoint).
Frontend image & config src/frontend/\.dockerignore, src/frontend/Dockerfile, src/frontend/nginx.conf	Add frontend .dockerignore; multi-stage Node 20 build then nginx runtime; nginx proxies /api and health/docs, gzip, long-cache headers, SPA fallback.
Orchestration docker-compose.yml	Add production-ready compose: backend, frontend, optional Jaeger tracing profile, shared network & volume, healthchecks, env var wiring, and startup ordering.
Docs README.md, docs/guides/docker-deployment.md	Add quick-start and detailed Docker deployment guide covering commands and environment variables.
Frontend minor change src/frontend/src/components/chat/chat-messages.tsx	Remove unused formatMessageContent helper; minor EOF formatting change.

Sequence Diagram(s)

sequenceDiagram
  autonumber
  participant Dev as Developer
  participant GH as GitHub Actions
  participant Reg as GHCR
  participant Compose as Docker Compose
  participant Front as Frontend (nginx)
  participant Back as Backend (uvicorn)

  rect rgb(240,246,255)
    note right of GH: CI: build & push images
    Dev->>GH: push / open PR
    alt non-PR (main or tag)
      GH->>GH: build backend (Buildx, cache)
      GH->>Reg: push backend image (sha, latest)
      GH->>GH: build frontend (Buildx, cache)
      GH->>Reg: push frontend image (sha, latest)
    else PR event
      GH->>GH: build backend/frontend (no push)
    end
  end

  rect rgb(246,255,240)
    note right of Compose: Local/Prod startup
    Dev->>Compose: docker compose up
    Compose->>Back: start backend container
    Back-->>Compose: /health responds (healthy)
    Compose->>Front: start frontend (depends_on healthy)
    Front->>Back: proxy /api, /health, /docs requests
    Back-->>Front: API/docs responses
  end

Loading

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~20 minutes

Possibly related PRs

• Feat/gepa #464 — Modifies the same frontend file src/frontend/src/components/chat/chat-messages.tsx (changes to formatMessageContent), directly related to the minor frontend cleanup in this PR.

Poem

🐇
I hopped through Dockerfiles at dawn,
Built images, pushed them, then was gone.
Compose brought services into view,
Healthchecks green, the proxies too.
A tiny rabbit claps — containers, woohoo!

Pre-merge checks and finishing touches

✅ Passed checks (5 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title clearly and concisely summarizes the main change: adding Docker containerization support to AgenticFleet.
Description check	✅ Passed	The description covers the required sections (Description, Type of Change, Related Issues, Changes Made, Testing) and provides comprehensive details about the Docker implementation.
Linked Issues check	✅ Passed	All coding objectives from issue #455 are met: backend Dockerfile with multi-stage build and health check, frontend Dockerfile with nginx, docker-compose.yml, CI/CD workflow, environment variable configuration, and deployment documentation added.
Out of Scope Changes check	✅ Passed	The removal of the unused formatMessageContent function is a necessary fix for the production build and is reasonably scoped to address a blocking issue identified during implementation.
Docstring Coverage	✅ Passed	Docstring coverage is 100.00% which is sufficient. The required threshold is 80.00%.

✨ Finishing touches

• 📝 Generate docstrings

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[gemini-code-assist]

Summary of Changes

Hello @Harshit28j, I'm Gemini Code Assist¹! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!

This pull request significantly enhances the deployability of AgenticFleet by introducing robust Docker containerization. It provides a streamlined way to run the entire application stack, including the Python backend and React frontend, using Docker Compose. The changes focus on creating efficient, production-ready Docker images, automating their publication, and offering clear guidance for users to deploy the application with ease.

Highlights

• Containerization: Introduces production-ready Docker containerization for the entire AgenticFleet application, making it easier to deploy and run.
• Simplified Deployment: Enables full stack deployment of the backend and frontend with a single docker compose up command.
• Optimized Builds: Implements multi-stage Docker builds for both the Python backend (using uv) and the Node.js/Vite frontend (served by Nginx) to ensure optimized and lightweight production image sizes.
• Automated CI/CD: Sets up CI/CD integration for automated Docker image publishing to ghcr.io, streamlining the release process.
• Comprehensive Documentation: Provides a new, detailed Docker deployment guide and updates the README.md with quick start instructions for containerized setup.
• Nginx Proxying: Configures Nginx for the frontend to efficiently handle API proxying to the backend and manage Single Page Application (SPA) routing.

Ignored Files

• Ignored by pattern: .github/workflows/** (1)
  • .github/workflows/docker.yml

Using Gemini Code Assist

The full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips.

Invoking Gemini

You can request assistance from Gemini at any point by creating a comment using either /gemini <command> or @gemini-code-assist <command>. Below is a summary of the supported commands on the current page.

Feature	Command	Description
Code Review	/gemini review	Performs a code review for the current pull request in its current state.
Pull Request Summary	/gemini summary	Provides a summary of the current pull request in its current state.
Comment	@gemini-code-assist	Responds in comments when explicitly tagged, both in pull request comments and review comments.
Help	/gemini help	Displays a list of available commands.

Customization

To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a .gemini/ folder in the base of the repository. Detailed instructions can be found here.

Limitations & Feedback

Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for Github and other Google products, sign up here.

You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension.

Footnotes

1. Review the Privacy Notices, Generative AI Prohibited Use Policy, Terms of Service, and learn how to configure Gemini Code Assist in GitHub here. Gemini can make mistakes, so double check it and use code with caution. ↩

[gemini-code-assist]

Code Review

This pull request introduces a comprehensive Docker setup for the AgenticFleet project, which is a fantastic addition for improving developer experience and deployment consistency. The use of multi-stage builds for both backend and frontend is a great practice for creating lean production images. The docker-compose.yml effectively orchestrates the services.

My review includes a few suggestions to enhance the setup further. I've pointed out a critical issue in the frontend Dockerfile's healthcheck that would cause container restarts. I've also suggested updating an outdated Jaeger image to mitigate security risks, improving reproducibility by pinning a dependency version, and removing some redundant configuration to keep the files clean and maintainable.

[Copilot]

Pull request overview

This PR adds comprehensive Docker containerization to AgenticFleet, enabling users to run the entire stack (backend, frontend, and optional Jaeger tracing) with docker compose up. The implementation includes multi-stage builds for optimized images, CI/CD integration for automated publishing to GitHub Container Registry, and deployment documentation.

Key Changes:

• Multi-stage Dockerfiles for backend (Python/uv) and frontend (Node/nginx) with production optimizations
• Docker Compose orchestration with service dependencies, health checks, and optional tracing profile
• GitHub Actions workflow for automated image building and publishing to ghcr.io
• Comprehensive deployment documentation with quickstart guide and environment variable reference

Reviewed changes

Copilot reviewed 10 out of 10 changed files in this pull request and generated 15 comments.

Show a summary per file

File	Description
Dockerfile	Multi-stage backend build using uv for dependency management, non-root user, and health checks
src/frontend/Dockerfile	Frontend build with Vite, served via nginx alpine for minimal image size
src/frontend/nginx.conf	Nginx configuration for SPA routing, API proxying, and static asset caching
docker-compose.yml	Service orchestration for backend, frontend, and optional Jaeger tracing
.dockerignore	Build context optimization excluding unnecessary files
src/frontend/.dockerignore	Frontend-specific build context exclusions
.github/workflows/docker.yml	CI/CD workflow for automated image builds and GHCR publishing
docs/guides/docker-deployment.md	Deployment guide with quickstart, commands, and environment variable reference
README.md	Added Docker quickstart section linking to deployment guide
src/frontend/src/components/chat/chat-messages.tsx	Removed unused formatMessageContent helper function to fix production build

[Copilot]

Missing environment variable that may be expected by the application. The .env.example file includes DSPY_COMPILE=true as an important configuration option that controls DSPy supervisor compilation, but this environment variable is not passed through in the docker-compose.yml backend service. Users who set this in their .env file expecting it to be used in the Docker environment will find it has no effect.

[Copilot]

Additional environment variables from .env.example are not exposed to the Docker container. The following variables defined in .env.example that may be needed by the application are not passed through: ENABLE_DSPY_AGENTS, LANGFUSE_SECRET_KEY, LANGFUSE_PUBLIC_KEY, LANGFUSE_BASE_URL, OPENAI_BASE_URL, AZURE_OPENAI_API_VERSION, Azure Cosmos DB settings, Azure AI Search settings, and Azure OpenAI model deployment names. Users configuring these features will be unable to use them in the Docker environment.

[Copilot]

Documentation shows incorrect image registry path. The documentation states users should pull from ghcr.io/qredence/agentic-fleet:latest, but the actual image names in docker-compose.yml use lowercase repository names as set by the GitHub workflow (line 37 in .github/workflows/docker.yml converts to lowercase). The repository name should match the actual GitHub repository owner/name. Verify the correct registry path matches the GitHub repository.

[Copilot]

The npm ci command uses --legacy-peer-deps flag which may hide dependency conflicts. While this flag may be necessary for the build to succeed, it bypasses peer dependency validation which could lead to runtime issues or security vulnerabilities from incompatible package versions. Document why this flag is needed or investigate resolving the peer dependency conflicts properly.

Suggested change

	RUN npm ci --legacy-peer-deps
	RUN npm ci

[Copilot]

The Jaeger image version appears outdated and uses a different image name than the existing tracing setup. The existing docker/docker-compose.tracing.yml uses jaegertracing/jaeger:2.13.0, but this uses jaegertracing/all-in-one:1.59. The version 1.59 is significantly older than 2.13.0. Consider using the same image and version as the existing tracing configuration for consistency, or update to a newer version if there's a specific reason for the change.

Suggested change

	image: jaegertracing/all-in-one:1.59
	image: jaegertracing/jaeger:2.13.0

[Copilot]

Docker build tags are not properly configured for version tags. When a version tag like v1.0.0 is pushed (line 7), the workflow will tag images as both :latest and :${{ github.sha }} (lines 44, 53), but it won't tag them with the version number (e.g., :v1.0.0 or :1.0.0). This means users cannot pull specific versions of the images. Consider using docker/metadata-action to automatically generate appropriate tags based on git refs, including semantic version tags.

[Copilot]

Disabling proxy buffering for all API requests may impact performance. The configuration sets proxy_buffering off for all /api requests (line 27), which is necessary for Server-Sent Events and streaming responses but may reduce performance for non-streaming API endpoints. Consider only disabling buffering for streaming endpoints or using X-Accel-Buffering header control to let the backend decide when buffering should be disabled.

Suggested change

	proxy_buffering off;
	# Note: proxy_buffering is left enabled by default.
	# Streaming endpoints should send `X-Accel-Buffering: no`
	# from the backend to disable buffering when needed.

[coderabbitai]

Actionable comments posted: 0

♻️ Duplicate comments (9)

src/frontend/nginx.conf (3)

8-20: Consider adding security headers for production.

Production nginx configurations typically include security headers such as X-Content-Type-Options, X-Frame-Options, X-XSS-Protection, and Referrer-Policy to protect against common web vulnerabilities.

Suggested security headers

 server {
     listen 80;
     root /usr/share/nginx/html;
     index index.html;
+
+    # Security headers
+    add_header X-Content-Type-Options "nosniff" always;
+    add_header X-Frame-Options "DENY" always;
+    add_header X-XSS-Protection "1; mode=block" always;
+    add_header Referrer-Policy "strict-origin-when-cross-origin" always;

     # Gzip
     gzip on;

---

21-32: Proxy buffering disabled for all API requests.

Setting proxy_buffering off (line 31) for all /api requests is necessary for Server-Sent Events and streaming responses but may reduce performance for non-streaming endpoints. Consider letting the backend control buffering via the X-Accel-Buffering header.

Alternative: backend-controlled buffering

         proxy_set_header X-Real-IP $remote_addr;
         proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
         proxy_read_timeout 300s;
-        proxy_buffering off;
+        # Note: proxy_buffering is left enabled by default.
+        # Streaming endpoints should send `X-Accel-Buffering: no`
+        # from the backend to disable buffering when needed.
     }

---

34-38: Health endpoint routing may cause confusion.

The /health endpoint proxies to the backend (line 35), but the frontend Dockerfile's healthcheck (line 29 in src/frontend/Dockerfile) checks http://localhost/ which serves the static frontend. While both work independently, accessing the frontend at http://localhost/health will return backend health status, which may be unexpected.

Consider separating frontend and backend health endpoints

+    # Frontend health endpoint (nginx/proxy)
+    location = /health {
+        return 204;
+    }
+
-    # Health/docs endpoints
+    # Backend health/docs endpoints
-    location ~ ^/(health|ready|docs|redoc|openapi.json) {
+    location ~ ^/(ready|docs|redoc|openapi.json) {
         proxy_pass http://api;
         proxy_set_header Host $host;
     }

src/frontend/Dockerfile (1)

10-10: Verify peer dependency usage.

The --legacy-peer-deps flag bypasses peer dependency validation, which could hide incompatible package versions. While this may be necessary for the current build to succeed, consider documenting why it's required or investigating resolution of the underlying peer dependency conflicts.

If this flag is required due to specific dependency conflicts, please document the reason in a comment or in the frontend README.

docs/guides/docker-deployment.md (2)

42-43: Verify image registry path matches repository.

The documentation specifies pulling from ghcr.io/qredence/agentic-fleet and ghcr.io/qredence/agentic-fleet-ui, but the GitHub workflow (line 37 in .github/workflows/docker.yml) converts the repository name to lowercase. Ensure these paths match the actual published images.

#!/bin/bash
# Verify the actual GitHub repository owner and name
gh repo view --json nameWithOwner --jq '.nameWithOwner'

---

30-35: Environment variable table has inconsistent formatting.

Line 35 describes ENABLE_OTEL as "Enable tracing" but doesn't mention the expected values (true/false) or default value, unlike typical boolean variable documentation.

Suggested improvement

 | Variable         | Required | Description                                      |
 |------------------|----------|--------------------------------------------------|
 | `OPENAI_API_KEY` | Yes      | OpenAI API key                                   |
 | `TAVILY_API_KEY` | No       | Web search                                       |
 | `AZURE_OPENAI_*` | No       | Azure OpenAI config                              |
-| `ENABLE_OTEL`    | No       | Enable tracing                                   |
+| `ENABLE_OTEL`    | No       | Enable tracing (`true`/`false`, default: `false`) |

.github/workflows/docker.yml (1)

39-55: Version tags not included in Docker image tags.

The workflow triggers on version tags (v* on line 7) but only tags images with {sha} and latest (lines 44, 53). Users cannot pull specific versions like :v1.0.0 or :1.0.0.

Consider using docker/metadata-action for automatic tag generation

+      - name: Docker metadata (backend)
+        id: meta-backend
+        uses: docker/metadata-action@v5
+        with:
+          images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
+          tags: |
+            type=ref,event=branch
+            type=ref,event=pr
+            type=semver,pattern={{version}}
+            type=semver,pattern={{major}}.{{minor}}
+            type=sha
+
       - name: Build backend
         uses: docker/build-push-action@v6
         with:
           context: .
           push: ${{ github.event_name != 'pull_request' }}
-          tags: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:${{ github.sha }},${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:latest
+          tags: ${{ steps.meta-backend.outputs.tags }}
+          labels: ${{ steps.meta-backend.outputs.labels }}
           cache-from: type=gha
           cache-to: type=gha,mode=max

Apply similar changes for the frontend build.

docker-compose.yml (2)

69-77: Verify Jaeger image version alignment with existing tracing setup.

Past comments noted that docker/docker-compose.tracing.yml uses jaegertracing/jaeger:2.13.0, while this uses jaegertracing/all-in-one:1.59. These are different image names and versions. The all-in-one image is the correct choice for single-node deployments, but version 1.59 is older than the 2.x series available.

What is the latest version of jaegertracing/all-in-one Docker image?

---

43-43: Document volume permission initialization in deployment guide or enhance entrypoint handling.

The concern is valid: the Dockerfile creates .var/ with app:app ownership (line 41), but this depends on the volume initialization preserving image ownership. The troubleshooting guide explicitly lists permission checks for .var/logs/ as a known issue, yet the docker-deployment.md guide omits this entirely. Additionally, make init-var only creates directories—it doesn't fix permissions.

Consider either:

• Adding a section to docker-deployment.md documenting this volume initialization concern and the troubleshooting steps
• Implementing an entrypoint script that explicitly ensures correct permissions on startup, rather than relying solely on the build-time chown

🧹 Nitpick comments (2)

docker-compose.yml (1)

30-41: Consider exposing additional environment variables from .env.example.

Several application features documented in .env.example won't be configurable in the Docker environment: DSPY_COMPILE, ENABLE_DSPY_AGENTS, Langfuse keys, Cosmos DB settings, and Azure AI Search settings. Users enabling these features will need to manually add them.

Based on retrieved learnings, DSPY_COMPILE controls offline compilation of DSPy supervisors and may be important for production deployments.

🔎 Suggested additions to environment section

      # Settings
      - LOG_LEVEL=${LOG_LEVEL:-INFO}
+     - DSPY_COMPILE=${DSPY_COMPILE:-false}
+     - ENABLE_DSPY_AGENTS=${ENABLE_DSPY_AGENTS:-false}
      # Tracing
      - ENABLE_OTEL=${ENABLE_OTEL:-false}
      - OTLP_ENDPOINT=http://jaeger:4317

Dockerfile (1)

52-52: Consider adding worker configuration for production.

The current command runs uvicorn with default single-worker configuration. For production deployments with higher load, you may want to expose worker count as a configurable option.

🔎 Optional: Make worker count configurable

-CMD ["python", "-m", "uvicorn", "agentic_fleet.main:app", "--host", "0.0.0.0", "--port", "8000"]
+CMD ["python", "-m", "uvicorn", "agentic_fleet.main:app", "--host", "0.0.0.0", "--port", "8000", "--workers", "1"]

Then users can override via docker-compose.yml:

command: ["python", "-m", "uvicorn", "agentic_fleet.main:app", "--host", "0.0.0.0", "--port", "8000", "--workers", "4"]

📜 Review details

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Disabled knowledge base sources:

• Linear integration is disabled by default for public repositories

You can enable these sources in your CodeRabbit configuration.

📥 Commits

Reviewing files that changed from the base of the PR and between e9f86b2 and d121deb.

📒 Files selected for processing (10)

• .dockerignore
• .github/workflows/docker.yml
• Dockerfile
• README.md
• docker-compose.yml
• docs/guides/docker-deployment.md
• src/frontend/.dockerignore
• src/frontend/Dockerfile
• src/frontend/nginx.conf
• src/frontend/src/components/chat/chat-messages.tsx

🧰 Additional context used

📓 Path-based instructions (6)

src/frontend/**/*

📄 CodeRabbit inference engine (CLAUDE.md)

Frontend must use config via VITE_API_URL in .env (defaults to http://localhost:8000)

Files:

• src/frontend/nginx.conf
• src/frontend/src/components/chat/chat-messages.tsx
• src/frontend/Dockerfile

src/frontend/src/**/*.{ts,tsx}

📄 CodeRabbit inference engine (CLAUDE.md)

src/frontend/src/**/*.{ts,tsx}: React components must be organized by technical concern: UI Primitives in components/ui/, Domain Components in components/[domain]/, Pages in pages/, Hooks in hooks/
React custom hooks must always be placed in hooks/ directory, never in components/
API calls must always go through api/hooks.ts, never direct fetch
Use React Query for server state management and Zustand for client state management in frontend

Files:

• src/frontend/src/components/chat/chat-messages.tsx

src/frontend/src/components/**/*.{ts,tsx}

📄 CodeRabbit inference engine (CLAUDE.md)

Domain Components must be reusable UI for specific domains (Chat, Message, Workflow, Layout) organized in components/[domain]/

Files:

• src/frontend/src/components/chat/chat-messages.tsx

{**/*.{ts,tsx,jsx,js},package.json,package-lock.json}

📄 CodeRabbit inference engine (AGENTS.md)

Use npm (Vite + React 19 + Tailwind) for frontend tooling; do not use bun

Files:

• src/frontend/src/components/chat/chat-messages.tsx

{src/agentic_fleet/api/**/*.py,src/agentic_fleet/workflows/**/*.py,**/*.{ts,tsx}}

📄 CodeRabbit inference engine (AGENTS.md)

Map workflow events through agentic_fleet.api.events.mapping to UI-friendly categories (reasoning, routing, analysis, quality, agent output); keep SSE payloads and frontend workflow renderers in sync when adding new event kinds

Files:

• src/frontend/src/components/chat/chat-messages.tsx

{.github/agents/agent-framework-spec.md,docs/**/*.md,src/agentic_fleet/agents/**/*.py}

📄 CodeRabbit inference engine (AGENTS.md)

For multi-agent expansion with OpenAI Agents SDK, treat Codex CLI as an MCP server and mirror roles from .github/agents/agent-framework-spec.md; document new roles/prompts in .github/agents/agent-framework-spec.md and docs/

Files:

• docs/guides/docker-deployment.md

🧠 Learnings (22)

📓 Common learnings

Learnt from: CR
Repo: Qredence/agentic-fleet PR: 0
File: docs/frontend/AGENTS.md:0-0
Timestamp: 2025-12-29T04:44:19.392Z
Learning: Applies to docs/frontend/src/frontend/{package.json,package-lock.json,*.lock} : Use `npm` as the package manager for the frontend (see root `Makefile` targets)

📚 Learning: 2025-12-22T06:44:16.454Z

Learnt from: CR
Repo: Qredence/agentic-fleet PR: 0
File: AGENTS.md:0-0
Timestamp: 2025-12-22T06:44:16.454Z
Learning: Avoid committing artifacts from `.var/` (logs, caches, compiled DSPy outputs) to version control

Applied to files:

• .dockerignore

📚 Learning: 2025-12-22T06:44:16.454Z

Learnt from: CR
Repo: Qredence/agentic-fleet PR: 0
File: AGENTS.md:0-0
Timestamp: 2025-12-22T06:44:16.454Z
Learning: Follow the layered FastAPI-first architecture: API → Services → Workflows → DSPy → Agents with code organized under `src/agentic_fleet/`

Applied to files:

• README.md
• src/frontend/nginx.conf
• docker-compose.yml
• docs/guides/docker-deployment.md
• Dockerfile

📚 Learning: 2025-12-29T04:44:19.392Z

Learnt from: CR
Repo: Qredence/agentic-fleet PR: 0
File: docs/frontend/AGENTS.md:0-0
Timestamp: 2025-12-29T04:44:19.392Z
Learning: Frontend renders the AgenticFleet chat UI and consumes backend REST endpoints under `/api/v1`

Applied to files:

• README.md
• src/frontend/nginx.conf
• docker-compose.yml
• src/frontend/Dockerfile

📚 Learning: 2025-12-22T06:44:16.454Z

Learnt from: CR
Repo: Qredence/agentic-fleet PR: 0
File: AGENTS.md:0-0
Timestamp: 2025-12-22T06:44:16.454Z
Learning: Run backend CLI via `make run` (agentic-fleet Typer console); use `make dev` for full dev servers (backend :8000, frontend :5173) or `make backend`/`make frontend-dev` individually

Applied to files:

• README.md
• docker-compose.yml

📚 Learning: 2025-12-29T04:44:01.340Z

Learnt from: CR
Repo: Qredence/agentic-fleet PR: 0
File: docs/developers/internals/AGENTS.md:0-0
Timestamp: 2025-12-29T04:44:01.340Z
Learning: Applies to docs/developers/internals/src/agentic_fleet/**/*.py : Treat `src/agentic_fleet/` as the source of truth for workflow behaviour—adjust configuration through YAML helpers and `AgentFactory` instead of hardcoding values

Applied to files:

• README.md
• Dockerfile

📚 Learning: 2025-12-29T04:44:01.340Z

Learnt from: CR
Repo: Qredence/agentic-fleet PR: 0
File: docs/developers/internals/AGENTS.md:0-0
Timestamp: 2025-12-29T04:44:01.340Z
Learning: Applies to docs/developers/internals/src/agentic_fleet/cli/**/*.py : CLI commands must be modular with separated command implementations; the `--fast` flag must automatically enable `pipeline_profile="light"` for latency-optimized workflow execution

Applied to files:

• README.md

📚 Learning: 2025-12-22T06:44:16.454Z

Learnt from: CR
Repo: Qredence/agentic-fleet PR: 0
File: AGENTS.md:0-0
Timestamp: 2025-12-22T06:44:16.454Z
Learning: Applies to {.github/agents/agent-framework-spec.md,docs/**/*.md,src/agentic_fleet/agents/**/*.py} : For multi-agent expansion with OpenAI Agents SDK, treat Codex CLI as an MCP server and mirror roles from `.github/agents/agent-framework-spec.md`; document new roles/prompts in `.github/agents/agent-framework-spec.md` and `docs/`

Applied to files:

• README.md

📚 Learning: 2025-12-22T06:44:16.454Z

Learnt from: CR
Repo: Qredence/agentic-fleet PR: 0
File: AGENTS.md:0-0
Timestamp: 2025-12-22T06:44:16.454Z
Learning: Applies to src/agentic_fleet/api/**/*.py : Place FastAPI web layer code (routes, middleware, deps) under `src/agentic_fleet/api/`

Applied to files:

• src/frontend/nginx.conf

📚 Learning: 2025-12-29T04:44:19.392Z

Learnt from: CR
Repo: Qredence/agentic-fleet PR: 0
File: docs/frontend/AGENTS.md:0-0
Timestamp: 2025-12-29T04:44:19.392Z
Learning: Applies to docs/frontend/src/frontend/src/features/chat/stores/chatStore.ts : Handle new streaming event types in `src/features/chat/stores/chatStore.ts` for event handling and mapping

Applied to files:

• src/frontend/src/components/chat/chat-messages.tsx

📚 Learning: 2025-12-29T04:44:19.392Z

Learnt from: CR
Repo: Qredence/agentic-fleet PR: 0
File: docs/frontend/AGENTS.md:0-0
Timestamp: 2025-12-29T04:44:19.392Z
Learning: Applies to docs/frontend/src/frontend/src/features/chat/**/*.{ts,tsx} : Chat feature should include UI, store, and streaming UI components under `src/features/chat/`

Applied to files:

• src/frontend/src/components/chat/chat-messages.tsx

📚 Learning: 2025-12-29T04:44:19.392Z

Learnt from: CR
Repo: Qredence/agentic-fleet PR: 0
File: docs/frontend/AGENTS.md:0-0
Timestamp: 2025-12-29T04:44:19.392Z
Learning: Applies to docs/frontend/src/frontend/src/features/chat/stores/chatStore.ts : Chat state management should create/select conversations, send chat requests over SSE, normalize stream events into message steps, and persist UI preferences (trace visibility, raw reasoning toggle)

Applied to files:

• src/frontend/src/components/chat/chat-messages.tsx

📚 Learning: 2025-12-29T04:44:19.392Z

Learnt from: CR
Repo: Qredence/agentic-fleet PR: 0
File: docs/frontend/AGENTS.md:0-0
Timestamp: 2025-12-29T04:44:19.392Z
Learning: Applies to docs/frontend/src/frontend/src/api/types.ts : Update `src/api/types.ts` when backend adds new streaming event types

Applied to files:

• src/frontend/src/components/chat/chat-messages.tsx

📚 Learning: 2025-12-22T04:13:38.415Z

Learnt from: CR
Repo: Qredence/agentic-fleet PR: 0
File: CLAUDE.md:0-0
Timestamp: 2025-12-22T04:13:38.415Z
Learning: When adding streaming event types, update backend mapping in `src/agentic_fleet/api/events/mapping.py`, add `ui_routing:` entry in workflow_config.yaml, update frontend types in `src/frontend/src/api/types.ts`, and handle in `src/frontend/src/stores/chatStore.ts`

Applied to files:

• src/frontend/src/components/chat/chat-messages.tsx

📚 Learning: 2025-12-22T06:44:16.454Z

Learnt from: CR
Repo: Qredence/agentic-fleet PR: 0
File: AGENTS.md:0-0
Timestamp: 2025-12-22T06:44:16.454Z
Learning: Applies to .env* : Copy `.env.example` to `.env` and set required `OPENAI_API_KEY` and optional `TAVILY_API_KEY`, Cosmos settings, and `DSPY_COMPILE` environment variables

Applied to files:

• docker-compose.yml

📚 Learning: 2025-12-22T06:44:16.454Z

Learnt from: CR
Repo: Qredence/agentic-fleet PR: 0
File: AGENTS.md:0-0
Timestamp: 2025-12-22T06:44:16.454Z
Learning: Applies to {src/agentic_fleet/dspy_modules/**/*.py,config/workflow_config.yaml} : Treat DSPy compilation as offline-only via `agentic-fleet optimize` (cached under `.var/logs/compiled_supervisor.pkl`); set `dspy.require_compiled: true` in config to fail-fast if artifacts are missing

Applied to files:

• docker-compose.yml

📚 Learning: 2025-12-29T04:44:01.340Z

Learnt from: CR
Repo: Qredence/agentic-fleet PR: 0
File: docs/developers/internals/AGENTS.md:0-0
Timestamp: 2025-12-29T04:44:01.340Z
Learning: Applies to docs/developers/internals/**/*.yaml : Required environment variable `OPENAI_API_KEY` must be set; optional variables (`OPENAI_BASE_URL`, `TAVILY_API_KEY`, `DSPY_COMPILE`, `ENABLE_OTEL`, `OTLP_ENDPOINT`) must be documented in configuration files

Applied to files:

• docker-compose.yml
• docs/guides/docker-deployment.md

📚 Learning: 2025-12-29T04:44:01.340Z

Learnt from: CR
Repo: Qredence/agentic-fleet PR: 0
File: docs/developers/internals/AGENTS.md:0-0
Timestamp: 2025-12-29T04:44:01.340Z
Learning: Applies to docs/developers/internals/**/.env : Load `.env` for local development; production deployments must inject secrets via managed stores instead of environment files

Applied to files:

• docker-compose.yml

📚 Learning: 2025-12-29T04:44:19.392Z

Learnt from: CR
Repo: Qredence/agentic-fleet PR: 0
File: docs/frontend/AGENTS.md:0-0
Timestamp: 2025-12-29T04:44:19.392Z
Learning: Applies to docs/frontend/src/frontend/{package.json,package-lock.json,*.lock} : Use `npm` as the package manager for the frontend (see root `Makefile` targets)

Applied to files:

• src/frontend/Dockerfile

📚 Learning: 2025-12-17T10:03:22.041Z

Learnt from: CR
Repo: Qredence/agentic-fleet PR: 0
File: .github/copilot-instructions.md:0-0
Timestamp: 2025-12-17T10:03:22.041Z
Learning: Use Python dependencies via `uv` only; never use `pip` directly (see `Makefile`)

Applied to files:

• Dockerfile

📚 Learning: 2025-12-22T04:13:38.415Z

Learnt from: CR
Repo: Qredence/agentic-fleet PR: 0
File: CLAUDE.md:0-0
Timestamp: 2025-12-22T04:13:38.415Z
Learning: Use `uv` for Python package management (mandatory, >0.8.0); never use pip directly

Applied to files:

• Dockerfile

📚 Learning: 2025-12-22T06:44:16.454Z

Learnt from: CR
Repo: Qredence/agentic-fleet PR: 0
File: AGENTS.md:0-0
Timestamp: 2025-12-22T06:44:16.454Z
Learning: Applies to **/*.py : Use `uv` for Python dependency and environment management (Python 3.12+); never activate venvs manually, always use `uv run ...`

Applied to files:

• Dockerfile

🔍 Remote MCP

Here is a concise summary of relevant additional context about the AgenticFleet repository and ecosystem that would help in reviewing the given pull request, based on the information available from the sources parsed:

---

Relevant Context for Reviewing the Docker Containerization Pull Request (#489)

Overall AgenticFleet System

• AgenticFleet is a multi-agent orchestration system combining Microsoft Agent Framework for runtime and DSPy for intelligent task analysis, routing, and quality assessment.
• It implements a 5-phase execution pipeline: Analysis → Routing → Execution → Progress → Quality.
• The architecture is configuration-driven with all agents, tools, and workflows defined in workflow_config.yaml.
• Agents are specialized roles like Researcher, Analyst, Writer, Coder, Planner, etc., instantiated via an AgentFactory.
• DSPy reasoning modules are compiled offline and cached for production efficiency.

Docker Containerization Features in the PR

• Adds backend and frontend Dockerfiles with multi-stage builds optimized for production.
• Frontend is built using Node/Vite and served via Nginx with optimized caching and gzip compression.
• Introduces robust docker-compose.yml orchestrating backend, frontend, and optional Jaeger tracing service with network and volume sharing.
• Adds .dockerignore files to optimize Docker build contexts by excluding git data, logs, caches, notebooks, tests, and virtual environments.
• Integrates Docker image build and publishing into GitHub Actions workflow at .github/workflows/docker.yml targeting GitHub Container Registry with appropriate caching and secrets management.
• Extends documentation with docs/guides/docker-deployment.md explaining quick start, commands, environment variables, and production usage with Docker.
• Updates README with Docker quick start instructions.
• Fixes frontend source code build issues by removing unused helper functions hindering production build compatibility.

Infrastructure and CI/CD Integration

• Uses uv for Python dependency management and npm for frontend, with pinned versions in uv.lock.
• CI/CD automates linting with Ruff, type checking with Ty, tests with pytest, frontend builds and tests with Vitest and Playwright, security scanning with Bandit and CodeQL.
• DSPy modules are compiled offline using GEPA optimizer, caching compiled artifacts under .var/cache/dspy/.
• The layered cache architecture optimizes routing decisions and agent responses.
• Observability integrates OpenTelemetry with optional Azure Monitor and Jaeger setups.
• Session management facilitates multi-tenant conversation and workflow state tracking, with Cosmos DB optional persistence backend.
• FastAPI backend serves API and websocket endpoints to the frontend React app.

Frontend Architecture

• React 19 app built with Vite, TypeScript, Tailwind CSS v4, Zustand for state management, and TanStack Query for server state.
• Chat UI components enable real-time visualization of agent workflow interactions, reasoning, and message streaming.
• Provides extensible UI routing and event mapping configurable via workflow_config.yaml.
• WebSocket and SSE clients handle streaming from backend via /ws/chat and /api/chat/:id/stream.

Key Points for PR Review

• Dockerfiles follow multi-stage patterns with security best practices (non-root users, minimal base images).
• Docker-compose orchestrates multi-container deployment aligning with workflow architecture and observability needs.
• GitHub Actions workflow uses buildx with cache and secret management in line with GHCR requirements.
• Integration with tracing and Jaeger for monitoring backend containers.
• Consistent .dockerignore files enhance build performance by reducing context size.
• Updates to frontend build process prevent known build issues.
• The documentation additions provide detailed end-user instructions aligning with config/environment variables used in deployment.

---

This context covers architecture, tooling, deployment, observability, and testing aspects relevant to the containerization changes introduced in this PR. It provides a holistic understanding of how the added Docker infrastructure integrates with AgenticFleet's existing systems and operational flows, aiding a thorough and informed review.

All information derived primarily from the DeepWiki source documents on AgenticFleet architecture, workflows, agent and tool systems, CI/CD, deployment, and frontend frameworks [::DeepWiki::].

🔇 Additional comments (12)

src/frontend/src/components/chat/chat-messages.tsx (1)

132-132: LGTM!

The trailing newline formatting is correct. The removal of the unused formatMessageContent helper (mentioned in the PR summary) properly addresses the production build issue.

src/frontend/.dockerignore (1)

1-4: LGTM!

Standard and appropriate ignore patterns for frontend Docker build context. Excludes node_modules (installed in container), build artifacts, logs, and environment files.

README.md (1)

91-104: LGTM!

The Docker quick-start section is clear and well-structured. The comment on line 95 appropriately guides users who already have the repository cloned, and the commands are properly separated for clarity.

.dockerignore (1)

1-41: LGTM!

Comprehensive and well-structured ignore patterns for the root Docker build context. The exclusion of src/frontend/ (line 33) is appropriate since the frontend has its own Dockerfile and build context, and the .dockerignore correctly preserves .env.example while excluding other environment files.

src/frontend/Dockerfile (1)

19-21: LGTM!

The wget installation (line 20) correctly addresses the healthcheck requirement, ensuring the container health can be properly monitored. Removing the default nginx config and replacing it with the custom configuration is the right approach.

docker-compose.yml (3)

1-15: Clear and helpful usage documentation.

The header comments provide useful context about the project architecture and quick usage examples. Good practice for discoverability.

---

60-62: Good use of health-based dependency.

Using condition: service_healthy ensures the frontend only starts after the backend is ready to serve requests. This prevents race conditions during startup.

---

79-84: Network and volume definitions look good.

Bridge network for inter-service communication and a named volume for backend data persistence are appropriate for this setup.

Dockerfile (4)

7-24: Well-structured builder stage with good caching strategy.

The dependency-first copy pattern (pyproject.toml and uv.lock before source) optimizes layer caching. The two-phase sync (--no-install-project then full sync) is a good approach with uv. Version 0.8.0 aligns with the project's required-version = ">=0.8.0" constraint.

---

29-44: Clean runtime stage with security best practices.

Good practices observed:

• Minimal base image with only necessary packages (curl for healthcheck)
• Non-root user (app) for container execution
• Proper ownership of copied files and created directories
• Single RUN instruction minimizes layers

---

49-50: Healthcheck configuration looks reasonable.

The 15-second start period allows time for application initialization. Consider whether this is sufficient for DSPy module loading if DSPY_COMPILE=true triggers compilation at startup.

---

21-24: The configuration file is already included in the Docker image. Since COPY src/agentic_fleet ./src/agentic_fleet recursively copies the entire directory, the workflow_config.yaml at src/agentic_fleet/config/workflow_config.yaml is automatically included in the build.

Likely an incorrect or invalid review comment.