add --jail flags to colibri spawn-agent (jailed spawn is raw-socket-JSON only today) #102

New issue

Closed

opened 2026-06-20 08:36:26 +02:00 by clawdie · 1 comment

clawdie commented 2026-06-20 08:36:26 +02:00

Owner

Copy link

Gap

spawn-agent accepts an optional jail: JailConfig over the raw socket, but the colibri client's spawn-local / spawn-agent hardcode jail: None. So a jailed spawn (the only kind that triggers tenant provisioning) can only be issued as raw socket JSON.

Fix

Add --jail-name, --jail-root (and optional --jail-ip4 / --jail-user) flags to the colibri spawn-agent subcommand, mapping to JailConfig.

Acceptance

colibri spawn-agent <provider> <model> --jail-name <T> --jail-root /usr/local/bastille/jails/<T>/root spawns into the jail and fires the provision hook — no raw JSON needed.

Context: first-proof runbook documents the raw-socket JSON path as the interim method.

🤖 Generated with Claude Code

## Gap `spawn-agent` accepts an optional `jail: JailConfig` over the raw socket, but the `colibri` client's `spawn-local` / `spawn-agent` hardcode `jail: None`. So a **jailed** spawn (the only kind that triggers tenant provisioning) can only be issued as raw socket JSON. ## Fix Add `--jail-name`, `--jail-root` (and optional `--jail-ip4` / `--jail-user`) flags to the `colibri spawn-agent` subcommand, mapping to `JailConfig`. ## Acceptance `colibri spawn-agent <provider> <model> --jail-name <T> --jail-root /usr/local/bastille/jails/<T>/root` spawns into the jail and fires the provision hook — no raw JSON needed. Context: first-proof runbook documents the raw-socket JSON path as the interim method. 🤖 Generated with [Claude Code](https://claude.com/claude-code)

claude-domedog referenced this issue from a commit 2026-06-20 08:37:53 +02:00

docs(vault): first-proof runbook for the spawn->provision chain

clawdie referenced this issue 2026-06-20 08:38:09 +02:00

docs(vault): first-proof runbook for the spawn->provision chain #103

claude-domedog referenced this issue from a commit 2026-06-20 14:14:26 +02:00

feat(cli): register-tenant command + --jail flags on spawn (#101, #102)

claude-domedog referenced this issue from a commit 2026-06-20 14:17:05 +02:00

feat(cli): register-tenant command + --jail flags on spawn (#101, #102)

clawdie commented 2026-06-20 22:53:13 +02:00

Author

Owner

Copy link

Done: --jail-name/--jail-root flags on spawn-agent/spawn-local landed in PR #107; jailed spawn is no longer raw-socket-JSON only. Closing.

Done: `--jail-name`/`--jail-root` flags on `spawn-agent`/`spawn-local` landed in PR #107; jailed spawn is no longer raw-socket-JSON only. Closing.

clawdie closed this issue 2026-06-20 22:53:13 +02:00

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

main

chore/store-phase3-followups

v0.11.0

v0.0.1

Labels

Clear labels   

first-proof blocker

gates the first proven end-to-end

  

hardening

security/robustness follow-up, not a first-proof gate

No labels

first-proof blocker

hardening

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: clawdie/colibri#102

No description provided.