MarimerLLC
diff --git a/‎RockBot.slnx‎
Lines changed: 1 addition & 0 deletions b/‎RockBot.slnx‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎deploy/docker-compose/docker-compose.yml‎
Lines changed: 20 additions & 0 deletions b/‎deploy/docker-compose/docker-compose.yml‎
Lines changed: 20 additions & 0 deletions
diff --git a/‎src/RockBot.Scripts.Docker/DockerScriptHandler.cs‎
Lines changed: 174 additions & 0 deletions b/‎src/RockBot.Scripts.Docker/DockerScriptHandler.cs‎
Lines changed: 174 additions & 0 deletions
diff --git a/‎src/RockBot.Scripts.Docker/DockerScriptOptions.cs‎
Lines changed: 75 additions & 0 deletions b/‎src/RockBot.Scripts.Docker/DockerScriptOptions.cs‎
Lines changed: 75 additions & 0 deletions
@@ -21,6 +21,7 @@
     <Project Path="src/RockBot.Tools.Mcp/RockBot.Tools.Mcp.csproj" />
     <Project Path="src/RockBot.Scripts.Abstractions/RockBot.Scripts.Abstractions.csproj" />
     <Project Path="src/RockBot.Scripts.Container/RockBot.Scripts.Container.csproj" />
+    <Project Path="src/RockBot.Scripts.Docker/RockBot.Scripts.Docker.csproj" />
     <Project Path="src/RockBot.Scripts.Local/RockBot.Scripts.Local.csproj" />
     <Project Path="src/RockBot.Scripts.Remote/RockBot.Scripts.Remote.csproj" />
     <Project Path="src/RockBot.Scripts.Manager/RockBot.Scripts.Manager.csproj" />
 
@@ -99,6 +99,26 @@ services:
     volumes:
       - ${AGENT_DATA_PATH:-agent-data}:/data/agent
 
+  scripts-manager:
+    image: rockylhotka/rockbot-scripts-manager:latest
+    user: root   # Required for Docker socket access
+    depends_on:
+      rabbitmq:
+        condition: service_healthy
+    environment:
+      RabbitMq__HostName: rabbitmq
+      RabbitMq__Port: "5672"
+      RabbitMq__UserName: rockbot
+      RabbitMq__Password: rockbot
+      RabbitMq__VirtualHost: /
+      Scripts__Provider: Docker
+      Scripts__Docker__Image: python:3.12-slim
+      Scripts__Docker__CpuLimit: "500m"
+      Scripts__Docker__MemoryLimit: 256Mi
+      Scripts__Docker__NetworkMode: bridge
+    volumes:
+      - /var/run/docker.sock:/var/run/docker.sock
+
   blazor:
     image: rockylhotka/rockbot-blazor:latest
     depends_on:
 
@@ -0,0 +1,174 @@
+using System.Diagnostics;
+using Docker.DotNet;
+using Docker.DotNet.Models;
+using Microsoft.Extensions.Logging;
+using RockBot.Host;
+using RockBot.Messaging;
+
+namespace RockBot.Scripts.Docker;
+
+/// <summary>
+/// Handles script invocation requests by creating ephemeral Docker containers.
+/// </summary>
+internal sealed class DockerScriptHandler(
+    IDockerClient docker,
+    IMessagePublisher publisher,
+    DockerScriptOptions options,
+    AgentIdentity agent,
+    ILogger<DockerScriptHandler> logger) : IMessageHandler<ScriptInvokeRequest>
+{
+    public async Task HandleAsync(ScriptInvokeRequest request, MessageHandlerContext context)
+    {
+        var replyTo = context.Envelope.ReplyTo ?? options.DefaultResultTopic;
+        var correlationId = context.Envelope.CorrelationId;
+        string? containerId = null;
+
+        try
+        {
+            var createParams = BuildCreateParameters(request);
+            var sw = Stopwatch.StartNew();
+
+            logger.LogDebug("Creating script container for call {ToolCallId}", request.ToolCallId);
+
+            var createResponse = await docker.Containers.CreateContainerAsync(createParams, context.CancellationToken);
+            containerId = createResponse.ID;
+
+            await docker.Containers.StartContainerAsync(containerId, new ContainerStartParameters(), context.CancellationToken);
+
+            using var cts = CancellationTokenSource.CreateLinkedTokenSource(context.CancellationToken);
+            cts.CancelAfter(TimeSpan.FromSeconds(request.TimeoutSeconds + 5));
+
+            string? stdout = null;
+            string? stderr = null;
+            int exitCode;
+
+            try
+            {
+                var waitResponse = await docker.Containers.WaitContainerAsync(containerId, cts.Token);
+                sw.Stop();
+
+                (stdout, stderr) = await ReadLogsAsync(containerId, context.CancellationToken);
+                exitCode = (int)waitResponse.StatusCode;
+            }
+            catch (OperationCanceledException) when (context.CancellationToken.IsCancellationRequested)
+            {
+                throw;
+            }
+            catch (OperationCanceledException)
+            {
+                sw.Stop();
+                exitCode = -1;
+                stderr = $"Container timed out after {request.TimeoutSeconds}s";
+            }
+
+            var response = new ScriptInvokeResponse
+            {
+                ToolCallId = request.ToolCallId,
+                Output = stdout,
+                Stderr = stderr,
+                ExitCode = exitCode,
+                ElapsedMs = sw.ElapsedMilliseconds
+            };
+
+            var envelope = response.ToEnvelope<ScriptInvokeResponse>(
+                source: agent.Name,
+                correlationId: correlationId);
+
+            await publisher.PublishAsync(replyTo, envelope, context.CancellationToken);
+        }
+        catch (OperationCanceledException) when (context.CancellationToken.IsCancellationRequested)
+        {
+            throw;
+        }
+        catch (Exception ex)
+        {
+            logger.LogWarning(ex, "Script execution failed for call {ToolCallId}", request.ToolCallId);
+
+            var response = new ScriptInvokeResponse
+            {
+                ToolCallId = request.ToolCallId,
+                Stderr = ex.Message,
+                ExitCode = -1,
+                ElapsedMs = 0
+            };
+
+            var envelope = response.ToEnvelope<ScriptInvokeResponse>(
+                source: agent.Name,
+                correlationId: correlationId);
+
+            await publisher.PublishAsync(replyTo, envelope, context.CancellationToken);
+        }
+        finally
+        {
+            if (containerId is not null)
+            {
+                try
+                {
+                    await docker.Containers.RemoveContainerAsync(containerId,
+                        new ContainerRemoveParameters { Force = true, RemoveVolumes = true });
+                }
+                catch (Exception ex)
+                {
+                    logger.LogDebug(ex, "Failed to remove script container {ContainerId}", containerId);
+                }
+            }
+        }
+    }
+
+    private CreateContainerParameters BuildCreateParameters(ScriptInvokeRequest request)
+    {
+        var scriptCommand = "";
+        if (request.PipPackages is { Count: > 0 })
+        {
+            scriptCommand += $"pip install --quiet --target /tmp/pypackages {string.Join(' ', request.PipPackages)} 2>&1 && ";
+            scriptCommand += "PYTHONPATH=/tmp/pypackages ";
+        }
+        scriptCommand += "python -c \"$ROCKBOT_SCRIPT\" 2>&1";
+
+        var env = new List<string>
+        {
+            $"ROCKBOT_SCRIPT={request.Script}",
+            $"ROCKBOT_INPUT={request.InputData}"
+        };
+
+        if (!string.IsNullOrEmpty(options.StagingUrl))
+            env.Add($"ROCKBOT_STAGING_URL={options.StagingUrl}");
+        if (!string.IsNullOrEmpty(options.StagingToken))
+            env.Add($"ROCKBOT_STAGING_TOKEN={options.StagingToken}");
+
+        return new CreateContainerParameters
+        {
+            Image = options.Image,
+            Cmd = ["sh", "-c", scriptCommand],
+            User = "1000",
+            Env = env,
+            Labels = new Dictionary<string, string>
+            {
+                ["app"] = "rockbot-script",
+                ["rockbot.dev/tool-call-id"] = request.ToolCallId
+            },
+            HostConfig = new HostConfig
+            {
+                NetworkMode = options.NetworkMode,
+                ReadonlyRootfs = true,
+                Tmpfs = new Dictionary<string, string> { ["/tmp"] = "" },
+                NanoCPUs = options.GetNanoCpus(),
+                Memory = options.GetMemoryBytes(),
+                SecurityOpt = ["no-new-privileges"],
+                AutoRemove = false,
+                RestartPolicy = new RestartPolicy { Name = RestartPolicyKind.No }
+            }
+        };
+    }
+
+    private async Task<(string stdout, string stderr)> ReadLogsAsync(string containerId, CancellationToken ct)
+    {
+        var logStream = await docker.Containers.GetContainerLogsAsync(
+            containerId,
+            tty: false,
+            new ContainerLogsParameters { ShowStdout = true, ShowStderr = true },
+            ct);
+
+        return await logStream.ReadOutputToEndAsync(ct);
+    }
+}
@@ -0,0 +1,75 @@
+namespace RockBot.Scripts.Docker;
+
+/// <summary>
+/// Configuration for Docker-based script execution.
+/// </summary>
+public sealed class DockerScriptOptions
+{
+    /// <summary>
+    /// Container image for running Python scripts. Defaults to "python:3.12-slim".
+    /// </summary>
+    public string Image { get; set; } = "python:3.12-slim";
+
+    /// <summary>
+    /// CPU resource limit in Kubernetes-style notation (e.g. "500m" for half a CPU).
+    /// Converted to Docker NanoCPUs internally.
+    /// </summary>
+    public string CpuLimit { get; set; } = "500m";
+
+    /// <summary>
+    /// Memory resource limit in Kubernetes-style notation (e.g. "256Mi").
+    /// Converted to bytes internally.
+    /// </summary>
+    public string MemoryLimit { get; set; } = "256Mi";
+
+    /// <summary>
+    /// Docker network mode. Defaults to "bridge" for outbound internet access
+    /// (scripts commonly interact with internet-based services).
+    /// </summary>
+    public string NetworkMode { get; set; } = "bridge";
+
+    /// <summary>
+    /// Default topic for publishing script results when no ReplyTo is set.
+    /// </summary>
+    public string DefaultResultTopic { get; set; } = "script.result";
+
+    /// <summary>
+    /// Base URL of the staging blob service. When non-empty, containers receive
+    /// a ROCKBOT_STAGING_URL environment variable so scripts can upload files via REST.
+    /// </summary>
+    public string StagingUrl { get; set; } = "";
+
+    /// <summary>
+    /// Auth token for the staging blob service. When non-empty, containers receive
+    /// a ROCKBOT_STAGING_TOKEN environment variable.
+    /// </summary>
+    public string StagingToken { get; set; } = "";
+
+    /// <summary>
+    /// Parses <see cref="CpuLimit"/> to Docker NanoCPUs.
+    /// "500m" → 500_000_000, "1" → 1_000_000_000.
+    /// </summary>
+    internal long GetNanoCpus()
+    {
+        var value = CpuLimit.Trim();
+        if (value.EndsWith('m'))
+            return long.Parse(value[..^1]) * 1_000_000;
+        return (long)(double.Parse(value) * 1_000_000_000);
+    }
+
+    /// <summary>
+    /// Parses <see cref="MemoryLimit"/> to bytes.
+    /// "256Mi" → 268_435_456, "512Mi" → 536_870_912.
+    /// </summary>
+    internal long GetMemoryBytes()
+    {
+        var value = MemoryLimit.Trim();
+        if (value.EndsWith("Mi"))
+            return long.Parse(value[..^2]) * 1024 * 1024;
+        if (value.EndsWith("Gi"))
+            return long.Parse(value[..^2]) * 1024 * 1024 * 1024;
+        if (value.EndsWith("Ki"))
+            return long.Parse(value[..^2]) * 1024;
+        return long.Parse(value);
+    }
+}