CIGen generates CI configuration from reusable, provider-agnostic files. The project is undergoing a major migration to a Terraform-style plugin architecture: the new Rust core spawns provider binaries over a length-prefixed stdio transport, and those plugins emit provider-specific YAML.
Today the GitHub Actions provider plugin powers our own CI (cargo run -- generate --file .cigen), while the legacy CircleCI emitter is being rebuilt on top of the same plugin system. The CLI still provides the templating, schema validation, and hashing utilities that powered the earlier monolithic implementation.
- Plugin manager (
src/plugin/) with framing helpers, handshake workflow, and async request batching - GitHub Actions provider plugin (
plugins/provider-github) that generates the workflows under.github/workflows/ - Source file grouping and job-hash based skipping backed by
actions/cache - Template-based multi-output generation (MiniJinja) for additional artefacts
- Rich schema validation using JSON Schema + miette diagnostics
- Command-line utilities:
cigen generate,cigen hash, and split-config loader (.cigen/)
- Reintroducing CircleCI (and additional providers) as standalone plugins
- Detect/plan phases that share facts across plugins (currently stubbed)
- Persistent work-signature storage feeding a real preflight hook
- Registry/lockfile support for third-party plugins
- Turborepo-aware project graph ingestion (replacing the previous workspace-specific focus)
DocSpring's CI config has become very complex over time. We started by implementing highly efficient caching optimizations that skip jobs entirely when a set of source files hasn't changed. We then needed to build multi-architecture Docker images for on-premise deployments (ARM and AMD). So we needed to run our test suite (and all dependent jobs) on both architectures.
Then we started experimenting with self-hosted runners. Our self-hosted runners run in a different country to CircleCI so they need their own local caching for packages. They also need a cache of our git repo since cloning the entire repo from GitHub each time is very slow. I wanted to be able to change one line in our config to send jobs to our self-hosted runners and automatically use the right caching config.
We had built our own internal CI config generation system in Ruby, but it had started to become very unmaintainable as we added all of these features. It was time to rewrite it in Rust and share our work with other companies who have similar needs.
cigen simplifies CI/CD configuration management by:
- Generating pipelines from reusable templates and structured config (
.cigen/split config) - Validating configuration (schema + data-level) with helpful spans
- Emitting provider-native YAML through pluggable emitters (GitHub Actions today, CircleCI next)
cigen is highly opinionated about CI/CD configuration.
We automatically add a highly-optimized git checkout step to the beginning of each job, which includes caching for remote runners. The git checkout step can be skipped for jobs that don't need it.
Jobs that declare source_files automatically receive a skip cache flow. On GitHub Actions this uses cigen hash plus actions/cache; jobs exit early when nothing changed and record a marker when they succeed. The preflight hook and remote signature storage are still planned so that other providers can share the same mechanism.
CI providers often solve the same problem in different ways. e.g. to avoid duplication in your config, GitHub actions has "reusable workflows" while CircleCI supports "commands".
cigen takes the best ideas from each provider and supports our own set of core features. You write your config once, then we compile it to use your chosen CI provider's native features. As more providers move onto the plugin system, migrations become a matter of switching emitters instead of rewriting YAML.
-
One-liner (Linux/macOS):
curl -fsSL https://docspring.github.io/cigen/install.sh | sh -
From source:
git clone https://github.com/DocSpring/cigen.git cd cigen cargo install --path .
Clone the repository:
git clone https://github.com/DocSpring/cigen.git
cd cigenPrerequisites:
- Rust (uses the version pinned in
rust-toolchain.toml) - Git
-
Run the setup script (installs git hooks and checks your environment):
./scripts/setup.sh
-
Build the project:
cargo build
context7- https://github.com/upstash/context7
- Installed automatically via npx
Run all tests:
cargo testRun tests with output:
cargo test -- --nocaptureDebug build:
cargo buildRelease build (optimized):
cargo build --releaseFrom source:
cargo run -- --helpAfter building:
./target/debug/cigen --helpOr for release build:
./target/release/cigen --helpFormat code:
cargo fmtRun linter:
cargo clippyCheck code without building:
cargo checkRun with verbose logging:
RUST_LOG=debug cargo run-
Create and push a version tag from
Cargo.toml:./scripts/create-release-tag.sh # or without pushing automatically ./scripts/create-release-tag.sh --no-push -
When the
vX.Y.Ztag is pushed, GitHub Actions builds binaries for Linux and macOS, generates checksums, and creates a GitHub Release with assets.
This project uses Lefthook for git hooks. The setup script installs it automatically, but you can also install it manually:
# macOS
brew install lefthook
# Or download directly
curl -sSL https://github.com/evilmartians/lefthook/releases/latest/download/lefthook_$(uname -s)_$(uname -m) -o /usr/local/bin/lefthook
chmod +x /usr/local/bin/lefthookThe git hooks will run format, lint, and tests before commit/push. Do not bypass hooks; fix issues they report.
cigen/
├── src/
│ ├── main.rs # CLI entry point
│ └── lib.rs # Library code
├── tests/
│ └── integration_test.rs # Integration tests
├── scripts/
│ └── setup.sh # Developer setup script
├── .cigen/ # Templates and configuration
├── Cargo.toml # Project dependencies
├── rust-toolchain.toml # Rust version specification
├── .rustfmt.toml # Code formatting rules
├── .clippy.toml # Linting configuration
├── lefthook.yml # Git hooks configuration
└── README.md # This file
- Fork the repository
- Create your feature branch (
git checkout -b feature/amazing-feature) - Run tests and ensure they pass (
cargo test) - Format your code (
cargo fmt) - Run clippy and fix any warnings (
cargo clippy) - Commit your changes (
git commit -m 'Add some amazing feature') - Push to the branch (
git push origin feature/amazing-feature) - Open a Pull Request
This project is licensed under the MIT License - see the LICENSE file for details.
For issues and feature requests, please use the GitHub issue tracker.
CIGen can build and tag your CI Docker images as first-class jobs. Enable it with split config under .cigen/config/docker_build.yml or inline in your config:
docker_build:
enabled: true
# Optional on CircleCI cloud
layer_caching: true
registry:
repo: yourorg/ci
# Default push behavior (true recommended on cloud)
push: true
images:
- name: ci_base
dockerfile: docker/ci/base.Dockerfile
context: .
arch: [amd64]
build_args:
BASE_IMAGE: cimg/base:current
# Sources for the canonical BASE_HASH (one hash across images)
hash_sources:
- scripts/package_versions_env.sh
- .tool-versions
- .ruby-version
- docker/**/*.erb
- scripts/docker/**
depends_on: []
# Optional per-image push override
# push: falseWhat happens:
- CIGen computes one
BASE_HASHby hashing all declaredhash_sources(path + content) across images. - For each image+arch, a
build_<image>job buildsregistry/<name>:<BASE_HASH>-<arch>and (optionally) pushes it. - Downstream jobs that specify
image: <name>are resolved toregistry/<name>:<BASE_HASH>-<arch>and automaticallyrequirebuild_<image>. - Build jobs include job-status skip logic (native CircleCI cache or Redis) so unchanged images skip quickly.
- On CircleCI cloud,
layer_caching: trueemitssetup_remote_docker: { docker_layer_caching: true }for faster rebuilds.
Notes:
- If a job
imagecontains/or:, it is treated as a full reference and not rewritten. - Per-image
pushoverrides the registry default.