Skip to content

feat: skills for declarative agents#1077

Merged
EItanya merged 11 commits intomainfrom
yuval-k/initial-code-sandbox
Nov 3, 2025
Merged

feat: skills for declarative agents#1077
EItanya merged 11 commits intomainfrom
yuval-k/initial-code-sandbox

Conversation

@yuval-k
Copy link
Collaborator

@yuval-k yuval-k commented Oct 30, 2025
edited
Loading

pull in skills to the agent from a docker registry. This is done in an init container:

  • so it also works for BYO agents (i.e. this part is now not framework dependent)
  • so it skills fails to pull the pod fails to start, i think that would give better feedback for users

follow up tasks

  • use a different venv for sandbox with bunch of python packages
  • maybe: support multiple skills in one image
  • validate the skill image has a SKILL.md file and is at most 10MB
  • make running code not require privileged

@yuval-k
very initial code sandbox. With some hardcoded WIP changes
36b1958 
Signed-off-by: Yuval Kohavi <yuval.kohavi@gmail.com>
@yuval-k yuval-k force-pushed the yuval-k/initial-code-sandbox branch from 88a94c7 to bafc8ca Compare October 31, 2025 13:07
@yuval-k
initial pull skills
a36e29c 
Signed-off-by: Yuval Kohavi <yuval.kohavi@gmail.com>
@yuval-k
more updates & add test skill
0547d52 
Signed-off-by: Yuval Kohavi <yuval.kohavi@gmail.com>
@yuval-k yuval-k force-pushed the yuval-k/initial-code-sandbox branch from bafc8ca to b1d63d4 Compare October 31, 2025 14:51
@yuval-k yuval-k marked this pull request as ready for review October 31, 2025 14:51
Copilot AI review requested due to automatic review settings October 31, 2025 14:51
@yuval-k yuval-k requested a review from peterj as a code owner October 31, 2025 14:51
Copilot AI reviewed Oct 31, 2025
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR adds support for code execution and skill loading capabilities to KAgent. The changes enable agents to execute Python code in a sandboxed environment and load skills from OCI/Docker container images.

Key changes:

  • Added sandboxed code execution using the srt (sandbox runtime) command
  • Implemented skill fetching from container registries using crane
  • Extended agent configuration to support code execution and skill loading via declarative specs
  • Refactored skills plugin to support programmatic addition of skills to agents

Reviewed Changes

Copilot reviewed 39 out of 40 changed files in this pull request and generated 10 comments.

Show a summary per file
File Description
python/packages/kagent-adk/src/kagent/adk/sandbox_code_executer.py New sandboxed code executor implementation using srt
python/packages/kagent-adk/src/kagent/adk/skill_fetcher.py New skill fetching utility to pull skills from OCI images
python/packages/kagent-adk/src/kagent/adk/types.py Added code_executor parameter to agent configuration
python/packages/kagent-adk/src/kagent/adk/skills/skills_plugin.py Extracted skill tool addition logic into reusable function
python/packages/kagent-adk/src/kagent/adk/cli.py Added --code flag and pull-skills command; moved logging configuration
go/internal/controller/translator/agent/adk_api_translator.go Added logic to generate init containers for skill fetching and configure sandbox security context
go/api/v1alpha2/agent_types.go Extended agent spec with Skills and ExecuteCode fields
python/Dockerfile Added installation of sandbox runtime and crane tool
Comments suppressed due to low confidence (3)

python/packages/kagent-adk/src/kagent/adk/skill_fetcher.py:34

  • This assignment to 'registry' is unnecessary as it is redefined before this value is used.
    This assignment to 'registry' is unnecessary as it is redefined before this value is used.
    python/packages/kagent-adk/src/kagent/adk/skill_fetcher.py:35
  • This assignment to 'repo' is unnecessary as it is redefined before this value is used.
    This assignment to 'repo' is unnecessary as it is redefined before this value is used.
    python/packages/kagent-adk/src/kagent/adk/cli.py:74
  • Unnecessary 'pass' statement.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

python/packages/kagent-adk/src/kagent/adk/skill_fetcher.py
"""
# Split digest if present
name_part = image
ref = "latest"
Copy link

Copilot AI Oct 31, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This assignment to 'ref' is unnecessary as it is redefined before this value is used.
This assignment to 'ref' is unnecessary as it is redefined before this value is used.

Copilot uses AI. Check for mistakes.
EItanya
EItanya reviewed Oct 31, 2025
View reviewed changes
go/api/v1alpha2/agent_types.go Outdated
// +optional
Deployment *DeclarativeDeploymentSpec `json:"deployment,omitempty"`

ExecuteCode *bool `json:"executeCode,omitempty"`
Copy link
Contributor

@EItanya EItanya Oct 31, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Can we be more specific about this field name, specifically this executor will execute code that is returned from the API directly, not files or anything like that. Also, maybe this should be an struct as we may want to support multiple executors in the future?

Copy link
Collaborator Author

@yuval-k yuval-k Nov 3, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

changed to ExecuteCodeBlocks so it's more clear

@yuval-k
fetch skills with crane
ee7eb99 
Signed-off-by: Yuval Kohavi <yuval.kohavi@gmail.com>
@yuval-k
image name edge case
9aec2be 
Signed-off-by: Yuval Kohavi <yuval.kohavi@gmail.com>
@yuval-k
declarative skills smoke test seems to work
8b42700 
Signed-off-by: Yuval Kohavi <yuval.kohavi@gmail.com>
@yuval-k
add e2e test + cleanups
02f938c 
Signed-off-by: Yuval Kohavi <yuval.kohavi@gmail.com>
@yuval-k
updates translator tests. add code execution tests
a6cbddf 
Signed-off-by: Yuval Kohavi <yuval.kohavi@gmail.com>
@yuval-k
cleanup
4b120eb 
Signed-off-by: Yuval Kohavi <yuval.kohavi@gmail.com>
@yuval-k
PR feedback
a5fba86 
Signed-off-by: Yuval Kohavi <yuval.kohavi@gmail.com>
@yuval-k yuval-k force-pushed the yuval-k/initial-code-sandbox branch from 659dd02 to a5fba86 Compare October 31, 2025 20:35
@yuval-k
update translator tests
2205b14 
Signed-off-by: Yuval Kohavi <yuval.kohavi@gmail.com>
peterj
peterj reviewed Nov 1, 2025
View reviewed changes
go/internal/controller/translator/agent/adk_api_translator.go
Name: "KAGENT_SKILLS_FOLDER",
Value: "/skills",
}
needSandbox = true
Copy link
Collaborator

@peterj peterj Nov 1, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

by setting this to true here, are saying that if you add skills to the agent you'll always also need a sandbox? Are there agents with skills that won't need to execute code?

Copy link
Collaborator Author

@yuval-k yuval-k Nov 3, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

there are skills that don't have code... but we don't know it ahead of time...

@EItanya EItanya merged commit d46efdc into main Nov 3, 2025
16 checks passed
@EItanya EItanya deleted the yuval-k/initial-code-sandbox branch November 3, 2025 17:36
@supreme-gg-gg supreme-gg-gg mentioned this pull request Nov 3, 2025
Merged
@artberger artberger mentioned this pull request Nov 21, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@peterj peterj peterj left review comments

Copilot code review Copilot Copilot left review comments

@EItanya EItanya EItanya approved these changes

@ilackarms ilackarms Awaiting requested review from ilackarms ilackarms is a code owner

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@yuval-k @EItanya @peterj