Skip to content

feat(gitlab): add GitLab platform example with Replicated SDK and CMX validation#136

Open
kriscoleman wants to merge 9 commits intomainfrom
feat/gitlab-platform-example
Open

feat(gitlab): add GitLab platform example with Replicated SDK and CMX validation#136
kriscoleman wants to merge 9 commits intomainfrom
feat/gitlab-platform-example

Conversation

@kriscoleman
Copy link
Member

@kriscoleman kriscoleman commented Mar 22, 2026
edited
Loading

I paired on this with @mikhailswift

Summary

  • Adds a GitLab 18.x platform example using the gitlab/gitlab Helm chart (v9.0.2) wrapped as a Helm dependency
  • Integrates the Replicated SDK subchart for license validation and instance telemetry
  • Includes KOTS manifests: preflight checks, support bundle spec, config screen, HelmChart CR, and Embedded Cluster extensions
  • Adds a GitHub Actions CI/CD workflow for lint, Helm template validation, release creation, and stable channel promotion
  • Validates deployment via Replicated Compatibility Matrix (CMX) on k3s 1.32

Key design decisions

  • Wrapper chart pattern: Thin wrapper (applications/gitlab/charts/gitlab/) that depends on upstream gitlab/gitlab rather than vendoring it, keeping the chart maintainable
  • External PostgreSQL and Redis: Bundled Bitnami images were removed from Docker Hub; the example deploys postgres:16 and redis:7 as external StatefulSet/Deployment services
  • SDK opt-in via condition: replicated.enabled condition allows disabling the SDK for raw Helm CMX validation (no license required)

Test plan

  • helm dependency update in applications/gitlab/charts/gitlab/ succeeds
  • helm template with tests/helm/ci-values.yaml renders without errors
  • GitLab pods reach Running state on a k3s 1.32 cluster via CMX
  • Preflight checks pass (k8s >= 1.26, CPU >= 4 cores, RAM >= 12Gi)
  • Support bundle collectors capture webservice, sidekiq, kas, gitaly logs

🤖 Generated with Claude Code

@kriscoleman
Copy link
Member Author

kriscoleman commented Mar 22, 2026

image

@kriscoleman
Copy link
Member Author

kriscoleman commented Mar 23, 2026

GasTown prompt used to build this with a couple feedback loops, this helped me iterate both on the agent instructions and the GitLab platform example:

image

Mayor Mission: Automate Replicated Onboarding for GitLab Helm Charts

Objective

We are building a new platform example for GitLab (https://docs.gitlab.com/charts/) in the repl_examples rig, proving that our Replicated onboarding agent instructions (installed globally in claude) can automate onboarding a complex Helm-based platform onto the Replicated platform. The end state is two deliverables:

  1. A working GitLab platform example in repl_examples — with Replicated CI/CD GitHub workflows, Replicated SDK integration, and the application running successfully in CMX (Compatibility Matrix).
  2. A refined, battle-tested claude plugin for Replicated onboarding in repl_claude_mktplc on branch add-replicated-onboarding-plugin — with all gaps discovered during the GitLab onboarding fixed, passing ailloy lint and ailloy assay with zero errors, warnings, or hints.

Environment

  • Replicated CLI auth: The environment variable $REPL_GITLAB_SA_TOKEN is set on my machine and available to all agent sessions. Use this as the service account token for any replicated CLI commands.
  • Rigs:
    • repl_examples — the platform_examples repo (https://github.com/replicatedhq/platform_examples). This is where the GitLab example gets built.
    • repl_claude_mktplc — the Replicated Claude marketplace repo, currently on branch add-replicated-onboarding-plugin. This contains the onboarding agent instructions we're dogfooding.

Phase 1: Implement GitLab Platform Example via Onboarding Agents

Work in the repl_examples rig.

Step 1: Understand the existing patterns

  • Review the existing platform examples in repl_examples to understand the structure, conventions, and patterns used (directory layout, CI/CD workflows, Replicated SDK integration patterns, CMX configuration).
  • Review GitLab's Helm chart documentation at https://docs.gitlab.com/charts/ to understand the chart structure, subcharts, values, and deployment requirements.

Step 2: Use the onboarding agents to onboard GitLab

  • The Replicated onboarding agent instructions are already installed globally. Use them to onboard GitLab's Helm charts onto the Replicated platform.
  • The onboarding agents follow a Coding → Review feedback loop: the Coding agent implements the Replicated patterns (SDK integration, preflight checks, support bundle specs, CI/CD workflows, CMX compatibility matrix), then the Review agent validates that the application is correctly configured and running in CMX.
  • This feedback loop should work naturally — the Coding agent implements, the Review agent validates, and if validation fails, the Coding agent iterates. If this control loop does NOT work naturally (e.g., the agents don't hand off correctly, the Review agent can't validate, the Coding agent doesn't know how to fix validation failures), that is a gap in the agent instructions that needs to be reported and fixed in Phase 2.
  • Keep detailed notes on any friction, gaps, unclear instructions, missing context, or failures encountered during onboarding. These are the inputs for Phase 2.

Step 3: Validate success

  • The GitLab application must be running successfully in CMX.
  • The platform example must include: Replicated CI/CD GitHub workflows (using replicatedhq/replicated-actions), Replicated SDK integration, preflight checks, support bundle specs, and CMX compatibility testing.
  • The example should follow the same conventions as existing examples in the repo.

Phase 2: Refine the Onboarding Agent Instructions

Work in the repl_claude_mktplc rig on branch add-replicated-onboarding-plugin.

Step 1: Triage gaps from Phase 1

  • For every friction point, gap, or failure encountered in Phase 1, create a specific fix in the agent instructions.
  • Common gap categories to watch for:
    • Agent handoff failures (Coding agent doesn't signal Review agent, or vice versa)
    • Missing context about complex chart structures (subcharts, dependencies, CRDs)
    • Incorrect assumptions about chart packaging or values
    • Missing steps in the onboarding workflow
    • Review agent unable to validate specific success criteria
    • Unclear or ambiguous instructions that caused the Coding agent to go off-track

Step 2: Implement fixes and validate with linting

  • After each fix to the agent instructions, run:

    ailloy lint

    and

    ailloy assay

  • There must be zero errors, zero warnings, and zero hints. If any appear, fix them before moving on.

  • This is its own feedback loop: edit instructions → lint → fix lint issues → lint again → until clean.

Step 3: Reinstall and verify the plugin locally

  • The README in the add-replicated-onboarding-plugin branch has instructions for:
    1. Installing the claude marketplace locally
    2. Installing the onboarding plugin locally
  • After iterating on the agent instructions, follow these instructions to reinstall the plugin locally.
  • Verify the plugin installs correctly.
  • This makes the updated instructions apply to any new claude sessions, which serves as the final integration test.

Step 4: Re-run onboarding with refined instructions (if needed)

  • If the gaps found in Phase 1 were significant, consider re-running the onboarding of GitLab (or a subset of it) using the refined agent instructions to confirm the fixes work end-to-end.

Orchestration Notes for the Mayor

Convoy structure

Create a convoy for each phase. Within each convoy, create beads for the major work units. Suggested breakdown:

Convoy 1: "GitLab Platform Example"

  • Bead: Research existing examples and GitLab chart structure
  • Bead: Run onboarding agents on GitLab charts (Coding → Review loop)
  • Bead: Finalize and validate GitLab example in CMX
  • Bead: Document all gaps/friction encountered (output for Phase 2)

Convoy 2: "Refine Onboarding Plugin"

  • Bead: Triage and categorize Phase 1 gaps
  • Bead: Fix agent instructions (with lint loop)
  • Bead: Reinstall plugin locally and verify
  • Bead: Optional re-run validation

Cross-rig coordination

  • Phase 1 produces a gap report that feeds into Phase 2. Use the mailbox system to pass this between rigs.
  • If during Phase 1, the Coding → Review loop breaks down in a way that's clearly an agent instruction bug (not a GitLab-specific issue), you may choose to context-switch to the repl_claude_mktplc rig to fix the instruction immediately, then return to repl_examples to continue. Use your judgment on whether to batch fixes or fix inline.

Agent spawning guidance

  • For Phase 1 implementation work: spawn polecats in repl_examples. The onboarding agents (Coding and Review) are invoked through the globally installed instructions — the polecats just need to follow them.
  • For Phase 2 instruction editing: spawn polecats in repl_claude_mktplc on branch add-replicated-onboarding-plugin.
  • For lint validation: a dedicated polecat in repl_claude_mktplc can run the ailloy lint / ailloy assay loop.

Success criteria

  1. GitLab platform example exists in repl_examples with working CI/CD workflows, Replicated SDK, and CMX validation — following existing repo conventions.
  2. GitLab application is confirmed running in CMX.
  3. Onboarding agent instructions in repl_claude_mktplc pass ailloy lint and ailloy assay with zero errors, warnings, or hints.
  4. Onboarding plugin installs cleanly via the local install process documented in the branch README.
  5. The Coding → Review feedback loop in the onboarding agents works naturally for a complex platform like GitLab — if it didn't initially, the instructions have been fixed so it would on a re-run.

Begin

Start with Phase 1. Create the convoys, research the existing patterns and GitLab chart structure, then use the onboarding agents to implement the GitLab platform example. Track everything — every gap you find is fuel for Phase 2.

kriscoleman and others added 9 commits March 23, 2026 00:36
@kriscoleman @claude
feat: add GitLab platform example with Replicated onboarding (re-o64)
fd03002 
Adds a complete applications/gitlab/ example following existing repo
conventions (gitea, n8n pattern). Includes:

- Wrapper Helm chart with upstream gitlab 9.0.2 + Replicated SDK 1.18.0
- KOTS manifests: kots-app, kots-config (PostgreSQL/Redis/MinIO/SMTP),
  HelmChart with optionalValues, EC extensions, Secrets for passwords
- GitHub Actions CI: lint/template on PR, create-release to Unstable on PR,
  promote to Stable on main merge
- Makefile targets: add-helm-repositories, update-dependencies, lint, package
- tests/helm/ci-values.yaml for fast CI lint/template checks
- ONBOARDING-GAPS.md documenting 8 friction points from the onboarding run

CMX validation skipped: no credits on REPL_GITLAB_SA_TOKEN account.
Release 1 created and promoted to Unstable on gitlab-pika app.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
@kriscoleman @claude
fix(gitlab): use external postgresql/redis for CMX compatibility
8479f15 
- Switch from bundled Bitnami PostgreSQL/Redis (deprecated, removed from Docker Hub)
  to external services (official postgres:16 + redis:7 images)
- Update values.yaml and ci-values.yaml to disable bundled deps
- Add kots-preflight.yaml with resource checks (4+ vCPU, 12+ GB RAM)
- Add kots-support-bundle.yaml with GitLab component log collectors

Note: Bitnami images (e.g. bitnami/postgresql:16.6.0) were removed from
Docker Hub. GitLab chart 9.0.2 references these missing tags. Using external
postgresql/redis resolves CMX validation.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
@kriscoleman @claude
fix(ci): use ci-values.yaml for helm template to satisfy required cha…
ff126bf 
…rt values

The upstream gitlab/gitlab chart requires certmanager-issuer.email to be set
at template time. Running helm template without values overrides fails with:
  "You must provide an email to associate with your TLS certificates"

Use ci-values.yaml (which disables cert-manager and sets required fields) for
the template step, matching how the chart is actually deployed.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
@kriscoleman @claude
fix(ci): use semver-compatible version for PR releases
59ea548 
helm package requires valid semver. Changed PR version from
'pr-136-abc1234' (invalid) to '0.1.0-pr.136.abc1234' (valid semver
prerelease format). Promote-stable format was already valid semver.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
@kriscoleman @claude
fix(ci): remove unsupported release-notes input from create-release a…
5b18ebc 
…ction

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
@kriscoleman @claude
fix(ci): use app-specific GITLAB_REPLICATED_API_TOKEN secret
ecb4ff4 
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
@kriscoleman @claude
fix(ci): use full path for helm chart tgz in create-release action
30f230e 
Actions don't respect working-directory, so path must be relative to
repo root.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
@kriscoleman @claude
fix(ci): include kots yaml-dir in create-release to allow channel pro…
da8ee81 
…motion

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
@kriscoleman @claude
fix(ci): remove yaml-dir from create-release (unsupported with chart)
2bf7b00 
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
@kriscoleman kriscoleman force-pushed the feat/gitlab-platform-example branch from 47d8466 to 2bf7b00 Compare March 23, 2026 04:36
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@kriscoleman