Development Methodology
This page describes how the KubeStellar Console project is developed, tested, and maintained. It covers the hybrid human + AI-agentic model, issue lifecycle, PR requirements, and how to contribute.
Overview
KubeStellar Console uses a hybrid human + AI-agentic development model. Human contributors handle design decisions, architecture changes, and complex features, while an automated agentic pipeline handles routine bug fixes, documentation updates, and well-scoped improvements.
This approach enables:
- Rapid iteration — routine issues are fixed within hours of being filed
- Consistent quality — every PR passes the same CI gates regardless of author
- Scalable maintenance — the agentic pipeline processes multiple issues in parallel
- Human oversight — all PRs require review and CI approval before merge
For the concrete quality-control system that catches AI mistakes, prevents repeat mistakes, and handles failed or rejected PRs, see Agentic Quality Controls.
Project Structure
Repository Layout
cmd/console/ Server entry point
cmd/kc-agent/ Local agent (bridges browser to kubeconfig + MCP)
pkg/agent/ AI providers (Claude, OpenAI, Gemini)
pkg/api/ HTTP/WS server + handlers
pkg/mcp/ MCP bridge to Kubernetes
pkg/store/ SQLite database layer
web/src/ React + TypeScript frontend
components/cards/ Dashboard card components
hooks/ Data fetching hooks (useCached*)
lib/ Utilities, card registry, demo data
deploy/helm/ Helm chartTechnology Stack
Frontend:
- React 18 + TypeScript
- Vite (build tool)
- Tailwind CSS (styling)
- i18next (internationalization)
- Playwright (E2E testing)
- SQLite WASM (client-side cache)
Backend:
- Go 1.25+
- Fiber v2 (web framework)
- SQLite (persistence)
log/slog(structured logging)
Deployment:
- Netlify (hosted console at console.kubestellar.io)
- Helm (self-hosted installation)
- Docker (container images)
Dual Backend Architecture
The console has two backend implementations:
- Go backend — serves self-hosted console (local, container, Kubernetes)
- Netlify Functions — serves hosted console at console.kubestellar.io
Both implement the same API contract. When adding Go API handlers, check if a corresponding Netlify Function needs updating in web/netlify/functions/*.mts.
Routes WITH Netlify parity (public/stateless data):
/api/youtube/*— YouTube content feed/api/medium/*— Blog feed/api/rewards/*— GitHub contributor rewards/api/missions/*— Mission catalog/api/github-pipelines— CI/CD status/api/analytics-*— Analytics endpoints
Routes WITHOUT Netlify parity (backend-only, require K8s/DB/agent):
/api/settings,/api/persistence/*— SQLite database/api/dashboards/*,/api/cards/*— Dashboard CRUD/api/namespaces,/api/rbac/*— Live cluster access/api/agent/*,/api/kagent/*— Local agent bridge
Issue Workflow
Filing Issues
Issues reach the project through two paths:
- In-app feedback dialog — users click the feedback button inside the console, which opens a GitHub issue pre-populated with context (page, browser, console version)
- Direct GitHub issue — contributors and maintainers file issues in
kubestellar/console
Classification
Issues are classified by complexity:
| Label | Complexity | Typical Scope | Handler |
|---|---|---|---|
S | Simple | Typo, label fix, config tweak | Agentic pipeline |
M | Medium | Bug fix, new card, hook change | Agentic pipeline or human |
C | Complex | Architecture change, new feature | Human contributor |
Classification is performed automatically based on issue content, labels, and historical patterns. Maintainers can override classification at any time.
Triage
- New issues are reviewed within 24 hours
- Issues labeled
good first issueare reserved for human contributors - Issues labeled
agenticare eligible for automated processing - Stale issues (no activity for 30 days) are flagged for review
Agentic CI Pipeline
The console project employs an automated agentic pipeline that processes eligible issues end-to-end.
How It Works
┌──────────────┐ ┌─────────────┐ ┌──────────┐
Issue Filed │────▶│ Scanner Agent │────▶│ Fix Agent │────▶│ PR Open │
└──────────────┘ └─────────────┘ └──────────┘
│ │
Reads filtered Creates worktree
issue list Makes fix, commits
(S/M classified) Pushes branch- Scanner agent runs on a cron schedule (every few hours)
- It reads a pre-filtered list of issues classified as
SorMcomplexity - It dispatches 4–6 sub-agents in parallel, each assigned one issue
- Each sub-agent:
- Creates a Git worktree branch (
fix/<issue-number>) - Reads the issue description and any linked context
- Makes the code fix or documentation change
- Runs build and lint locally to verify
- Commits with DCO sign-off and proper emoji prefix
- Pushes the branch and opens a PR with
Fixes #NNN
- Creates a Git worktree branch (
- The PR enters normal CI — all checks must pass before merge
Guardrails
- Agents cannot merge their own PRs
- Agents cannot modify security-sensitive files without human review
- If CI fails, the agent may retry once; after that, the issue is escalated to a human
- All agent-authored PRs are labeled
authored-by: botfor visibility
Change Tiers & Review Process
Every PR gets automatically labeled with a tier/* label based on which files it touches. This determines review scrutiny.
| Tier | Label | What it covers | Review Level |
|---|---|---|---|
| 0 | tier/0-automatic | Lockfiles, go.sum, docs (*.md), i18n files, snapshots, generated artifacts | Fast-track eligible |
| 1 | tier/1-lightweight | Test-only changes, editor config (.prettierrc, .editorconfig) | Lightweight review |
| 2 | tier/2-standard | Everything not in other tiers | Standard review |
| 3 | tier/3-restricted | CODEOWNERS, workflows, auth code, security docs, Helm RBAC | Enhanced scrutiny |
Classification rules:
- A PR is tier 3 if any file matches a tier-3 path
- Otherwise tier 0 only if every file is tier-0
- Otherwise tier 1 only if every file is tier-0 or tier-1
- Otherwise tier 2
This system enables fast iteration on safe changes while ensuring security-sensitive changes get appropriate review.
Contribution Models
Manual Coding PRs (Discouraged)
Manual coding PRs are discouraged because:
- They take significantly longer to review and iterate
- They commonly miss required patterns (e.g.,
isDemoDatawiring,useCardLoadingState, locale strings) - Coding agents catch these patterns automatically
All PRs — human or AI — must pass the same 9 CI gates before merge. There is no separate path for AI-generated code.
Test-Driven Contributions (Preferred)
The most valuable contributions are tests:
- Playwright E2E tests
- Visual regression tests
- API contract tests
- Unit tests
Tests define expected behavior — agents then implement the code to make tests pass. A failing test PR is more useful than a code PR.
Using Coding Agents (Recommended)
If you want to contribute code, use one of the supported agents:
| Agent | Model | Status | Notes |
|---|---|---|---|
| Claude Code | Claude Opus 4.5/4.6 | Strongly recommended | Knows full codebase, all patterns, card rules |
| GitHub Copilot | Multiple | Supported | Used for automated PR fixes |
| Google Gemini | Gemini models | Supported | Code generation |
| OpenAI Codex | GPT models | Supported | Code generation |
Install Claude Code:
npm install -g @anthropic-ai/claude-codeNew CNCF Project Cards
New monitoring cards for CNCF projects (Karmada, Falco, KEDA, etc.) belong in kubestellar/console-marketplace, not in the main console repo. The marketplace loads cards on-demand to avoid bundle bloat.
PRs adding card components to web/src/components/cards/ will be redirected to console-marketplace.
PR Requirements
Every pull request — whether from a human or an agent — must meet these requirements:
1. DCO Sign-Off
All commits must include a Signed-off-by trailer for Developer Certificate of Origin compliance:
git commit -s -m "✨ Add cluster health polling"2. Commit Message Format
<emoji> <Short description in imperative mood (under 72 chars)>
<Optional longer description>
Signed-off-by: Name <email>Emoji Prefixes
| Emoji | Type | When to Use |
|---|---|---|
| ✨ | Feature | New functionality |
| 🐛 | Bug fix | Fixing broken behavior |
| 📖 | Docs | Documentation changes only |
| 📝 | Proposal | Design proposals |
| ⚠️ | Breaking change | API or behavior changes |
| 🌱 | Other | Tests, CI, refactoring, tooling |
3. PR Body
The first line of the PR body must be Fixes #NNN where NNN is the issue number. This ensures GitHub automatically closes the issue when the PR is merged.
4. CI Must Pass
All of the following checks must pass:
- Build — Go backend and TypeScript frontend compile without errors
- Lint — ESLint passes with no warnings or errors
- Visual regression — Playwright screenshot comparisons match baselines
- CodeQL — No new security vulnerabilities introduced
- DCO — All commits are signed off
- Schema validation — Mission KB YAML files conform to schema
5. Rebase Workflow
PRs must be rebased on main before merge (no merge commits):
git fetch origin main
git rebase origin/mainTesting Strategy
Frontend — Playwright E2E
End-to-end tests in web/e2e/ verify full user flows:
- Visual regression tests (
web/e2e/visual/) — screenshot comparisons catch unintended layout changes - Functional tests — verify navigation, data loading, card interactions
- Demo mode tests — ensure the console works without cluster connections
Best practices:
- Use
expect(locator).toBeVisible()overwaitForTimeout() - One assertion per concept
- Descriptive test names:
test('card shows cached data on warm return', ...)
Backend — Go Tests
Go tests in pkg/ and cmd/ cover:
- API handler behavior (request/response contracts)
- Store layer (SQLite CRUD operations)
- Multi-cluster query logic
- Error handling and edge cases
Best practices:
- Table-driven tests with descriptive case names
requirefor fatal assertions,assertfor non-fatal- Test error cases, not just happy paths
Visual Regression
Any PR modifying UI must:
- Extract a visual checklist from the issue
- Capture screenshots of affected pages
- Create or update tests in
web/e2e/visual/ - Commit test files AND snapshot baselines
Schema Validation
Mission KB YAML files are validated against a JSON schema on every PR to prevent malformed mission definitions from reaching production.
Code Standards
TypeScript
- Explicit types — no
any, no implicit any - Functional components with hooks (no class components)
- Array safety — always guard with
(data || [])before.map(),.filter(),.join() - No magic numbers — every numeric literal must be a named constant
- i18n — all user-facing strings use
t()fromreact-i18next, never raw strings
Styling
- Tailwind CSS with semantic color tokens (never raw hex values)
cn()utility for merging classNames- Theme-aware — use
text-foreground,bg-card, etc., not hardcoded colors - Mobile-first responsive design with Tailwind breakpoints
Go Backend
- Fiber v2 web framework
- Structured logging with
log/slog make([]T, 0)notvar x []T(nil slices serialize asnull)- Demo mode — every endpoint must check and return demo data when active
- Goroutines + WaitGroup for parallel multi-cluster queries
Security
- No hardcoded secrets — environment variables only
- All LLM-calling code must follow
docs/security/SECURITY-AI.md - CodeQL scans on every PR
Local Development
Quick Start
# Clone the repository
git clone https://github.com/kubestellar/console.git
cd console
# Start in mock mode (no OAuth required)
./start-dev.sh
# Or with GitHub OAuth (requires .env with GITHUB_CLIENT_ID / GITHUB_CLIENT_SECRET)
./startup-oauth.shPorts
| Service | Port |
|---|---|
| Frontend (Vite) | 5174 |
| Backend (Go/Fiber) | 8080 |
| KC Agent WebSocket | 8585 |
Pre-PR Validation
Before opening a PR, ensure build and lint pass:
cd web
npm run build
npm run lintCritical Development Patterns
These patterns are mandatory for all code contributions. Violations will cause CI failures or runtime bugs.
Card Development
Every dashboard card component must follow these rules:
-
Wire
isDemoDataandisRefreshing— destructure from the cached hook and pass touseCardLoadingState():const { data, isLoading, isRefreshing, isDemoData, isFailed } = useCachedPods() useCardLoadingState({ isLoading, isRefreshing, // Required for refresh icon animation isDemoData, // Required for Demo badge + yellow outline hasAnyData: data.length > 0, isFailed, }) -
Never show demo data during loading — hook’s
isDemoFallbackmust be false whileisLoadingis true -
Always use
useCache/useCached*hooks for data fetching — never rawfetch()in card components -
Array safety — guard all array operations with
(data || [])before.map(),.filter(),.join(), etc.
Cluster Operations
Always use DeduplicatedClusters() when iterating clusters. Multiple kubeconfig contexts can point to the same physical cluster — without dedup, resources get listed/counted twice.
clusters := DeduplicatedClusters(contexts)
for _, cluster := range clusters {
// safe to iterate
}No Magic Numbers
Every numeric literal must be a named constant:
// WRONG
setTimeout(fn, 5000)
// CORRECT
const WS_RECONNECT_MS = 5000
setTimeout(fn, WS_RECONNECT_MS)This applies to timeouts, intervals, percentages, retries, pixel values — everything.
Secrets Management
Never hardcode API keys, tokens, or credentials. Use environment variables only:
- Go backend:
os.Getenv() - Frontend:
import.meta.env.VITE_* - Secrets come from
.env(gitignored) or runtime env vars
AI/LLM Security
Before adding any workflow that calls an LLM, read the AI Security Guide covering:
- Prompt injection defenses
- Supply chain risks
- Agent drift prevention
- LLM audit checklist
How to Contribute
-
Fork the
kubestellar/consolerepository -
Clone your fork and create a branch from
main:git checkout -b fix/your-issue-number -
Make changes following the code standards above
-
Validate locally:
cd web && npm run build && npm run lint -
Commit with DCO sign-off and emoji prefix:
git commit -s -m "🐛 Fix cluster count in sidebar" -
Push and open a PR:
- First line of PR body:
Fixes #NNN - Describe what changed and why
- Wait for CI checks to pass
- First line of PR body:
-
Address review feedback if any, then rebase if needed
What Makes a Good PR
- Focused on a single issue
- Includes tests for new behavior
- Passes all CI checks
- Has a clear description
- Links to the issue it resolves
Getting Help
- File an issue with the
questionlabel - Check existing documentation at kubestellar.io/console
- Review the architecture page for system design context
Improving the Development Process
The development methodology itself is a living document and continuously evolving.
How to Raise Process Issues
If you encounter issues with the development process, methodology, or tooling:
- File an issue in the
kubestellar/consolerepository with labelprocessormeta - Use the feedback dialog in the console at
/feedbackto report workflow friction - Suggest improvements to this documentation by filing an issue in
kubestellar/docswith labelkind/documentation
Examples of process issues:
- CI checks are too slow or flaky
- Documentation is outdated or unclear
- Agent workflow has bugs or limitations
- Testing requirements are unclear or burdensome
- PR review process needs improvement
Contributing to Methodology Documentation
This page lives in the kubestellar/docs repository at docs/content/console/development.md. To suggest changes:
git clone https://github.com/kubestellar/docs.git
cd docs
git checkout -b update-console-dev-docs
# Edit docs/content/console/development.md
git commit -s -m "📖 Update console development methodology"
git push origin update-console-dev-docs
# Open PR against kubestellar/docsPRs to improve this documentation are always welcome and do not require prior discussion.
Maintenance
Release Cadence
The console follows continuous deployment — changes merged to main are deployed to the hosted instance at console.kubestellar.io via Netlify.
Dependency Updates
- Frontend dependencies are updated regularly via automated PRs
- Go dependencies follow the KubeStellar release cadence
- Security patches are prioritized and applied immediately
Monitoring
- Netlify deployment status is tracked per commit
- Runtime errors are captured via the console’s built-in feedback mechanism
- Performance metrics (TTFI, cache hit rates) are monitored via analytics