Skip to content

Shell plugin readme #6

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
babourine merged 2 commits into from
May 14, 2025
Merged

Shell plugin readme #6

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
363b3ea
shell plugin readme
May 14, 2025
642d11c
readme pointer
May 14, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -91,7 +91,7 @@ Heimdall supports a growing set of pluggable command types:
| Plugin | Description | Execution Mode |
| ----------- | -------------------------------------- | -------------- |
| `ping` | Basic plugin used for testing | Sync or Async |
| `shell` | Shell command execution | Sync or Async |
| `shell` | [Shell command execution](https://github.com/patterninc/heimdall/blob/main/plugins/shell/shell.go) | Sync or Async |
Copy link

Copilot AI May 14, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

[nitpick] Providing an absolute URL is helpful; consider using a relative link instead to ensure the reference remains valid in offline or different deployment scenarios.

Copilot uses AI. Check for mistakes.
| `glue` | Pulling Iceberg table metadata | Sync or Async |
| `dynamodb` | DynamoDB read operation | Sync or Async |
| `snowflake` | Query execution in Snowflake | Async |
Expand Down
141 changes: 141 additions & 0 deletions plugins/shell/README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,141 @@
# 🐚 Shell Plugin

The **Shell Plugin** enables Heimdall to execute shell commands directly on configured clusters (typically local). It provides a simple, flexible way to integrate existing scripts and command-line tools into the Heimdall orchestration flow.

⚠️ **Security Note:** Use with caution. Improperly configured shell commands can introduce security vulnerabilities. Always validate inputs and restrict command access where possible.

---

## 🧩 Plugin Overview

* **Plugin Name:** `shell`
* **Execution Mode:** Sync or Async
* **Use Case:** Integrating shell scripts, CLI tools, or simple automation jobs

---

## ⚙️ Defining a Shell Command

A shell command requires a `command` in its `context`—typically a path to a script or binary.

```yaml
- name: my-shell-script-0.0.1
status: active
plugin: shell
version: 0.0.1
description: Run super application
context:
command:
- /usr/local/bin/super-script.sh
tags:
- type:super-command
cluster_tags:
- type:localhost
```

🔸 This defines an **asynchronous shell command** that runs `/usr/local/bin/super-script.sh`. Once the job completes, logs can be accessed via:

```
GET /api/v1/job/<job_id>/stdout
GET /api/v1/job/<job_id>/stderr
```

---

## 🖥️ Cluster Configuration

To run shell commands, define a cluster (typically localhost) that supports command execution:

```yaml
- name: localhost-0.0.1
status: active
version: 0.0.1
description: Just a localhost
tags:
- type:localhost
- data:local
```

This cluster will be matched against `cluster_criteria` in job submissions.

---

## 🚀 Submitting a Shell Job

You can pass arguments to your shell command via the `context.arguments` field in the job payload:

```json
{
"name": "my-super-job",
"version": "0.0.2",
"command_criteria": ["type:super-command"],
"cluster_criteria": ["data:local"],
"context": {
"arguments": ["arg1", "arg2", "..."]
}
}
```

🔹 Equivalent execution:
`/usr/local/bin/super-script.sh "arg1" "arg2" "..."`

---

## 📦 Job Context & Runtime

Each shell-based job is executed in a dedicated **working directory** created by Heimdall at runtime. This directory includes:

* `context.json`: Provides structured context for the job, including job, command, and cluster metadata.
* Temporary output or result files generated by your script.

You can extract values from the context in your scripts using tools like [`jq`](https://stedolan.github.io/jq/):

```bash
jq '.job.name' context.json
```

---

## 📊 Returning Job Results

To return structured data from a shell command, create a `result.json` file in the job's working directory. Heimdall will parse this and record the output if it matches the expected format:

```go
type column struct {
Name string `yaml:"name,omitempty" json:"name,omitempty"`
Type columnType `yaml:"type,omitempty" json:"type,omitempty"`
}

type Result struct {
Columns []*column `yaml:"columns,omitempty" json:"columns,omitempty"`
Data [][]any `yaml:"data,omitempty" json:"data,omitempty"`
}
```

✅ Example:

```json
{
"columns": [
{"name": "status", "type": "string"},
{"name": "duration", "type": "int"}
],
"data": [
["success", 120]
]
}
```

If valid, this result will be made available via:

```
GET /api/v1/job/<job_id>/result
```

---

## 🧠 Best Practices

* **Validate inputs** to avoid command injection.
* Use **dedicated scripts** to abstract complex logic away from Heimdall config.
* Store sensitive data in secure environment variables or secrets—**never pass them as command-line arguments**.