Kubernetes Source

[danielgerlag]

This pull request adds support for Kubernetes as a source and bootstrap provider in the project. It introduces new shared components for Kubernetes, a Kubernetes bootstrap plugin, and updates the workspace configuration to include these new components. The main focus is on enabling the system to bootstrap data from Kubernetes resources, using configuration shared with the Kubernetes source plugin.

Kubernetes plugin integration:

• Added a new shared library drasi-kubernetes-common for Kubernetes-related types and client utilities, facilitating code reuse between plugins. [1] [2]
• Introduced the drasi-bootstrap-kubernetes plugin, including its implementation (src/lib.rs, src/config.rs, src/descriptor.rs, src/provider.rs), manifest (Cargo.toml), build/test automation (Makefile), and documentation (README.md). This plugin emits bootstrap events for Kubernetes resources based on the source configuration. [1] [2] [3] [4] [5] [6]

Workspace and dependency updates:

• Registered components/kubernetes-common, components/bootstrappers/kubernetes, and components/sources/kubernetes as workspace members in Cargo.toml. [1] [2] [3]
• Added dependencies for the new Kubernetes components in the workspace manifest.

[danielgerlag]

This is test-only code (tests/k3s_helpers.rs) that connects to a testcontainers k3s instance on localhost. It rewrites the kubeconfig server address from the container-internal address to the mapped host port. This is inherent to how testcontainers-based integration tests work and is not debug or production code.

[danielgerlag]

Same as above — test-only localhost reference for k3s testcontainer port mapping.

[danielgerlag]

Same — test-only localhost for k3s testcontainer.

[danielgerlag]

Same — test-only localhost for k3s testcontainer.

[danielgerlag]

This is in setup.sh for the getting-started example, which starts a local k3s container for development. The localhost reference is rewriting the kubeconfig to point at the container's mapped port. Not production code.

[danielgerlag]

Same as above — example setup script localhost reference for local k3s container.

[Copilot]

Pull request overview

Adds Kubernetes integration to Drasi by introducing a Kubernetes source plugin plus a matching bootstrap provider, backed by a shared drasi-kubernetes-common crate (config/client/mapping/property extraction) to avoid duplicating logic between components.

Changes:

• Introduces drasi-kubernetes-common with shared config, kube client creation, and object→graph mapping/property extraction.
• Adds drasi-source-kubernetes and drasi-bootstrap-kubernetes plugins and registers them in the workspace.
• Adds an end-to-end getting-started example and supporting scripts (plus a separate POC crate under temp/).

Reviewed changes

Copilot reviewed 32 out of 32 changed files in this pull request and generated 10 comments.

Show a summary per file

File	Description
Cargo.toml	Adds new Kubernetes crates to workspace members and workspace dependencies.
components/kubernetes-common/Cargo.toml	New shared Kubernetes crate manifest.
components/kubernetes-common/src/lib.rs	Exposes shared Kubernetes modules and re-exports key types/helpers.
components/kubernetes-common/src/config.rs	Defines Kubernetes source config, validation, and supported kinds.
components/kubernetes-common/src/client.rs	Builds kube client from kubeconfig content/path or in-cluster auth; parses apiVersion.
components/kubernetes-common/src/mapping.rs	Maps Kubernetes objects into Drasi SourceChanges (nodes + optional OWNS relations).
components/kubernetes-common/src/properties.rs	Extracts kind-specific and generic metadata properties into Drasi values.
components/sources/kubernetes/Cargo.toml	New Kubernetes source plugin manifest.
components/sources/kubernetes/Makefile	Build/lint/test targets for the Kubernetes source plugin.
components/sources/kubernetes/README.md	Documents Kubernetes source features, configuration, and dev workflows.
components/sources/kubernetes/src/lib.rs	Declares plugin modules, re-exports config/mapping/properties, exports dynamic plugin.
components/sources/kubernetes/src/descriptor.rs	Plugin descriptor + OpenAPI schema for Kubernetes source configuration.
components/sources/kubernetes/src/source.rs	Implements watcher-driven Kubernetes source and state-store UID tracking.
components/sources/kubernetes/src/tests.rs	Unit tests for config validation and property/mapping behavior.
components/sources/kubernetes/tests/k3s_helpers.rs	Testcontainers helper for spinning up k3s and producing a kube client/config.
components/sources/kubernetes/tests/integration_tests.rs	Ignored end-to-end test exercising CRUD cycle via k3s + DrasiLib.
components/bootstrappers/kubernetes/Cargo.toml	New Kubernetes bootstrap provider plugin manifest.
components/bootstrappers/kubernetes/Makefile	Build/lint/test targets for Kubernetes bootstrap provider.
components/bootstrappers/kubernetes/README.md	Documents bootstrap provider behavior and usage.
components/bootstrappers/kubernetes/src/lib.rs	Declares bootstrap modules and exports dynamic plugin.
components/bootstrappers/kubernetes/src/config.rs	Defines (empty) bootstrap config type.
components/bootstrappers/kubernetes/src/descriptor.rs	Bootstrap plugin descriptor + OpenAPI schema for bootstrap config.
components/bootstrappers/kubernetes/src/provider.rs	Lists objects and emits bootstrap insert events based on source config.
examples/lib/kubernetes-getting-started/Cargo.toml	Example crate manifest wiring DrasiLib + k8s source/bootstrap + log reaction.
examples/lib/kubernetes-getting-started/main.rs	Example app showing query + log reaction over watched ConfigMaps.
examples/lib/kubernetes-getting-started/README.md	Getting-started documentation for running the example.
examples/lib/kubernetes-getting-started/setup.sh	Script to ensure a reachable cluster (starts local k3s container if needed).
examples/lib/kubernetes-getting-started/quickstart.sh	Runs setup then executes the example.
examples/lib/kubernetes-getting-started/test-updates.sh	Applies/patches/deletes a demo ConfigMap to trigger updates.
examples/lib/kubernetes-getting-started/diagnose.sh	Cluster + demo resource diagnostics.
temp/kubernetes-poc-verification/Cargo.toml	Standalone POC crate manifest for kube-rs watcher experiments.
temp/kubernetes-poc-verification/src/main.rs	Standalone POC program demonstrating watcher init/apply/delete behavior.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

This Cargo.toml is missing the standard Apache-2.0 copyright/license header comment block that other plugin crates include at the top (e.g., components/sources/http/Cargo.toml:1-13). Add the header here for consistency across plugin manifests.

[danielgerlag]

Fixed — added the standard Apache-2.0 copyright/license header.

[Copilot]

This Cargo.toml is missing the standard Apache-2.0 copyright/license header comment block that other plugin crates include at the top (e.g., components/sources/http/Cargo.toml:1-13). Add the header here for consistency across plugin manifests.

[danielgerlag]

Fixed — added the standard Apache-2.0 copyright/license header.

[Copilot]

create_bootstrap_provider currently uses serde_json::from_value(...).unwrap_or_default(), which silently ignores invalid bootstrap config JSON. Since this config is intentionally empty, prefer strict deserialization (and add deny_unknown_fields on the DTO) so unexpected fields or wrong shapes fail fast instead of being dropped.

[danielgerlag]

Fixed — changed to strict deserialization with ? operator and added deny_unknown_fields on the DTO.

[Copilot]

save_initialized(...) persists an initialized flag to the state store, but nothing ever reads it back (no get(..., INITIALIZED_KEY) anywhere). Either load and use this flag (e.g., for resume/skip-init decisions) or remove it to avoid writing unused state.

Suggested change

save_initialized(source_id, &state_store, true).await?;

[danielgerlag]

Fixed — removed save_initialized and the INITIALIZED_KEY constant entirely. The watcher always re-lists on startup via kube-rs, so persisted init state was never actually used.

[Copilot]

Event::InitApply pre-inserts the object's UID into seen_uids before calling process_apply_object. This makes every InitApply object look "already seen" and therefore gets emitted as an Update instead of an Insert when start_from is Beginning/Timestamp. Move the seen_uids.insert(uid) into the branches where you skip dispatching (e.g., StartFrom::Now or when filtering out by timestamp), and let process_apply_object own the insert/update decision for dispatched InitApply events.

[danielgerlag]

Fixed — UID is now only pre-inserted in the skip branches (StartFrom::Now and timestamp-filtered). Dispatched InitApply events go through process_apply_object which correctly decides insert vs update.

[Copilot]

use kube::Client; is unused in this file. With workspace lints set to deny warnings, this will fail compilation; remove the import or use it explicitly.

Suggested change

use kube::Client;

[danielgerlag]

Fixed — removed the unused kube::Client import.

[Copilot]

AuthMode is imported but never used in this module. With workspace lints set to deny warnings, this will fail compilation; remove the unused import.

Suggested change

	build_client, is_cluster_scoped_kind, parse_api_version, AuthMode, KubernetesSourceConfig,
	ResourceSpec,
	build_client, is_cluster_scoped_kind, parse_api_version, KubernetesSourceConfig, ResourceSpec,

[danielgerlag]

Fixed — removed unused AuthMode import.

[Copilot]

setup.sh overwrites the user's $HOME/.kube/config when starting the local k3s container. This can destroy an existing kubeconfig and is risky for users. Prefer writing the generated kubeconfig to a dedicated file under the example directory (or a temp dir) and setting KUBECONFIG for the remainder of the script run instead of overwriting the default config path.

Suggested change

	mkdir -p "$HOME/.kube"
	docker cp "$K3S_CONTAINER:/etc/rancher/k3s/k3s.yaml" "$HOME/.kube/config"
	sed -i 's/127.0.0.1/localhost/g' "$HOME/.kube/config"
	export KUBECONFIG="$HOME/.kube/config"
	echo "Waiting for node readiness..."
	kubectl wait --for=condition=Ready node --all --timeout=120s
	kubectl get nodes -o wide
	echo "Setup complete."
	echo "If needed, export: KUBECONFIG=$HOME/.kube/config"
	K3S_KUBECONFIG="$SCRIPT_DIR/k3s-kubeconfig"
	docker cp "$K3S_CONTAINER:/etc/rancher/k3s/k3s.yaml" "$K3S_KUBECONFIG"
	sed -i 's/127.0.0.1/localhost/g' "$K3S_KUBECONFIG"
	export KUBECONFIG="$K3S_KUBECONFIG"
	echo "Waiting for node readiness..."
	kubectl wait --for=condition=Ready node --all --timeout=120s
	kubectl get nodes -o wide
	echo "Setup complete."
	echo "If needed, export: KUBECONFIG=$K3S_KUBECONFIG"

[danielgerlag]

Fixed — kubeconfig is now written to a local file at the script directory instead of overwriting ~/.kube/config.

[Copilot]

The PR description focuses on adding Kubernetes source/bootstrap components, but this adds a separate temp/kubernetes-poc-verification POC workspace/crate. If this is intended to ship with the PR, it should be mentioned; otherwise consider moving it under examples/ or omitting it to keep the repository clean.

[danielgerlag]

Removed — temp/kubernetes-poc-verification has been deleted from the PR.

[Copilot]

save_resource_version(...) writes rv:{target_key} to the state store, but the value is never loaded/used to resume the watcher, and it's only updated on Delete events. Either implement resume logic (load RV per target and pass it into the watcher config / restart strategy, and update it on Apply as well) or remove this persistence to avoid dead state.

Suggested change

	if let Some(rv) = extract_resource_version(&obj) {
	save_resource_version(source_id, &target_key, &rv, &state_store).await?;
	}
	}
	}
	}
	Err(e) => {
	}
	}
	}
	Err(e) => {
	}
	}
	Err(e) => {

[danielgerlag]

Fixed — removed save_resource_version entirely. The kube-rs watcher handles resourceVersion tracking internally, so persisting it without loading it on resume was dead state.