Skip to content

tumf/agent-exec

BranchesTags

Repository files navigation

agent-exec

Non-interactive agent job runner. Runs commands as background jobs and returns structured JSON on stdout.

Output Contract

  • stdout: JSON only — every command prints exactly one JSON object
  • stderr: Diagnostic logs (controlled by RUST_LOG or -v/-vv flags)

This separation lets agents parse stdout reliably without filtering log noise.

Installation

cargo install --path .

Quick Start

Short-lived job (runwaittail)

Run a command, wait for it to finish, then read its output:

# 1. Start the job (returns immediately with a job_id)
JOB=$(agent-exec run echo "hello world" | jq -r .job_id)

# 2. Wait for completion
agent-exec wait "$JOB"

# 3. Read output
agent-exec tail "$JOB"

Example output of tail:

{
  "schema_version": "0.1",
  "ok": true,
  "type": "tail",
  "job_id": "01J...",
  "stdout_tail": "hello world",
  "stderr_tail": "",
  "truncated": false
}

Long-running job (runstatustail)

Start a background job, poll its status, then read its output:

# 1. Start the job (returns immediately with a job_id)
JOB=$(agent-exec run sleep 30 | jq -r .job_id)

# 2. Check status
agent-exec status "$JOB"

# 3. Stream output tail
agent-exec tail "$JOB"

# 4. Wait for completion
agent-exec wait "$JOB"

Timeout and force-kill

Run a job with a timeout; SIGTERM after 5 s, SIGKILL after 2 s more:

agent-exec run \
  --timeout 5000 \
  --kill-after 2000 \
  sleep 60

Two-step job lifecycle (create / start)

In addition to the immediate run path, agent-exec supports a two-step lifecycle where you define a job first and start it later.

# Step 1 — define the job (no process is spawned)
JOB=$(agent-exec create -- echo "deferred hello" | jq -r .job_id)

# Step 2 — launch the job when ready
agent-exec start --wait "$JOB"
  • create persists the command, environment, timeouts, and notification settings to meta.json and writes state.json with state="created". It returns type="create" and the job_id.
  • start reads the persisted definition and spawns the supervisor. It returns type="start" with the same snapshot/wait payload as run.
  • run remains available as the convenience path for immediate execution.

Persisted environment

--env KEY=VALUE values provided to create are stored in meta.json as durable (non-secret) configuration and applied when start is called. --env-file FILE stores the file path; the file is re-read at start time.

State transitions

State Meaning
created Job definition persisted, no process running
running Supervisor and child process active
exited Process exited normally
killed Process terminated by signal
failed Supervisor-level failure

kill rejects created jobs (no process to signal). wait polls through created and running until a terminal state. list --state created filters to not-yet-started jobs.

Global Options

Flag Default Description
--root <PATH> XDG default Override the jobs root directory for all subcommands. Precedence: --root > AGENT_EXEC_ROOT > $XDG_DATA_HOME/agent-exec/jobs > platform default.
-v / -vv warn Increase log verbosity (logs go to stderr).

The --root flag is a global option that applies to all job-store subcommands (run, status, tail, wait, kill, list, gc). The preferred placement is before the subcommand name:

agent-exec --root /tmp/jobs run echo hello
agent-exec --root /tmp/jobs status <JOB_ID>
agent-exec --root /tmp/jobs list
agent-exec --root /tmp/jobs gc --dry-run

For backward compatibility, --root is also accepted after the subcommand name (both forms are equivalent):

agent-exec run --root /tmp/jobs echo hello
agent-exec status --root /tmp/jobs <JOB_ID>

Commands

create — define a job without starting it

agent-exec create [OPTIONS] -- <COMMAND>...

Persists the job definition. Accepts the same definition-time options as run (command, --cwd, --env, --env-file, --mask, --timeout, --kill-after, --progress-every, --notify-command, --notify-file, --shell-wrapper). Does not accept snapshot/wait options (--snapshot-after, --wait).

Returns type="create", state="created", job_id, stdout_log_path, and stderr_log_path.

start — launch a previously created job

agent-exec start [OPTIONS] <JOB_ID>

Launches the job whose definition was persisted by create. Accepts observation-time options only:

Flag Default Description
--snapshot-after <ms> 10000 Wait N ms before returning
--tail-lines <N> 50 Lines in snapshot
--max-bytes <N> 65536 Max bytes in snapshot
--wait false Block until terminal state
--wait-poll-ms <ms> 200 Poll interval with --wait

Returns type="start" with the same payload shape as run. Only jobs in created state can be started; any other state returns error.code="invalid_state".

run — start a background job

agent-exec run [OPTIONS] <COMMAND>...

Key options:

Flag Default Description
--snapshot-after <ms> 10000 Wait N ms before returning (0 = return immediately)
--timeout <ms> 0 (none) Kill job after N ms
--kill-after <ms> 0 ms after SIGTERM to send SIGKILL
--tail-lines <N> 50 Lines of output captured in the snapshot
--cwd <dir> inherited Working directory
--env KEY=VALUE Set environment variable (repeatable)
--mask KEY Redact secret values from JSON output (repeatable)
--tag <TAG> Assign a user-defined tag to the job (repeatable; duplicates deduplicated)
--wait false Block until the job reaches a terminal state
--wait-poll-ms <ms> 200 Poll interval used with --wait
--notify-command <COMMAND> Run a shell command when the job finishes; event JSON is sent on stdin
--notify-file <PATH> Append a job.finished event as NDJSON
--config <PATH> XDG default Load shell wrapper config from a specific config.toml
--shell-wrapper <PROG FLAGS> platform default Override shell wrapper for this invocation (e.g. "bash -lc")

status — get job state

agent-exec status <JOB_ID>

Returns running, exited, killed, or failed, plus exit_code when finished.

tail — read output

agent-exec tail [--tail-lines N] <JOB_ID>

Returns the last N lines of stdout and stderr.

wait — block until done

agent-exec wait [--timeout-ms N] [--poll-ms N] <JOB_ID>

Polls until the job finishes or the timeout elapses.

kill — send signal

agent-exec kill [--signal TERM|INT|KILL] <JOB_ID>

list — list jobs

agent-exec list [--state created|running|exited|killed|failed] [--limit N] [--tag PATTERN]...

By default only jobs from the current working directory are shown. Use --all to show jobs from all directories.

Tag filtering with --tag applies logical AND across all patterns. Two pattern forms are supported:

  • Exact: --tag aaa matches only jobs that have the tag aaa.
  • Namespace prefix: --tag hoge.* matches jobs with any tag in the hoge namespace (e.g. hoge.sub, hoge.sub.deep).
# Show jobs tagged with "ci"
agent-exec list --all --tag ci

# Show jobs in the "project.build" namespace across all directories
agent-exec list --all --tag project.build.*

# Combine: jobs tagged with both "ci" AND "release" in the current cwd
agent-exec list --tag ci --tag release

tag set — replace job tags

agent-exec tag set <JOB_ID> [--tag TAG]...

Replaces all tags on an existing job with the specified list. Duplicates are deduplicated preserving first-seen order. Omit all --tag flags to clear tags.

# Assign tags at creation time
agent-exec run --tag project.build --tag ci -- make build

# Replace tags on an existing job
agent-exec tag set 01J9ABC123 --tag project.release --tag approved

# Clear all tags
agent-exec tag set 01J9ABC123

Tag format: dot-separated segments of alphanumeric characters and hyphens (e.g. ci, project.build, hoge-fuga.v2). The .* suffix is reserved for list filter patterns and cannot be used as a stored tag.

notify set — update notification configuration

agent-exec notify set <JOB_ID> [--command <COMMAND>] \
  [--output-pattern <PATTERN>] [--output-match-type contains|regex] \
  [--output-stream stdout|stderr|either] \
  [--output-command <COMMAND>] [--output-file <PATH>]

Updates the persisted notification configuration for an existing job. This is a metadata-only operation: it rewrites meta.json and never executes sinks immediately, even when the target job is already in a terminal state.

Completion notification flags:

Flag Description
--command <COMMAND> Shell command string for the job.finished command sink.
--root <PATH> Override the jobs root directory.

Output-match notification flags:

Flag Default Description
--output-pattern <PATTERN> Pattern to match against newly observed stdout/stderr lines. Required to enable output-match notifications.
--output-match-type <TYPE> contains contains for substring matching; regex for Rust regex syntax.
--output-stream <STREAM> either stdout, stderr, or either — which stream is eligible for matching.
--output-command <COMMAND> Shell command string executed on every match; event JSON is sent on stdin.
--output-file <PATH> File that receives one NDJSON job.output.matched event per match.

Behavior

  • All flags are optional; unspecified fields are preserved from the existing configuration.
  • --command replaces the existing notify_command; notify_file is always preserved.
  • Output-match configuration is stored under meta.json.notification.on_output_match.
  • Once saved, output-match settings apply only to future lines observed by the running supervisor — prior output is never replayed.
  • Calling notify set on a terminal job succeeds without executing any sink.
  • A missing job returns a JSON error with error.code = "job_not_found".

Example — completion notification

JOB=$(agent-exec run --snapshot-after 0 -- sleep 5 | jq -r .job_id)
agent-exec notify set "$JOB" --command 'cat > /tmp/event.json'

Example — output-match notification

# Run a job that may print error lines.
JOB=$(agent-exec run --snapshot-after 0 -- sh -c 'sleep 1; echo ERROR foo' | jq -r .job_id)

# Configure output-match: fire on every line containing "ERROR".
agent-exec notify set "$JOB" \
  --output-pattern 'ERROR' \
  --output-command 'cat >> /tmp/matches.ndjson'

# Or use a regex pattern targeting only stderr:
agent-exec notify set "$JOB" \
  --output-pattern '^ERR' \
  --output-match-type regex \
  --output-stream stderr \
  --output-file /tmp/stderr_matches.ndjson

gc — garbage collect old job data

agent-exec [--root <PATH>] gc [--older-than <DURATION>] [--dry-run]

Deletes job directories under the root whose terminal state (exited, killed, or failed) is older than the retention window. Running jobs are never touched.

Flag Default Description
--older-than <DURATION> 30d Retention window: jobs older than this are eligible for deletion. Supports 30d, 24h, 60m, 3600s.
--dry-run false Report candidates without deleting anything.

Retention semantics

  • The GC timestamp used for age evaluation is finished_at when present, falling back to updated_at.
  • Jobs where both timestamps are absent are skipped safely.
  • running jobs are never deleted regardless of age.

Examples

# Preview what would be deleted (30-day default window).
agent-exec gc --dry-run

# Preview with a custom 7-day window.
agent-exec gc --older-than 7d --dry-run

# Delete jobs older than 7 days.
agent-exec gc --older-than 7d

# Operate on a specific jobs root directory.
agent-exec --root /tmp/jobs gc --older-than 7d

JSON response fields

Field Type Description
root string Resolved jobs root path
dry_run bool Whether this was a preview-only run
older_than string Effective retention window (e.g. "30d")
older_than_source string "default" or "flag"
deleted number Count of directories actually deleted
skipped number Count of directories skipped
freed_bytes number Bytes freed (or would be freed in dry-run)
jobs array Per-job details: job_id, state, action, reason, bytes

The action field in each jobs entry is one of:

  • "deleted" — directory was removed
  • "would_delete" — would be removed in a real run (dry-run only)
  • "skipped" — preserved with an explanation in reason

Configuration

agent-exec reads an optional config.toml to configure the shell wrapper used for command-string execution.

Config file location

  • $XDG_CONFIG_HOME/agent-exec/config.toml (defaults to ~/.config/agent-exec/config.toml)

config.toml format

[shell]
unix    = ["sh", "-lc"]   # used on Unix-like platforms
windows = ["cmd", "/C"]   # used on Windows

Both keys are optional. Absent values fall back to the built-in platform default (sh -lc / cmd /C).

Shell wrapper precedence

  1. --shell-wrapper <PROG FLAGS> CLI flag (highest priority)
  2. --config <PATH> explicit config file
  3. Default XDG config file (~/.config/agent-exec/config.toml)
  4. Built-in platform default (lowest priority)

The configured wrapper applies to both run command-string execution and --notify-command delivery so the two execution paths stay consistent.

Override per invocation

agent-exec run --shell-wrapper "bash -lc" -- my_script.sh

Use a custom config file

agent-exec run --config /path/to/config.toml -- my_script.sh

Job Finished Events

When run is called with --notify-command or --notify-file, agent-exec emits a job.finished event after the job reaches a terminal state.

  • --notify-command accepts a shell command string, executes it via the configured shell wrapper (default: sh -lc on Unix, cmd /C on Windows), and writes the event JSON to stdin.
  • --notify-file appends the event as a single NDJSON line.
  • completion_event.json is also written in the job directory with the event plus sink delivery results.
  • Notification delivery is best effort; sink failures do not change the main job state.
  • When delivery success matters, inspect completion_event.json.delivery_results.

Choose the sink based on the next consumer:

  • Use --notify-command for small, direct reactions such as forwarding the event back to the launching OpenClaw session with openclaw agent --deliver --reply-channel ... --session-id ... -m ....
  • Use --notify-file when you want a durable queue-like handoff to a separate worker that can retry or fan out.
  • Prefer a compact one-liner for agent-authored OpenClaw callbacks, and prefer AGENT_EXEC_EVENT_PATH over parsing stdin when the downstream command accepts a file.

Example:

agent-exec run \
  --wait \
  --notify-file /tmp/agent-exec-events.ndjson \
  -- echo hello

Command sink example:

agent-exec run \
  --wait \
  --notify-command 'cat > /tmp/agent-exec-event.json' \
  -- echo hello

OpenClaw examples

Return the event to the launching OpenClaw session

This pattern is often more flexible than sending a final user message directly from the notify command. The launching session can inspect logs, decide whether the result is meaningful, and summarize it in context. In same-host agent-to-agent flows, job_id plus event_path is a good default.

Call openclaw agent --deliver with the reply channel and session id directly:

SESSION_ID="01bb09d5-6485-4a50-8d3b-3f6e80c61f9c"
REPLY_CHANNEL="telegram"

agent-exec run \
  --notify-command "openclaw agent --deliver --reply-channel $REPLY_CHANNEL --session-id $SESSION_ID -m \"job_id=\$AGENT_EXEC_JOB_ID event_path=\$AGENT_EXEC_EVENT_PATH\"" \
  -- ./scripts/run-heavy-task.sh

With this pattern, the receiving OpenClaw session can open the persisted event file immediately and still keep the job id for follow-up commands.

Prefer sending job_id and event_path instead of the full JSON blob when the receiver can access the same filesystem.

Attach or replace the callback later with notify set

Use notify set when the job is already running and you only learn the OpenClaw destination afterward.

JOB=$(agent-exec run --snapshot-after 0 -- ./scripts/run-heavy-task.sh | jq -r .job_id)
SESSION_ID="01bb09d5-6485-4a50-8d3b-3f6e80c61f9c"
REPLY_CHANNEL="telegram"

agent-exec notify set "$JOB" \
  --command "openclaw agent --deliver --reply-channel $REPLY_CHANNEL --session-id $SESSION_ID -m \"job_id=\$AGENT_EXEC_JOB_ID event_path=\$AGENT_EXEC_EVENT_PATH\""

notify set is metadata-only: it updates the stored callback for future completion delivery and does not execute the sink immediately.

Durable file-based worker

Use --notify-file when you want retries or fanout outside the main job lifecycle:

agent-exec run \
  --notify-file /var/lib/agent-exec/events.ndjson \
  -- ./scripts/run-heavy-task.sh

A separate worker can tail or batch-process the NDJSON file, retry failed downstream sends, and route events to chat, webhooks, or OpenClaw sessions without coupling that logic to the main job completion path.

Operational guidance

  • --notify-command accepts a plain shell command string; no JSON encoding is needed.
  • Keep notify commands small, fast, and idempotent.
  • Prefer AGENT_EXEC_EVENT_PATH when the downstream command already knows how to read a file.
  • Common sink failures include quoting mistakes, PATH or env mismatches, downstream non-zero exits, and wrong chat, session, or delivery-mode targets.
  • If you need heavier orchestration, let the notify sink hand off to a checked-in helper or durable worker.

For command sinks, the event JSON is written to stdin and these environment variables are set:

  • AGENT_EXEC_EVENT_PATH: path to the persisted event file (completion_event.json for job.finished, notification_events.ndjson for job.output.matched)
  • AGENT_EXEC_JOB_ID: job id
  • AGENT_EXEC_EVENT_TYPE: job.finished or job.output.matched

Example job.finished payload:

{
  "schema_version": "0.1",
  "event_type": "job.finished",
  "job_id": "01J...",
  "state": "exited",
  "command": ["echo", "hello"],
  "cwd": "/path/to/cwd",
  "started_at": "2026-03-15T12:00:00Z",
  "finished_at": "2026-03-15T12:00:00Z",
  "duration_ms": 12,
  "exit_code": 0,
  "stdout_log_path": "/jobs/01J.../stdout.log",
  "stderr_log_path": "/jobs/01J.../stderr.log"
}

If the job is killed by a signal, state becomes killed, exit_code may be absent, and signal is populated when available.

Output-Match Events

When a job has output-match notification configuration (set via notify set --output-pattern), the running supervisor evaluates each newly observed stdout/stderr line and emits a job.output.matched event for every line that matches.

Key properties:

  • Delivery fires on every matching line, not once per job.
  • Only future lines are eligible — output produced before notify set was called is never replayed.
  • Sink failures are recorded in notification_events.ndjson and do not affect the job lifecycle state.
  • Matching uses either contains (substring) or regex (Rust regex syntax) as configured by --output-match-type.
  • Stream selection (--output-stream) restricts matching to stdout, stderr, or either.

Example job.output.matched payload:

{
  "schema_version": "0.1",
  "event_type": "job.output.matched",
  "job_id": "01J...",
  "pattern": "ERROR",
  "match_type": "contains",
  "stream": "stdout",
  "line": "ERROR: connection refused",
  "stdout_log_path": "/jobs/01J.../stdout.log",
  "stderr_log_path": "/jobs/01J.../stderr.log"
}

Delivery records for output-match events are appended to notification_events.ndjson in the job directory (one JSON object per line). The completion_event.json file retains only job.finished delivery results.

Logging

Logs go to stderr only. Use -v / -vv or RUST_LOG:

RUST_LOG=debug agent-exec run echo hello
agent-exec -v run echo hello

Development

cargo build
cargo test --all
cargo fmt --all
cargo clippy --all-targets --all-features -- -D warnings

About

JSON-only stdout job runner for agent workflows (run/status/tail/wait/kill)

Topics

agent rust cli json job-runner process-management

Resources

Readme

License

MIT license
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases

8 tags

Packages

 
 
 

Contributors

Languages