Add ACM policy tools, target management, and multi-arch build support#38
Open
edcdavid wants to merge 2 commits intosakhoury:mainfrom
Open
Add ACM policy tools, target management, and multi-arch build support#38edcdavid wants to merge 2 commits intosakhoury:mainfrom
edcdavid wants to merge 2 commits intosakhoury:mainfrom
Conversation
edcdavid
force-pushed
the
policy-tools
branch
3 times, most recently
from
fd8eb15 to
e6cfb6d
Compare
edcdavid
force-pushed
the
policy-tools
branch
4 times, most recently
from
f5fb49f to
3eeb65e
Compare
Introduce two ACM-focused MCP tools for policy troubleshooting: - inspect_acm_policy: extracts structured compliance details from hub policies including per-cluster violations and affected resources - diagnose_acm_policy: deep-dives into a non-compliant policy on a specific cluster, inspecting each affected resource with ownership, events, and remediation guidance Add supporting libraries: pkg/acm for hub resource inspection and pkg/k8s for ACM hub detection via in-cluster config. Simplify kubeconfig.go by removing verbose debug logging and unused helpers (safePrefix, safeSuffix). Add makeOptionalFieldsNullable to schema.go so LLM clients that send null for optional fields pass strict JSON schema validation. Add RAG content (tool docs, ACM architecture, debugging playbook), Containerfiles and build scripts for dual-platform ragtool and RAG data images. Extend ClusterRole with ACM policy and managed cluster read permissions. Streamline README to focus on project overview. Assisted by: Cursor
edcdavid
force-pushed
the
policy-tools
branch
from
3eeb65e to
7457494
Compare
Owner
|
@edcdavid do we still need this PR? |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Add ACM policy diagnostic tools and RAG build infrastructure
Introduce two ACM-focused MCP tools for policy troubleshooting:
policies including per-cluster violations and affected resources
specific cluster, inspecting each affected resource with ownership,
events, and remediation guidance
Add supporting libraries: pkg/acm for hub resource inspection and
pkg/k8s for ACM hub detection via in-cluster config.
Simplify kubeconfig.go by removing verbose debug logging and unused
helpers (safePrefix, safeSuffix). Add makeOptionalFieldsNullable to
schema.go so LLM clients that send null for optional fields pass
strict JSON schema validation.
Add RAG content (tool docs, ACM architecture, debugging playbook),
Containerfiles and build scripts for dual-platform ragtool and RAG
data images. Extend ClusterRole with ACM policy and managed cluster
read permissions. Streamline README to focus on project overview.
The following related PRs are required for these tools to work properly:
Assisted by: Cursor