Merge pull request #950 from srtab/chore/improve-local-dev-setup

Improve local development setup for new contributors

Author: srtab

.gitignore

@@ -160,6 +160,7 @@ cython_debug/
 #.idea/
 
 config.secrets.env
+config.toml
 state-snapshots.txt
 
 .ruff_cache/

CHANGELOG.md

@@ -14,6 +14,10 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 - Added `--repo-id` option to `setup_webhooks` command to restrict setup to a specific repository.
 - Added `allowed_usernames` option to `.daiv.yml` to restrict which users can interact with DAIV on a per-repository basis. Useful for public repositories where you want to limit who can trigger DAIV.
 
+### Fixed
+
+- Fixed `set -eu pipefail` in shell scripts — `pipefail` is not valid in POSIX `#!/bin/sh`.
+
 ### Changed
 
 - Changed `setup_webhooks` command to only create new webhooks by default, skipping existing ones.

CONTRIBUTING.md

@@ -5,6 +5,7 @@ Thank you for your interest in contributing to DAIV! This document provides guid
 ## Table of Contents
 
 - [Code of Conduct](#code-of-conduct)
+- [Development Environment](#development-environment)
 - [Development Guidelines](#development-guidelines)
   - [Code Style](#code-style)
   - [Testing](#testing)
@@ -20,6 +21,25 @@ Thank you for your interest in contributing to DAIV! This document provides guid
 
 We expect all contributors to be respectful and constructive. Please ensure that your interactions with the community are positive and inclusive.
 
+## Development Environment
+
+To get started quickly:
+
+```bash
+git clone https://github.com/srtab/daiv.git && cd daiv
+make setup                    # creates config files from templates
+docker compose up --build     # starts core services (db, redis, app, worker, scheduler)
+```
+
+Optional services are available via Docker Compose profiles:
+
+- `--profile gitlab` — local GitLab instance and runner
+- `--profile sandbox` — sandbox code executor
+- `--profile mcp` — MCP proxy
+- `--profile full` — all services
+
+See the [README](README.md) for full setup details.
+
 ## Development Guidelines
 
 ### Code Style
@@ -66,7 +86,7 @@ DAIV uses pytest for testing:
 
 ### Type Checking
 
-We use mypy for static type checking but we don't enforce it, we encourage you to use it to improve your code quality:
+We use [ty](https://github.com/astral-sh/ty) for static type checking but we don't enforce it, we encourage you to use it to improve your code quality:
 
 ```bash
 make lint-typing

Makefile

@@ -1,9 +1,10 @@
 # Makefile
 
-.PHONY: help test test-ci lint lint-check lint-format lint-fix lint-typing evals
+.PHONY: help setup test test-ci lint lint-check lint-format lint-fix lint-typing evals
 
 help:
 	@echo "Available commands:"
+	@echo "  make setup          - Set up local development environment"
 	@echo "  make test           - Run tests with coverage report"
 	@echo "  make lint           - Run lint check and format check"
 	@echo "  make lint-check     - Run lint check only (ruff)"
@@ -13,6 +14,30 @@ help:
 	@echo "  make lock           - Update uv lock"
 	@echo "  make integration-tests          - Run integration tests"
 
+setup:
+	@if [ ! -f docker/local/app/config.secrets.env ]; then \
+		cp docker/local/app/config.secrets.env.example docker/local/app/config.secrets.env && \
+		echo "Created docker/local/app/config.secrets.env from template."; \
+	else \
+		echo "docker/local/app/config.secrets.env already exists, skipping."; \
+	fi
+	@if [ ! -f docker/local/gitlab-runner/config.toml ]; then \
+		cp docker/local/gitlab-runner/config.toml.example docker/local/gitlab-runner/config.toml && \
+		echo "Created docker/local/gitlab-runner/config.toml from template."; \
+	else \
+		echo "docker/local/gitlab-runner/config.toml already exists, skipping."; \
+	fi
+	@echo ""
+	@echo "Next steps:"
+	@echo "  1. Edit docker/local/app/config.secrets.env and add your API keys"
+	@echo "     (at minimum: one LLM provider key + CODEBASE_GITLAB_AUTH_TOKEN if using GitLab)"
+	@echo "  2. Start core services:  docker compose up --build"
+	@echo "  3. Optional services:"
+	@echo "       docker compose --profile gitlab up    # local GitLab instance"
+	@echo "       docker compose --profile sandbox up   # sandbox code executor"
+	@echo "       docker compose --profile mcp up       # MCP proxy"
+	@echo "       docker compose --profile full up      # all services"
+
 test:
 	LANGCHAIN_TRACING_V2=false uv run pytest -s tests/unit_tests
 

README.md

@@ -62,13 +62,14 @@ DAIV's agent has access to a set of capabilities that make this possible:
    cd daiv
    ```
 
-2. **Configure Environment**:
-   Copy `docker/local/app/config.secrets.env.example` to `docker/local/app/config.secrets.env` and update it with your Git platform credentials (GitLab token or GitHub App credentials), OpenAI API Key, Anthropic API Key, Google API Key, and LangChain API Key.
+2. **Run setup**:
 
    ```bash
-   cp docker/local/app/config.secrets.env.example docker/local/app/config.secrets.env
+   make setup
    ```
 
+   This creates config files from their templates (`config.secrets.env` and `config.toml`). Edit `docker/local/app/config.secrets.env` and add your API keys — at minimum one LLM provider key (Anthropic, OpenAI, Google, or OpenRouter) and `CODEBASE_GITLAB_AUTH_TOKEN` if using GitLab.
+
 3. **Install Dependencies** (optional):
    We use [uv](https://docs.astral.sh/uv/) to manage dependencies on DAIV.
 
@@ -79,30 +80,37 @@ DAIV's agent has access to a set of capabilities that make this possible:
    > [!NOTE]
    > This will install the project dependencies into a virtual environment. Useful for running linting outside of Docker or enabling autocompletion in VSCode.
 
-4. **Start the Server**:
+4. **Start core services**:
 
    ```bash
    docker compose up --build
    ```
 
-   This will start all needed services locally. You can access them at:
+   This starts the core services (db, redis, app, worker, scheduler). SSL certificates are auto-generated on first run.
 
    - DAIV API documentation: https://localhost:8000/api/docs/
-   - GitLab (local test repository platform): http://localhost:8929
-   - Sandbox (secure code execution): http://localhost:8888/docs
+
+5. **Start optional services** (as needed):
+
+   ```bash
+   docker compose --profile gitlab up     # local GitLab instance + runner
+   docker compose --profile sandbox up    # sandbox code executor
+   docker compose --profile mcp up        # MCP proxy
+   docker compose --profile full up       # all services
+   ```
 
    > [!NOTE]
-   > The local development setup includes a GitLab instance for testing. For GitHub integration, you'll need to use GitHub.com or your own GitHub Enterprise instance.
+   > Profiles can be combined: `docker compose --profile gitlab --profile sandbox up`
 
-5. **Run the tests** (optional):
+6. **Run the tests** (optional):
    DAIV includes a comprehensive test suite. To run tests with coverage:
 
    ```bash
    $ docker compose exec -it app bash
    $ make test
    ```
 
-6. **Run linting** (optional):
+7. **Run linting** (optional):
    To ensure code quality:
 
    ```bash
@@ -111,37 +119,42 @@ DAIV's agent has access to a set of capabilities that make this possible:
    $ make lint-fix  # to automatically fix linting and formatting issues
    ```
 
-7. **Configure test repository**:
-   To be able to test DAIV, you need to configure a test repository on the local GitLab instance (or use your own GitHub repository).
+### Optional: Local GitLab
+
+To test DAIV with a local GitLab instance:
+
+1. **Start GitLab**:
 
-   1. First you need to obtain root password to authenticate with [local GitLab](http://localhost:8929):
+   ```bash
+   docker compose --profile gitlab up
+   ```
 
-      ```bash
-      $ docker compose exec -it gitlab grep 'Password:' /etc/gitlab/initial_root_password
-      ```
+2. **Get the root password**:
 
-   2. Then you need to configure a personal access token (you can use the root user or create a new user) and add it to the `docker/local/app/config.secrets.env` file.
+   ```bash
+   docker compose exec -it gitlab grep 'Password:' /etc/gitlab/initial_root_password
+   ```
 
-   3. Now you need to create a new project in GitLab and follow the instructions to push your testing code to it.
+3. **Configure a personal access token** at [http://localhost:8929](http://localhost:8929) (use the root user or create a new user) and add it to `docker/local/app/config.secrets.env` as `CODEBASE_GITLAB_AUTH_TOKEN`.
 
-      > [!TIP]
-      > You can import using repository URL, go to `Admin Area` -> `Settings` -> `General` -> `Import and export settings` and check the `Repository by URL` option.
+4. **Create a test project** in GitLab and push your testing code to it.
 
-   4. After you push/import your code to the repository, you need to set up webhooks and index the repository in DAIV:
+   > [!TIP]
+   > You can import using repository URL: go to `Admin Area` -> `Settings` -> `General` -> `Import and export settings` and check the `Repository by URL` option.
 
-      ```bash
-      # Enter the app container
-      $ docker compose exec -it app bash
+5. **Set up webhooks**:
 
-      # Set up webhooks to trigger automatically DAIV actions. You can disable SSL verification for local development by adding `--disable-ssl-verification` to the command.
-      $ django-admin setup_webhooks
+   ```bash
+   docker compose exec -it app django-admin setup_webhooks
+   ```
 
-      ```
+   > [!NOTE]
+   > If you get the error `Invalid url given`, go to `Admin Area` -> `Settings` -> `Network` -> `Outbound requests` and check `Allow requests to the local network from webhooks and integrations`.
 
-      > [!NOTE]
-      > If you're getting the error `Invalid url given` when setting up the webhooks on local GitLab, go to `Admin Area` -> `Settings` -> `Network` -> `Outbound requests` and check the `Allow requests to the local network from webhooks and integrations` option.
+6. **Test DAIV** by creating an issue in your repository with the `daiv` label. DAIV will automatically present a plan to address the issue.
 
-   5. Finally, you can test DAIV by creating an issue in your repository, add `daiv` label to it and see how DAIV will automatically present a plan to address the issue.
+> [!NOTE]
+> For GitHub integration, you'll need to use GitHub.com or your own GitHub Enterprise instance. Set `CODEBASE_CLIENT=github` in `docker/local/app/config.env` and configure the GitHub App credentials.
 
 
 ## Roadmap

daiv/automation/agent/middlewares/skills.py

@@ -1,3 +1,5 @@
+from __future__ import annotations
+
 import logging
 import shlex
 from pathlib import Path

docker-compose.yml

@@ -20,10 +20,6 @@ x-app-defaults: &x_app_default
     redis:
       condition: service_healthy
       restart: true
-    gitlab:
-      condition: service_healthy
-    sandbox:
-      condition: service_healthy
 
 services:
   db:
@@ -90,6 +86,9 @@ services:
   gitlab:
     image: gitlab/gitlab-ce:latest
     container_name: daiv-gitlab
+    profiles:
+      - gitlab
+      - full
     restart: on-failure
     logging:
       driver: "none"
@@ -113,6 +112,9 @@ services:
   gitlab-runner:
     image: gitlab/gitlab-runner:latest
     container_name: daiv-gitlab-runner
+    profiles:
+      - gitlab
+      - full
     restart: unless-stopped
     volumes:
       - ./docker/local/gitlab-runner/config.toml:/etc/gitlab-runner/config.toml
@@ -124,23 +126,27 @@ services:
         condition: service_healthy
 
   sandbox:
-    build:
-      context: ./../daiv-sandbox
-      args:
-        DOCKER_GID: 999
+    image: ghcr.io/srtab/daiv-sandbox:latest
+    profiles:
+      - sandbox
+      - full
     stdin_open: true
     restart: unless-stopped
     container_name: daiv-sandbox
+    group_add:
+      - "${DOCKER_GID:-999}"
     env_file:
       - ./docker/local/sandbox/config.env
     ports:
       - "8888:8000"
     volumes:
       - /var/run/docker.sock:/var/run/docker.sock
-      - ./../daiv-sandbox/daiv_sandbox:/home/app/daiv_sandbox
 
   mcp-proxy:
     image: ghcr.io/tbxark/mcp-proxy:v0.43.2
+    profiles:
+      - mcp
+      - full
     restart: unless-stopped
     container_name: daiv-mcp-proxy
     entrypoint:

docker/local/app/Dockerfile

@@ -25,6 +25,7 @@ RUN apt-get update \
         gnupg \
         ca-certificates \
         ripgrep \
+        openssl \
     # Install GitHub CLI
     && curl -fsSL https://cli.github.com/packages/githubcli-archive-keyring.gpg \
         | dd of=/etc/apt/keyrings/githubcli-archive-keyring.gpg \

docker/local/app/config.env

@@ -1,4 +1,4 @@
-# default settings to run django manage commands
+# Django settings
 DJANGO_SETTINGS_MODULE=daiv.settings.local
 DJANGO_SECRET_KEY='v6_=1=)!_$aoeswo@hdo@5kov)v9844!1r&+w!!@@+_7&*!jb+'
 DJANGO_ALLOWED_HOSTS=*
@@ -7,23 +7,25 @@ DJANGO_REDIS_SESSION_URL=redis://redis:6379/1
 DJANGO_REDIS_CHECKPOINT_URL=redis://redis:6379/0
 DJANGO_DEBUG=True
 
-# Database secrets
+# Database
 DB_HOST=db
 DB_NAME=db
 DB_USER=dbuser
 DB_PASSWORD=dbpass
 DB_PORT=5432
 DB_SSLMODE=prefer
 
-# Codebase
+# Codebase client — set to "gitlab" for local GitLab or "github" for GitHub
 CODEBASE_CLIENT=gitlab
 CODEBASE_GITLAB_URL=http://gitlab:8929
-CODEBASE_GITHUB_APP_ID=2763557
-CODEBASE_GITHUB_INSTALLATION_ID=107051972
 
-# LANGSMITH
+# GitHub App credentials (only needed when CODEBASE_CLIENT=github)
+# CODEBASE_GITHUB_APP_ID=
+# CODEBASE_GITHUB_INSTALLATION_ID=
+
+# LangSmith observability
 LANGCHAIN_TRACING_V2=true
 LANGCHAIN_PROJECT=default
 
-# SANDBOX
+# Sandbox
 DAIV_SANDBOX_NETWORK_ENABLED=True

docker/local/app/config.secrets.env.example

@@ -1,21 +1,29 @@
-# Codebase
+# =============================================================================
+# REQUIRED — At least one LLM provider key (+ GitLab token if using GitLab)
+# =============================================================================
+
+# GitLab personal access token (required for CODEBASE_CLIENT=gitlab)
 CODEBASE_GITLAB_AUTH_TOKEN=
 
-# Models
-OPENAI_API_KEY=
+# LLM provider keys — at least one is required
 ANTHROPIC_API_KEY=
+OPENAI_API_KEY=
 GOOGLE_API_KEY=
 OPENROUTER_API_KEY=
 
-# Monitoring
+# =============================================================================
+# OPTIONAL — Enable these as needed for additional features
+# =============================================================================
+
+# LangSmith observability (traces and monitoring)
 LANGCHAIN_API_KEY=
 
-# WebSearch
+# Web search capability
 WEB_SEARCH_API_KEY=
 
-# MCP
+# MCP proxy (requires --profile mcp)
 MCP_CONFIG_API_KEY=
 MCP_SENTRY_ACCESS_TOKEN=
 
-# Sandbox
+# Sandbox secure execution (requires --profile sandbox)
 DAIV_SANDBOX_API_KEY=