Skip to main content
Preview: AI Builder Portal is in preview. Features and capabilities are under active development and may change.

Overview

The autonomous agent template is the official Docker image for running headless AI agents on Qovery. When deployed as a workspace, the container automatically fetches a Linear issue, runs an AI agent, opens a pull request, and exits. You can use the template directly or extend it with project-specific dependencies.

Quick Start

Use the image directly

FROM ghcr.io/qovery/autonomous-agent-template:latest

# Add your project-specific dependencies
RUN apt-get update && apt-get install -y your-deps

Or build from source

git clone https://github.com/Qovery/autonomous-agent-template.git
cd autonomous-agent-template
docker build -t my-autonomous-agent .
Then register the image as a blueprint in the portal and enable autonomous mode. See Getting Started for the full walkthrough.

How the Agent Run Works

When the portal launches a workspace from the template, the container executes a 7-step autonomous cycle:
1

Start governance proxy

If configured, the entrypoint starts an HTTP proxy that intercepts all outbound traffic from the agent and applies organization policies (allowlists, secret detection, rate limiting).
2

Fetch the Linear issue

The script reads the issue ID from environment variables, calls the Linear API, and writes the issue title and description to a task file.
3

Clone the repository and create a branch

The target repository is cloned using the configured git token. A branch is created automatically from the issue key and title (e.g., agent/ENG-123-fix-login-validation).
4

Run the AI agent

The configured runtime executes headlessly with the task file as the prompt:
RuntimeCommand
Claude Codeclaude -p "<task>"
OpenCodeopencode run "<task>"
Codexcodex --full-auto "<task>"
Gemini CLIgemini -p "<task>"
Cursor CLIcursor-agent "<task>"
The command is wrapped in a timeout using the configured run timeout. Exit code 124 indicates a timeout.During execution, the agent can stream live progress updates to Linear via the portal’s progress endpoint. These appear as real-time “thought” activities in the Linear issue, giving your team visibility into what the agent is doing.
5

Commit and push

If the agent made code changes, they are committed and pushed to the branch. If no changes were made, the run reports a failure (“no code changes”).
6

Open a pull request

A PR is created on the git provider (GitHub, GitLab, or Bitbucket) with the issue context in the body. The PR title includes the Linear issue key.
7

Report results

The container calls back to the portal API to record the result. The portal then emits structured activities to the Linear agent session - updating the plan to completed, adding external URLs (dashboard link, PR link), and posting a response or error activity visible inline in Linear. A lifecycle comment is also posted on the issue for audit purposes. The workspace is automatically cleaned up after completion.

Environment Variables

These variables are injected automatically by the portal when it launches the workspace. You do not set them manually.
VariableDescription
LINEAR_API_TOKENLinear API token for reading issues and posting comments
LINEAR_ISSUE_IDLinear issue node ID to work on
LINEAR_ISSUE_KEYHuman-readable issue key (e.g., ENG-123)
RDE_AUTONOMOUS_AGENTRuntime to use: claude, opencode, codex, gemini, or cursor
RDE_RUN_CALLBACK_URLPortal API callback URL for reporting results
RDE_RUN_TIMEOUT_MINHard timeout for the agent run (minutes)
RDE_LINEAR_STATE_REVIEW_IDLinear workflow state ID for the In-Review transition (optional)
RDE_LINEAR_STATE_FAILED_IDLinear workflow state ID for the Needs-Human transition (optional)
ANTHROPIC_API_KEYAPI key for Claude Code, OpenCode, or Cursor runtimes
OPENAI_API_KEYAPI key for Codex runtime
GEMINI_API_KEYAPI key for Gemini CLI runtime
BLUEPRINT_GIT_REPOSITORYTarget repository URL
BLUEPRINT_GIT_TOKENGit token for clone, push, and PR creation
BLUEPRINT_GIT_PROVIDERGit provider: github, gitlab, or bitbucket

Git Provider Support

The template supports three git providers for cloning repositories, pushing branches, and creating pull requests:
ProviderValuePR API
GitHubgithubGitHub REST API
GitLabgitlabGitLab REST API
BitbucketbitbucketBitbucket REST API
The provider is determined by the BLUEPRINT_GIT_PROVIDER environment variable, which is set automatically based on the repository URL configured in the agent blueprint.

RDE Configuration

The template includes a .config.rde.qovery.yml file that customizes which components are installed by the Qovery RDE install script. It disables web IDE components that are not needed for headless autonomous mode while keeping all AI runtimes and development tooling. Enabled components:
  • All AI runtimes (Claude Code, OpenCode, Codex, Cursor)
  • Development tools (Node.js, Python, Ruby, Go)
  • Git tooling (gh CLI, Qovery CLI)
  • Terminal utilities (zellij, fzf, ripgrep)
Disabled components:
  • Code Server (web IDE) - not needed for headless mode
  • Standard entrypoint - replaced by the autonomous entrypoint
  • Browser-based extensions and resources
See Blueprint Management for details on the RDE install script and .config.rde.qovery.yml configuration.

Agent Governance Proxy

When the RDE_PROXY_SCRIPT_GZ_B64 environment variable is set, the template starts an HTTP proxy before running the agent. This proxy intercepts all outbound HTTP/HTTPS traffic from the AI agent and enforces organization policies. The proxy supports:
  • Allowlists - restrict which external hosts the agent can reach
  • Secret detection - prevent accidental exfiltration of credentials
  • Rate limiting - throttle API calls to prevent abuse
  • Kill switch - immediately halt all agent egress
The proxy runs on port 8877 and is transparent to the agent. All outbound traffic is routed through it automatically.
The governance proxy is configured at the organization level by the Qovery team. Contact Qovery support to enable and configure proxy policies for your autonomous agents.

Customizing the Template

To extend the template for your project: 
FROM ghcr.io/qovery/autonomous-agent-template:latest

# Add project-specific dependencies
RUN apt-get update && apt-get install -y \
    postgresql-client \
    redis-tools

# Add custom agent instructions
COPY AGENTS.md /home/coder/project/AGENTS.md

# Add custom scripts
COPY my-setup.sh /usr/local/bin/my-setup.sh
RUN chmod +x /usr/local/bin/my-setup.sh
Common customizations:
  • Project dependencies - install language-specific packages or system libraries your codebase requires
  • Agent instructions - add an AGENTS.md or .claude/ directory with project-specific context for the AI agent
  • Setup scripts - run initialization steps before the agent starts (e.g., database migrations, seed data)
  • Additional tools - install linters, formatters, or test frameworks the agent needs
Keep the base image as your FROM layer and add customizations on top. This ensures you get updates to the AI runtimes, governance proxy, and core scripts automatically when the base image is updated.

Next Steps

Getting Started

Set up your first autonomous agent from scratch.

Agent Blueprints

Configure runtime, repositories, and Linear integration.

Linear Integration

Configure the issue flow, labels, and workflow states.