Infrastructure Design Decisions#

Key architectural decisions that shape the S-CORE infrastructure. Each entry summarizes the problem, the decision made, and the main tradeoff. Full decision records live in the S-CORE Handbook.

DR-003 β€” Devcontainer: Monolithic Image vs. Multi-Container#

Problem: S-CORE repositories need a shared local environment for tools that are not delivered by the primary build flow (editors, formatters, linters, documentation tooling). The question was whether to use a single shared container image or a Docker Compose setup with one container per concern.

Decision: Monolithic image β€” one ghcr.io/eclipse-score/devcontainer image that carries all shared tools.

Rationale: Keeps the contributor entry point simple (one container, one devcontainer.json). Avoids orchestration complexity of managing multiple containers for a development-time convenience layer.

Tradeoff: The image is larger than any individual contributor needs. Pre-built images and layer caching mitigate startup cost in practice.

Effect on docs: Section 2.1 Central Devcontainer describes how repositories consume this image.

DR-001-Strat β€” Consistent Stack Direction#

Problem: S-CORE consists of many independently-developed component repositories. Without a defined integration model, there is no canonical answer for β€œwhich combination of component versions is the validated S-CORE stack at any given moment.”

Decision: Establish a known_good integration manifest that identifies which component revisions belong together in one validated stack. This is the authoritative record of integration state, distinct from individual component releases.

Effect on docs: The known_good concept is described in Glossary: known_good. The integration model is implemented through reference_integration.

Full DR: DR-001-Strat

DR-002-Infra β€” Distributed-Monolith Integration Model#

Problem: With known_good established as the integration unit, the question is what the integration environment (reference_integration) should do: assemble the stack, validate it, and produce evidence β€” but with what ownership and scope?

Decision: Adopt a distributed-monolith integration model. Component repositories own their individual verification. reference_integration assembles the known_good manifest, runs cross-repository validation on it, and promotes it on success.

Effect on docs: The cross-repository CI orchestration flow is described in 7.3 Cross-Repository Integration. The CI promotion model is described in 7.3.4 Known-Good Promotion.

Full DR: DR-002-Infra

DR-008-Int β€” reference_integration Scope (Open)#

Status: Not yet decided.

Problem: Two options are under discussion for the scope of reference_integration:

  • Option 2 (stronger central ownership): reference_integration rebuilds and re-tests the full integrated stack for every known_good promotion. All cross-repository verification evidence is produced centrally.

  • Lighter scope: reference_integration assembles and promotes known_good but delegates more verification to individual component repositories. Some evidence stays per-module.

Effect on docs: Several sections in Chapter 3 and Chapter 7 note where their architecture description assumes Option 2 and where it would change under a lighter scope.

Full DR: DR-008-Int

known_good Architecture Note#

This section was formerly part of Chapter 3 Β§ 3.2.7 and moved here because it describes an architectural decision context, not a current build capability.

reference_integration introduced the idea of a known_good set: an explicit manifest of which component revisions belong together in one integrated S-CORE stack. The core content is a tuple of (component, commit) pairs plus metadata. This should not be described as just another Bazel lock file β€” it sits one level above that:

  • A lock file (MODULE.bazel.lock, uv.lock) captures the resolved dependency graph that a concrete Bazel workspace consumes.

  • A known_good manifest is the curated integration selection from which Bazel-facing inputs can be generated. It can also carry automation metadata such as timestamps, suite identity, and which branch should be followed for automated CI refreshes.

Regardless of whether the project eventually adopts Option 2 or a lighter reference_integration scope, known_good should be version-controlled, diffable, reproducible, and clearly distinct from generated Bazel lock data. The concrete file format matters less than that behavior.

Decision background: DR-001-Strat Β· DR-002-Infra Β· DR-008-Int