cron workflows

[marccampbell]

Cron workflows

Goal

Elasticclaw should support workflows that run on a schedule. A scheduled workflow should be able to start an ephemeral claw, inject deterministic run context, let the claw perform a bounded task, and record the result.

This is for recurring work such as dependency updates, nightly audits, weekly reports, repository hygiene, release checks, and other maintenance tasks that should not require a person or an external scheduler to trigger each run.

Product shape

A user creates a workflow with a cron trigger:

name: dependency-updates

on:
  cron:
    schedule: "0 9 * * 1"
    timezone: "America/Chicago"

concurrency:
  group: dependency-updates
  policy: skip

timeout: 2h

steps:
  - uses: elasticclaw/dependency-updates
    with:
      ecosystems:
        - go
        - npm
      grouping: all
      include_major: false

  - run: make test

  - uses: elasticclaw/open-pr
    with:
      title: "Update dependencies"
      branch_prefix: "elasticclaw/dependency-updates"

The UI can present this as a scheduled workflow form:

• Workflow name
• Cron schedule, with a visual picker and raw cron expression
• Timezone
• Template or workflow definition
• Concurrency group and overlap policy
• Timeout
• Enabled/paused state
• Run now
• Recent runs and next run

Runtime behavior

When the schedule fires, Elasticclaw creates a new workflow run and provisions a claw for that run.

The claw receives generated context such as:

trigger:
  type: cron
  schedule: "0 9 * * 1"
  timezone: "America/Chicago"
  triggered_at: "2026-06-15T14:00:00Z"
  run_id: "dependency-updates-2026-06-15T14-00-00Z"

workflow:
  name: dependency-updates
  timeout: 2h

repository:
  owner: elasticclaw
  name: elasticclaw

The workflow run should appear in the dashboard with:

• Trigger type: cron
• Workflow name
• Current status
• Started at / finished at
• Claw link
• Logs and final summary
• Result: success, failed, skipped, timed out, or canceled

When the claw signals completion, the workflow run is marked complete and the claw can terminate. If the timeout is reached, the run is marked timed out and the claw is terminated.

Why workflows, not factories

Cron should be modeled as a workflow trigger, not as a new factory type.

Factories are useful for event-to-claw creation, but scheduled maintenance tasks need a stronger execution model:

• A run record with status, logs, summary, and history
• A workflow definition that can include reusable built-in steps
• A clean trigger model that supports cron now and other triggers later
• Consistent behavior for manual runs, retries, and scheduled runs
• A natural place for step-level configuration, such as dependency update policy

The trigger should answer "when does this run?" The workflow should answer "what happens when it runs?"

Dependency updates as a built-in workflow step

Dependency updates are the motivating first workflow, but they should not be hard-coded into cron.

Elasticclaw should provide a built-in dependency update step that can be used by a cron workflow, manually run workflow, or future event-triggered workflow.

The step should:

• Discover supported manifests, such as go.mod, package.json, lockfiles, Ruby, and Python manifests
• Identify available updates using ecosystem-native tooling where possible
• Classify updates as patch, minor, major, runtime, and security-related when that data is available
• Apply selected updates
• Produce structured output describing discovered manifests, candidate updates, applied updates, skipped updates, commands run, and files changed
• Let later workflow steps run tests, fix failures, and open a PR

Initial support can be narrow:

• Go modules
• npm / package-lock or pnpm/yarn if detected
• One PR per repo per scheduled run
• Skip major updates by default
• Require tests before opening a PR

Later support can add Ruby, Python, security-specific grouping, and more package managers.

PR grouping

The default should be one PR per repository per scheduled run for normal patch and minor updates.

That keeps the workflow quiet and useful. One PR per dependency creates too much noise for the common case.

The model should still support splitting updates when needed:

• Major updates can be separate
• Security updates can be separate
• Runtime version updates can be separate
• Failed grouped updates can be split by ecosystem or dependency to isolate the breaking change

Suggested grouping options:

grouping: all | ecosystem | dependency
separate_major: true
separate_security: true
separate_runtime: true

Default:

grouping: all
separate_major: true
separate_security: true
separate_runtime: true
include_major: false

Overlap and missed-run behavior

Cron workflows need explicit overlap behavior.

Suggested policies:

• skip: if a previous run is still active, skip the new run
• queue: enqueue the next run after the active run finishes
• parallel: allow overlapping runs

Default should be skip for scheduled maintenance workflows.

For missed runs while the hub was down, default to running only the latest missed occurrence, not every missed occurrence. This avoids accidental bursts after downtime.

Manual run and retry

Every cron workflow should have:

• Run now
• Retry failed run
• Pause / resume
• View next run
• View run history

Manual runs should use the same workflow definition and produce the same kind of run record. The trigger context should identify them as manual:

trigger:
  type: manual
  requested_by: "user"

Non-goals

• Do not build a full DAG engine in the first version
• Do not require users to configure external cron services
• Do not keep long-running claws alive between schedules
• Do not make dependency updates a special cron-only feature
• Do not fan out into many PRs by default

Open questions

• Should the first implementation store workflows as YAML, database records, or both?
• Should cron workflows be scoped to a repository, workspace, or organization?
• What is the exact completion signal from the claw: [DONE], explicit workflow-step result, or both?
• Should "latest missed run only" be configurable, or just the default behavior?
• How much of dependency update detection should be deterministic tooling versus agent reasoning in the first version?

First shippable version

Ship a small version that proves the model:

• Cron-triggered workflows
• Timezone-aware schedule
• Run now
• Pause / resume
• Run history
• Timeout
• Overlap policy with skip
• Context injection
• Dashboard status
• Built-in dependency update step for Go and npm
• One grouped PR per repository per run
• Major updates skipped by default
• Tests required before PR creation

[marccampbell]

Cron Factories: Time-Based Agent Scheduling

Who & what

Who: Platform engineers and team leads who want to automate recurring tasks—daily reports, weekly dependency updates, nightly test runs, or periodic data cleanup—without manually triggering claws each time.

What they're trying to do: Set up "set it and forget it" agent workflows that spawn automatically on a schedule, run a specific task, and terminate when done. Think cron jobs, but with the full power of an AI agent VM that can open PRs, interact with APIs, and send notifications.

Today

ElasticClaw factories currently react to external events—Linear issues moving to "Ready for Agent," GitHub issues being labeled, etc. There's no way to say "run this agent every Monday at 9am" or "run a nightly security audit at 2am."

Users who want scheduled agents must:

• Set up an external cron service (GitHub Actions, Kubernetes CronJob, etc.)
• Have that external service call elasticclaw create via CLI or API
• Manage credentials, error handling, and cleanup externally

This adds friction and external dependencies for a use case that feels native to ElasticClaw's "ephemeral agent VMs" model.

Proposed experience

The story:

Sarah runs a platform team. Every Monday morning, she wants a claw to scan all repos for outdated dependencies and open update PRs. She navigates to Settings → Factories, clicks "New factory," and selects "Cron" as the integration type.

Configuration UI:

Factory name:          weekly-dependency-updates
Integration type:      Cron

Schedule:
  ┌─────────────────────────────────────┐
  │  Every Monday at 9:00 AM UTC      │  ← visual picker + cron expression
  └─────────────────────────────────────┘
  [Custom cron expression: 0 9 * * 1]

Template:              dependency-updater
Tags:                  cron, dependencies
Color:                 blue
Concurrency group:     dependency-work  ← respects group limits like other factories

Timeout behavior:
  [✓] Auto-terminate after 2 hours if not done
  [ ] Allow manual extension

What happens:

1. At 9:00 AM UTC every Monday: The factory spawns a new claw using the dependency-updater template
2. CONTEXT.md injected: Contains metadata like cron_schedule: "0 9 * * 1", cron_run_id: "weekly-dependency-updates-2025-01-27", triggered_at: "2025-01-27T09:00:00Z" so the agent knows it's a scheduled run
3. The claw appears on the dashboard: With a badge "cron" and a clock icon, named something like weekly-deps-jan27
4. The agent runs its task: Uses the injected context to know what kind of run this is
5. On [DONE]: The claw terminates and the factory logs the successful run in its activity feed
6. If the claw hangs: Auto-terminated after the configured timeout; the factory logs a timeout event

The activity feed shows:

Monday 9:00 AM  → claw_created (weekly-deps-jan27)
Monday 9:45 AM  → done_signal received, claw_terminated
Monday 9:00 AM  → claw_created (weekly-deps-feb03)
Monday 9:52 AM  → done_signal received, claw_terminated

Edge cases handled:

• Overlapping runs: If a previous cron claw is still running when the next schedule hits, the factory respects the concurrency group (queue or skip based on policy)
• Manual trigger: A "Run now" button on the factory card lets Sarah test or force a run outside the schedule
• Pause/resume: Toggle the factory on/off without deleting the configuration
• Missed runs: If the hub was down during a scheduled time, the factory optionally catches up (configurable) or skips to next occurrence
• Timezone support: UI shows "9:00 AM America/New_York" but stores UTC internally; cron expression uses user's selected timezone

Why this, not that

Alternative 1: External cron + CLI

• Rejected: Requires users to manage credentials, external infrastructure, and error handling. The whole point of ElasticClaw is to reduce operational overhead.

Alternative 2: GitHub Actions scheduled workflows that call ElasticClaw API

• Rejected: Adds a dependency on GitHub Actions being available and properly configured. Many users run ElasticClaw precisely to escape GitHub Actions complexity.

Alternative 3: "Recurring claw" that stays alive and sleeps

• Rejected: Defeats the purpose of "ephemeral" VMs—users would pay for idle compute time, and long-running claws drift from their original state.

Alternative 4: Complex workflow engine with dependencies, retries, branching

• Rejected: Over-engineered for the 90% case. Cron factories should stay simple: schedule → spawn → run → terminate. Complex workflows can be built inside the claw using the agent's reasoning.

Out of scope

• Workflow DAGs: We're not building Airflow. One schedule = one claw. Chaining or fan-out happens inside the agent's logic.
• Retry policies with backoff: If a claw fails (no [DONE] signal), the run failed. Users can see this in the activity feed and manually retry if needed.
• Conditional scheduling: No "only if there are open PRs" or "skip on holidays" logic. The cron expression is the single source of truth.
• Multi-timezone per factory: One timezone per factory is sufficient; users can create multiple factories if they need regional schedules.

Success

We know this shipped well when:

• Users create cron factories for weekly/bi-weekly tasks and they run reliably for months without intervention
• The activity feed becomes a trusted audit log of scheduled runs
• Support requests about "how do I run something regularly" drop to zero
• Users report that scheduled agents "just feel like part of ElasticClaw" rather than a workaround

Open questions

1. Should we support "catch up" missed runs? If the hub was down for 2 hours and two schedule times were missed, do we spawn both, just the latest, or none? (Leaning toward "just the latest" as the default, with a config option.)

2. How should we display "next run" in the UI? A countdown timer? A simple "Next: Monday 9:00 AM" text? This affects how users build mental models of the schedule.

3. Should cron claws auto-terminate on [DONE] or wait for a timeout? Linear factories terminate on [DONE] because the issue moves to a new state. Cron claws might want to stay alive for post-run verification—should this be configurable per factory?

4. Do we need a "dry run" mode? A way to test the schedule ("pretend it's Monday 9am, show me what claw would spawn") without actually spawning. Useful for validating cron expressions and template combinations.

[marccampbell]

Agent stopped: Daytona bootstrap failed: could not download ElasticClaw connector after 6 attempts. Last error: exit 23: curl: (23) client returned ERROR on write of 1369 bytes

[marccampbell]

Agent stopped: killed manually via dashboard

[marccampbell]

Agent stopped: killed manually via dashboard