feat: add reference container images for waggle runtimes (#9)

Add minimal Alpine 3.21 OCI images for python, node, and shell runtimes
with the required GNU coreutils and findutils. Includes CI workflow for
multi-arch builds with cosign signing, Taskfile targets for local builds,
and README documentation for runtime image requirements.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

Author: JAORMX

.github/workflows/release-images.yml

@@ -0,0 +1,70 @@
+# SPDX-FileCopyrightText: Copyright 2025 Stacklok, Inc.
+# SPDX-License-Identifier: Apache-2.0
+
+name: Release Runtime Images
+
+on:
+  push:
+    tags:
+      - 'v*'
+
+permissions: {}
+
+jobs:
+  build-and-push:
+    name: Build ${{ matrix.image }} image
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      packages: write
+      id-token: write
+    strategy:
+      matrix:
+        image: [python, node, shell]
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6
+
+      - name: Set up QEMU
+        uses: docker/setup-qemu-action@29109295f81e9208d7d86ff1c6c12d2833863392 # v3
+
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@b5ca514318bd6ebac0fb2aedd5d36ec1b5c232a2 # v3
+
+      - name: Log in to GitHub Container Registry
+        uses: docker/login-action@5e57cd118135c172c3672efd75eb46360885c0ef # v3
+        with:
+          registry: ghcr.io
+          username: ${{ github.actor }}
+          password: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Extract tag version
+        id: tag
+        run: echo "VERSION=${GITHUB_REF#refs/tags/v}" >> $GITHUB_OUTPUT
+
+      - name: Set repository owner lowercase
+        id: repo_owner
+        env:
+          REPO_OWNER: ${{ github.repository_owner }}
+        run: echo "OWNER=$(echo "$REPO_OWNER" | tr '[:upper:]' '[:lower:]')" >> $GITHUB_OUTPUT
+
+      - name: Build and push image
+        uses: docker/build-push-action@14487ce63c7a62a4a324b0bfb37086795e31c6c1 # v6
+        with:
+          context: images/${{ matrix.image }}
+          platforms: linux/amd64,linux/arm64
+          push: true
+          tags: |
+            ghcr.io/${{ steps.repo_owner.outputs.OWNER }}/waggle/${{ matrix.image }}:${{ steps.tag.outputs.VERSION }}
+            ghcr.io/${{ steps.repo_owner.outputs.OWNER }}/waggle/${{ matrix.image }}:latest
+
+      - name: Install Cosign
+        uses: sigstore/cosign-installer@faadad0cce49287aee09b3a48701e75088a2c6ad # v4.0.0
+
+      - name: Sign images with Cosign
+        env:
+          IMAGE: ghcr.io/${{ steps.repo_owner.outputs.OWNER }}/waggle/${{ matrix.image }}
+          TAG_VERSION: ${{ steps.tag.outputs.VERSION }}
+        run: |
+          cosign sign -y "$IMAGE:$TAG_VERSION"
+          cosign sign -y "$IMAGE:latest"

README.md

@@ -111,9 +111,9 @@ cd waggle
 task build
 
 # Configure runtime images and run
-export WAGGLE_IMAGE_PYTHON=ghcr.io/stacklok/waggle-python:latest
-export WAGGLE_IMAGE_NODE=ghcr.io/stacklok/waggle-node:latest
-export WAGGLE_IMAGE_SHELL=alpine:latest
+export WAGGLE_IMAGE_PYTHON=ghcr.io/stacklok/waggle/python:latest
+export WAGGLE_IMAGE_NODE=ghcr.io/stacklok/waggle/node:latest
+export WAGGLE_IMAGE_SHELL=ghcr.io/stacklok/waggle/shell:latest
 task run
 ```
 
@@ -157,6 +157,33 @@ Each environment is a separate microVM with its own kernel — not a container s
 - Background reaper auto-destroys idle environments
 - No host filesystem exposed to environments
 
+## Runtime Images
+
+Waggle provides reference OCI images for each supported runtime. These are minimal Alpine containers with just the language runtime and required utilities.
+
+| Image | Contents |
+|-------|----------|
+| `ghcr.io/stacklok/waggle/python:latest` | Alpine 3.21 + Python 3, pip, coreutils, findutils |
+| `ghcr.io/stacklok/waggle/node:latest` | Alpine 3.21 + Node.js, npm, coreutils, findutils |
+| `ghcr.io/stacklok/waggle/shell:latest` | Alpine 3.21 + coreutils, findutils |
+
+Build all images locally:
+
+```bash
+task build-images          # Build all three runtime images
+task build-image-python    # Build only the Python image
+```
+
+### Custom Images
+
+You can use your own OCI images as long as they include:
+
+- The language runtime for the target environment (`python3`, `node`, etc.)
+- GNU coreutils (waggle's SSH executor requires `base64 -d`)
+- GNU findutils (waggle's file listing requires `find -printf`)
+
+No SSH server is needed — `waggle-init` is injected into the VM at boot time by propolis and handles all communication.
+
 ## Development
 
 ```bash

Taskfile.yaml

@@ -7,6 +7,9 @@ vars:
   BINARY_NAME: waggle
   BUILD_DIR: bin
   MAIN_PACKAGE: ./cmd/waggle
+  IMAGE_REGISTRY: ghcr.io/stacklok/waggle
+  IMAGE_TAG:
+    sh: git describe --tags --always --dirty 2>/dev/null || echo "dev"
   VERSION:
     sh: git describe --tags --always --dirty 2>/dev/null || echo "dev"
   COMMIT:
@@ -116,6 +119,39 @@ tasks:
       - rm -rf {{.BUILD_DIR}}/
       - rm -f coverage.out coverage.html
 
+  build-image-python:
+    desc: Build Python runtime image
+    cmds:
+      - docker build -t {{.IMAGE_REGISTRY}}/python:{{.IMAGE_TAG}} images/python/
+    sources:
+      - images/python/Dockerfile
+
+  build-image-node:
+    desc: Build Node.js runtime image
+    cmds:
+      - docker build -t {{.IMAGE_REGISTRY}}/node:{{.IMAGE_TAG}} images/node/
+    sources:
+      - images/node/Dockerfile
+
+  build-image-shell:
+    desc: Build shell runtime image
+    cmds:
+      - docker build -t {{.IMAGE_REGISTRY}}/shell:{{.IMAGE_TAG}} images/shell/
+    sources:
+      - images/shell/Dockerfile
+
+  build-images:
+    desc: Build all runtime images
+    deps: [build-image-python, build-image-node, build-image-shell]
+
+  push-images:
+    desc: Push all runtime images to registry
+    deps: [build-images]
+    cmds:
+      - docker push {{.IMAGE_REGISTRY}}/python:{{.IMAGE_TAG}}
+      - docker push {{.IMAGE_REGISTRY}}/node:{{.IMAGE_TAG}}
+      - docker push {{.IMAGE_REGISTRY}}/shell:{{.IMAGE_TAG}}
+
   run:
     desc: Build and run the server
     deps: [build]

images/node/Dockerfile

@@ -0,0 +1,6 @@
+# SPDX-FileCopyrightText: Copyright 2025 Stacklok, Inc.
+# SPDX-License-Identifier: Apache-2.0
+
+FROM alpine:3.21
+
+RUN apk add --no-cache nodejs npm coreutils findutils

images/python/Dockerfile

@@ -0,0 +1,6 @@
+# SPDX-FileCopyrightText: Copyright 2025 Stacklok, Inc.
+# SPDX-License-Identifier: Apache-2.0
+
+FROM alpine:3.21
+
+RUN apk add --no-cache python3 py3-pip coreutils findutils

images/shell/Dockerfile

@@ -0,0 +1,6 @@
+# SPDX-FileCopyrightText: Copyright 2025 Stacklok, Inc.
+# SPDX-License-Identifier: Apache-2.0
+
+FROM alpine:3.21
+
+RUN apk add --no-cache coreutils findutils