System
Architecture #
Manual is designed as a local-first Rust workspace that can grow into a workflow control plane.
The current implementation is deliberately compact. It establishes a shared Rust foundation before adding persistence, runners, adapters, cost ledgers, or a web UI.
Current Workspace #
The repository contains these workspace members:
| Crate | Role Today | Intended Direction |
|---|---|---|
core | Shared workspace descriptor and domain foundation. | Own domain language, validation rules, workflow types, job types, and cost records. |
node | Workflow node identifiers, kinds, and contract metadata. | Define the typed graph node surface shared by import, validation, execution, and visualization. |
workflow | Workflow graph types that combine nodes with directed edges and validation. | Become the graph import/export and orchestration planning surface. |
workflow-registry | Workflow template registration, lookup, and file-backed storage. | Let jobs and orchestration layers resolve workflow references without coupling registry concerns into the workflow graph crate. |
cli | Thin command entrypoint with about and skill validation behavior. | Become the user and agent entrypoint for workflow, job, run, cost, artifact, sandbox, and serve commands. |
skill | Bundled skill template and delegation into the CLI validator. | Package Manual instructions so agents can create, validate, and run workflows through the CLI. |
agent | JSONL-oriented adapters for Codex and Claude Code. | Route workflow nodes into agent runtimes while keeping process handling uniform. |
agent-gui | Reusable native agent profile components. | Let app shells manage agent runtime metadata independently from process adapters. |
script | Rust source plus JSON input execution wrapper. | Run deterministic Rust snippets as workflow nodes while capturing stdout, stderr, and exit status. |
sandbox | Cross-platform sandbox policy model, backend detection, and execution plan compiler. | Enforce node boundaries with macOS Seatbelt, Linux bubblewrap/seccomp, and Windows restricted-token backends. |
sandbox-registry | Named sandbox definitions and lookup logic. | Let workflows and runners resolve sandbox references without coupling registry concerns into the sandbox runtime crate. |
runtime | Composes input, sandbox policy, and a script or agent target into an executed run. | Become the node execution layer used by jobs, cost capture, artifacts, and higher-level workflow orchestration. |
graph-viewer | Reusable native graph visualization primitives and a JSON graph viewer. | Provide the shared graph canvas for local workflow and run inspection surfaces. |
workflow-gui | Reusable workflow registry management components. | Let the app list, view, create, edit, delete, and graph workflow templates without coupling UI code into the workflow model. |
node-gui | Reusable egui node detail component. | Keep node inspection portable across native app shells and future localhost visualization surfaces. |
app | Native application shell that embeds reusable GUI components. | Become the local visualization or application surface, likely served by manual serve. |
Product Architecture #
The broader Manual architecture has these parts:
| Layer | Responsibility |
|---|---|
| Manual CLI | Local command surface for users and agents. |
| Workflow Graph | Repeatable work represented as nodes, edges, policies, and artifact contracts. |
| Job Runner | Turns a workflow into a tracked run with node execution state. |
| Runtime Orchestrator | Receives node input, selects a sandbox policy, and invokes the right executable target. |
| Runtime Adapters | Connect Codex, Claude Code, scripts, Python, and future agent runtimes. |
| Sandbox Runtime | Applies OS-native execution boundaries around nodes. |
| Cost Ledger | Records token usage, model prices, baseline cost, actual cost, and savings. |
| Artifact Store | Keeps reports, patches, logs, test output, and other run products. |
| Local Visualization | Shows workflow graphs, timelines, node details, costs, and artifacts at localhost. |
Boundaries #
Manual should keep these concerns separate:
- Shared workspace metadata belongs in
core. - Workflow node contracts belong in
node. - Workflow graph validation belongs in
workflow. - Workflow template lookup belongs in
workflow-registry. - CLI parsing belongs in
cli. - Skill packaging belongs in
skill. - Reusable visualization components belong in focused GUI crates such as
graph-viewer,workflow-gui, andnode-gui. - Application composition belongs in
appor a future server crate. - Runtime adapter code belongs in
agent. - Rust source execution belongs in
script. - Sandbox policy modeling and backend plan compilation belong in
sandbox. - Named sandbox lookup belongs in
sandbox-registry. - Input-to-execution orchestration belongs in
runtime. - Runtime adapter code should not leak into workflow validation.
- Sandbox policy modeling should be shared, while platform-specific execution remains behind backend modules.
That separation keeps the codebase easy to extend without turning the first CLI into a large mixed-purpose file.
Data Flow #
natural language request
-> Manual Skill
-> workflow graph spec
-> manual workflow import
-> manual job run
-> node execution through adapter
-> sandboxed process
-> artifact and cost records
-> manual serve visualizationThe current repository implements only the earliest part of this path. The docs describe the intended path so the next implementation steps stay coherent.
Design Principle #
Manual should prefer the smallest complete path over broad scaffolding. A thin workflow command that calls core validation is better than a large control plane that cannot execute one real workflow.