Skip to content

Provider Vocabulary

The vocabulary (manifest.yaml + optional types/*.yaml) tells mgtt's constraint engine what your technology looks like — what component types exist, what facts can be observed, what states are possible, how failures propagate — plus the provider's own operational metadata (identity, runtime needs, install methods, compatibility binding, variables).

For the authoritative schema of the three top-level manifest blocks (meta, runtime, install), see manifest.yaml reference. This page focuses on the vocabulary fields — types:, variables:, compatibility:, read_only / writes_note — that complement it.

On this page

Full schema

meta:
  name: my-provider
  version: 1.0.0
  description: One-line description of what this provider covers
  tags: [databases, cloud]
  requires:
    mgtt: ">=0.2.0"

runtime:
  needs: [kubectl, aws]
  network_mode: host
  # entrypoint:  optional; convention-default resolves to bin/mgtt-provider-my-provider

install:
  source:
    build: hooks/install.sh
    clean: hooks/uninstall.sh
  # image:
  #   repository: ghcr.io/my-org/mgtt-provider-my-provider

compatibility:
  backend: my-backend
  versions: ">=2.6.0 <2.7.0"
  tested_against:
    - "my-backend:2.6.0@sha256:abc…"
  notes: |
    Optional prose describing contract subtleties, response-shape changes
    across minor versions, etc.

# read_only defaults to true; omit when you're read-only. Set to false
# when the provider has side effects, and describe them in writes_note.
#
# read_only: false
# writes_note: |
#   The `drifted` fact runs `terraform plan` which refreshes state.

variables:
  namespace:
    description: target namespace
    required: false
    default: default

types:
  server:
    description: A server instance

    facts:
      connected:
        type: mgtt.bool
        ttl: 15s
        cost: low
        access: network read

      response_time:
        type: mgtt.float
        ttl: 30s
        cost: low

    healthy:
      - connected == true
      - response_time < 500

    states:
      live:
        when: "connected == true & response_time < 500"
        description: responding normally
      degraded:
        when: "connected == true & response_time >= 500"
        description: slow responses
      stopped:
        when: "connected == false"
        description: not responding

    default_active_state: live

    failure_modes:
      degraded:
        can_cause: [timeout, upstream_failure]
      stopped:
        can_cause: [upstream_failure, connection_refused]

Every top-level key above is optional except meta and install (which must declare at least one method). Vocabulary-only providers (no binary) still need install: — typically install.source.build pointing at a no-op or host-tool-check script. See Writing Providers.

Section reference

meta

Provider identity. See manifest.yaml reference for the full contract. Fields:

Field Required Description
name yes Lowercase, hyphen-separated, ^[a-z][a-z0-9-]*$. Unique across the ecosystem.
version yes Semver string.
description yes One-line description.
tags no Loose subject labels ([databases, tracing, iac, …]). Mirrored in the public registry for search.
requires.mgtt yes Minimum mgtt version (semver range, e.g. ">=0.2.0").

runtime

How the provider talks to its backend at probe time. See manifest.yaml reference for the full contract.

Field Description
needs Host-side capabilities (kubectl, aws, docker, terraform, gcloud, azure). List shorthand or map with version constraints.
backends Backend-service compatibility (e.g. quickwit, tempo). List shorthand or map with version ranges.
network_mode bridge (default) or host. Container network mode for image installs.
entrypoint Optional; convention-default resolves to $MGTT_PROVIDER_DIR/bin/mgtt-provider-<name> for source installs and the image's baked-in ENTRYPOINT for image installs.

See Provider Capabilities for what each needs: label expands to.

install

Declares which install methods the provider offers. See manifest.yaml reference.

install:
  source:
    build: hooks/install.sh           # required if install.source is declared
    clean: hooks/uninstall.sh         # recommended
  image:
    repository: ghcr.io/my-org/mgtt-provider-my-provider   # optional

At least one of install.source or install.image must be declared. See Writing install scripts for build: / clean: examples.

compatibility

Optional. Pins the provider to specific backend versions. Complements runtime.backends: with free-form context (tested digests, response-shape quirks).

compatibility:
  backend: tempo
  versions: ">=2.6.0 <2.7.0"
  tested_against:
    - "grafana/tempo:2.6.0@sha256:f55a8a…"
  notes: |
    Tempo 2.6 response shape:
      • Metrics: {"data":…} → {"series":…}
      • Percentile syntax: (p, duration) → (duration, p)
Field Description
backend Name of the backend system (e.g. tempo, quickwit, docker).
versions Semver range the provider supports.
tested_against SHA-pinned image refs the provider's integration tests run against.
notes Free-form markdown. Document response-shape quirks, missing features per version.

Omit for providers whose backend has a stable API across releases (e.g. the AWS API).

read_only and writes_note

Write posture. Both fields optional, at the top level of the manifest.

Field Default Description
read_only true true = pure reader. false = the provider writes something.
writes_note Prose describing the side effect. Required when read_only: false. Printed at install time.

Default read-only case — omit both fields:

meta: {}
runtime:
  needs: [aws]

Provider with side effects:

read_only: false
writes_note: |
  The `drifted` fact runs `terraform plan` which refreshes state — a
  write to the state backend. Other facts are pure reads. Bind a
  credential that cannot write to the state backend and omit the
  `drifted` fact for hard read-only.

Validation fails if read_only: false is declared without a writes_note. Install emits a WARN when non-default.

Document which env vars and config paths the provider reads in the provider's README, not here.

variables

Parameters the model author sets in meta.vars (model-side) or as vars: on a component. Substituted into probe commands as {variable_name}; passed to binary providers as --<name> <value> flags.

Field Required Description
description yes What this variable controls.
required no Whether the model must provide this variable. Default: false.
default no Default value when the model doesn't set one.

types

The component types your technology has. Each type declares facts, health conditions, states, and failure modes.

types.<name>.facts

Observable properties of this component type.

Field Required Description
type yes Stdlib type: mgtt.int, mgtt.float, mgtt.bool, mgtt.string, etc. See Type Catalog — stdlib.
ttl yes Staleness threshold (e.g., 30s, 5m). After this period, the fact is considered stale and re-probed.
cost no Probe cost: low, medium, high. Used by the engine to rank probes.
access no Human-readable description of required access (e.g., kubectl read-only).
probe no Inline probe definition. See below.

Inline probe definitions

For providers without a compiled binary, facts can define inline shell probes:

facts:
  ready_replicas:
    type: mgtt.int
    ttl: 30s
    probe:
      cmd: "kubectl -n {namespace} get deploy {name} -o jsonpath={.status.readyReplicas}"
      parse: int
      cost: low
      access: kubectl read-only
Field Description
cmd Shell command. {name} is the component name, {variable} for provider variables.
parse How to parse stdout: int, float, bool, string, exit_code, json:<path>, lines:<N>, regex:<pattern>.
cost low, medium, high.
access Human-readable access description.

A provider can be vocabulary-only (no binary) if all facts have inline probe.cmd definitions. This is the quick-start path for prototyping. Vocabulary-only providers cannot be installed via --image — there's no entrypoint for mgtt to invoke.

types.<name>.healthy

Conditions that must ALL hold for the component to be healthy. Uses mgtt's expression syntax:

healthy:
  - connected == true
  - response_time < 500

Operators: ==, !=, <, >, <=, >=. Compound: & (and), | (or).

types.<name>.states

Ordered list of possible states. Evaluated top-to-bottom — first match wins.

states:
  degraded:
    when: "ready_replicas < desired_replicas & restart_count > 5"
    description: crash-looping
  starting:
    when: "ready_replicas < desired_replicas"
    description: pods initialising
  live:
    when: "ready_replicas == desired_replicas"
    description: all replicas ready

State ordering matters

Put specific states before general ones. degraded (needs two conditions) must come before starting (needs one), otherwise starting matches first and degraded is unreachable. mgtt provider validate catches this.

types.<name>.default_active_state

The "normal" state. Components in this state are considered healthy by the engine.

types.<name>.failure_modes

For each non-healthy state, what downstream effects it can cause:

failure_modes:
  degraded:
    can_cause: [upstream_failure, timeout, connection_refused]
  stopped:
    can_cause: [upstream_failure, connection_refused]

Values from the standard failure mode vocabulary.

Validate your vocabulary

mgtt provider validate ./my-provider

Checks: YAML syntax, state ordering, fact types resolve against stdlib, failure_modes reference declared states, expressions parse correctly, every runtime.needs: entry is in the capability vocabulary, runtime.network_mode: value is one of bridge/host, install: declares at least one method, vocabulary-only providers don't declare runtime.needs:, meta.requires.mgtt is satisfied.

Next steps