Thank you for your interest in contributing to Defense Unicorns UDS Core! This document will guide you through the process of contributing code, documentation, or ideas. We welcome improvements and fixes from anyone and our goal is to ensure you have all the information you need to contribute effectively and in alignment with the project’s requirements.
We appreciate contributions in several forms:
- Report Issues or Bugs: If you encounter a problem, feel free to open a GitHub issue. Include details on your environment, how to reproduce the bug, and any relevant logs or screenshots. This helps us improve UDS Core’s stability.
- Suggest Enhancements: Have an idea for a new feature or an improvement? You can open an issue to propose it. For significant feature ideas, please start with an issue only to gather feedback before spending time on code. This ensures the idea aligns with our project goals and roadmap, which is primarily driven by internal needs (we’ll evaluate suggestions for alignment).
- Submit Code Changes (Pull Requests): You can contribute fixes, minor enhancements, or even new features via pull requests (PRs). We especially welcome contributions that fix bugs or improve performance/stability. If you plan to work on something, it’s a good idea to open an issue first to ensure you are aligned with the maintainers.
- Improve Documentation: Contributions to documentation (e.g. tutorials, configuration reference, even code comments) are valuable. If you find areas of the docs that can be clearer, you can submit changes. Follow the style rules and voice profile for writing conventions, and the templates in
.ai/docs/for page structure.
Please note that large-scale changes or new features might not be immediately incorporated if they don’t fit with our current focus. We’ll do our best to communicate politely and provide guidance on such contributions (e.g. suggesting a smaller scope or alternative approaches) – our intent is not to discourage ideas, but to keep the project stable and aligned with its vision.
Continuous Delivery is core to our development philosophy. Check out https://minimumcd.org for a good baseline on what that means.
Specifically:
- We practice trunk-based development (main) with short-lived feature branches that are merged and deleted after the merge.
- We don't merge code into main that isn't releasable.
- All changes are tested automatically before being merged into main.
- Continuous integration (CI) pipeline tests are the source of truth.
- We produce immutable release artifacts.
Before starting, ensure that you have the following installed:
- Git: Install Git
- K3d: Install K3d
- Node.js (for building and running Pepr): Install Node.js (we recommend Node 24 to align with what CI tests/builds with)
- UDS CLI (for running tasks and deploying): Install UDS
- Go (for pre-commit tooling): Install Go
- Helm (for development and testing): Install Helm
- Helm Unittest Plugin (for development and testing): Install Helm unittest
- uv is required for running linting tooling: Install uv.
Clone the UDS Core repository to your local machine using Git (if you don't have access to the defenseunicorns org you will want to fork this repository):
git clone https://github.com/defenseunicorns/uds-core.git
cd uds-coreThen make a branch for your changes:
git checkout -b my-feature-branchWe use pre-commit hooks to ensure code quality and consistency. These checks run automatically when you commit code and help catch issues early.
Setup Pre-Commit with Husky:
# Initialize husky hooks (only needed once after cloning)
npx huskyRequired Tools:
Our pre-commit and linting checks validate:
- YAML formatting using yamllint
- Spelling using codespell
- License headers using addlicense
- TypeScript formatting using Pepr's formatter (eslint)
- Helm charts using helm-unittest
The easiest way to install all required dependencies is:
# Install the helm-unittest plugin
helm plugin install https://github.com/helm-unittest/helm-unittest.git
# Run the lint-check task
uds run lint-checkTip
If your commit fails due to linting issues, you can generally fix them automatically with uds run lint-fix or uds run -f tasks/lint.yaml fix-license (for missing license headers).
Make the changes to add the new feature, bug fix, or other change necessary. Keep in mind any documentation or testing changes that are relevant while making code changes.
When you are ready to test locally you can run the same tests as CI using the below UDS commands:
# Lightweight validations
uds run test-uds-core
# Unit Tests
uds run test:unit-tests
# Full e2e tests (run in CI)
uds run test:uds-core-e2eEach of these tasks will create a local k3d cluster, install UDS Core, and run a series of tests against it, the same tests that are run in CI.
If you want to run a subset of core for faster iterations against a specific package, you can use the LAYER variable with the below task (example for metrics-server):
uds run test-single-layer --set LAYER=metrics-serverNote you can also specify the --set FLAVOR=<registry1/unicorn> flag to test using with either the Iron Bank or Unicorn sourced images instead of the upstream ones.
Depending on the scope and focus of your changes you may find other specific types of testing valuable. You can review available tasks to assist with local testing in tasks.yaml and the tasks/ folder. If you are unsure of the best way to test a given change, feel free to ask in the issue that you are working.
Each individual component of UDS Core contains lightweight validations in its own src/<component>/tasks.yaml file. These validations focus on the bare minimum functionality, typically covering pod health and endpoint accessibility.
Unit test files are placed next to the source code they are testing and are used for Pepr code (under src/pepr/). These tests should be designed to run without requiring a running cluster.
We also place end-to-end tests under the e2e folder. In particular we use Playwright for browser based testing and have authentication setup to login to applications with a shared SSO session. We also use Vitest for some lower level API and Kubernetes based testing.
In general our testing focuses on the unique configuration and setup provided by UDS Core, rather than exhaustive functionality testing. We take this approach since each of the opensource applications we package and configure also have extensive end-to-end testing in their upstream repositories.
We apply these principles to all User Stories and contributions:
- Automated continuous integration (CI) pipeline tests pass
- CI tests are updated to cover new system changes
- Changes are peer-reviewed
- Acceptance criteria is met
- Documentation is updated to reflect changes
- Create an Issue: For significant changes, please create an issue first, describing the problem or feature proposal. Trivial fixes do not require an issue.
- Ensure All Tests Pass: Run the full core install/test as described in the local testing section to verify your changes work as expected.
- Sign Your Commits: All commits must be signed. Learn about signing commits.
When opening a pull request make sure to follow the below guidelines to ensure there aren't delays in reviews of your contribution:
- Ensure that the title of the PR follows conventional commit syntax. Typically PRs will fall into the categories of
fix:(bug fixes),feat:(new features),chore:(dependency/other updates), ordocs:(documentation changes). - Update the PR description adding a summary of changes, linking related issues, and noting the type of change. If appropriate, also make sure to fill out the "Steps to Validate" section noting how you tested your change, as well as any test coverage you added.
- Ensure all CI checks pass, and make any necessary changes if they do not. See the note below if you are an external contributor (changes from a fork outside of the
defenseunicornsGitHub organization). - In general do not force-push updates to your PR branch. This will make it harder for reviewers to see what has changed since their last review. Also note that we do not strictly require branches to be up to date with
main, so only rebase your branch as necessary/when making other changes.
Note
When submitting a pull request (PR) from a forked repository, please note that our CI/CD processes may not run completely due to security restrictions. This is because certain secrets required for the full CI/CD pipeline are not accessible from forks.
If you notice CI/CD failures, it might be due to these limitations rather than issues with your code. Our maintainers will review your PR and, if necessary, check out your branch and push it to the main repository. This step allows the full CI/CD process to run with the required secrets, ensuring that all checks are performed.
Roadmap and Vision: The high-level roadmap of UDS Core is primarily driven by Defense Unicorns’ internal planning and needs. This means we may not be able to incorporate every feature suggestion, especially if it diverges from our core mission. However, we do value external feedback - even if a proposed change isn’t merged, your ideas could inspire future solutions. We aim to communicate our reasons respectfully if we decline a contribution. You can also check the GitHub issues to see what kinds of improvements and features are slated for upcoming releases.
License Notice: UDS Core is dual licensed under the GNU Affero General Public License v3.0 (AGPL-3.0) and the Defense Unicorns Commercial License (see LICENSING.md for details). By contributing to this project, you agree that your contributions will be released under the same license. If you’re not comfortable with that (for example, if your employer has restrictions), please consult the necessary parties before submitting code. We do not require a separate Contributor License Agreement (CLA) at this time; contributions are accepted under this license via the act of contributing.
Support and Contact: If you have questions about the contribution process or need guidance on something, you can open a GitHub issue. Because we’re not running a dedicated community forum or chat for UDS Core, the best way to get help is through the repository’s issue tracker. We’ll do our best to respond in a reasonable time. Remember that maintainers are likely juggling multiple responsibilities, so please be patient.