CodeCargo logo

Core Concepts

Operators & Settings

Cargo Operators

Cargo Operators are self-hosted execution agents that run CodeCargo workloads in your own infrastructure. They connect back to the CodeCargo platform and can execute workflows in isolated environments under your control.

Enabling Self-Hosted Operators

Navigate to Organization Settings → Operators to manage your cargo operators. Before creating an operator, you must enable the self-hosted feature using the toggle at the top of the page. Enabling or disabling self-hosted operators requires confirmation.

Creating an Operator

  1. Click Create Cargo Operator
  2. Provide a name for the operator
  3. Optionally set an initial token expiration date
  4. Click Create

After creation, you receive an access token and setup instructions for deploying the operator to your Kubernetes cluster.

Operator List

The operators table shows:

ColumnDescription
NameClickable link to the operator detail page
Access IDUnique identifier for the operator
StatusConnected (green) or Disconnected (gray)
Created AtWhen the operator was registered

Operator status is monitored in real time via NATS — the status badge updates automatically as operators connect and disconnect.

Operator Detail Page

Click an operator name to view its detail page.

Setup Instructions

If the operator is not yet connected, setup instructions are shown automatically. The instructions walk through three steps:

  1. Create Namespace & Secret — set up a Kubernetes namespace and store the access token as a secret
  2. Install Helm Chart — deploy the cargo operator using the CodeCargo Helm chart from the OCI registry
  3. Verify Connection — confirm the operator is connected using kubectl commands

Once connected, you can collapse the instructions and expand them again from the Setup Instructions button if needed.

Status Overview

A summary grid shows four key metrics:

  • Status — Connected or Disconnected
  • Access Tokens — number of tokens issued for this operator
  • Active Instances — number of currently connected operator instances
  • Created At — registration timestamp

Access Tokens & Instances

Each operator can have multiple access tokens. Tokens are grouped in the detail view, and each token shows:

  • Short ID — truncated token identifier
  • Status — Active (green), Expired (red), or Never Used (gray)
  • Expiration — expiration date, or "Never expires"
  • Instance count — how many operator instances are using this token

Expand a token to see its connected instances, each showing instance name, connection status, connected/disconnected timestamps, and when the token was last used.

Token Security

When you create a new access token, copy it immediately — it will not be displayed again. Store it securely as a Kubernetes secret or in your organization's secret manager.

You can add new tokens, edit expiration dates, and delete tokens (as long as at least one token remains) from the manage menu on each token.

Organization Settings

Navigate to Organization Settings from the sidebar to manage general organization configuration.

General Settings

  • Default Permissions for Project — set the default role (Admin, Viewer, or None) that new users receive when added to projects in this organization
  • Manage CodeCargo App — opens the GitHub App installation page to manage repository access
  • Resync Organization — triggers a full resync of users, teams, and repositories from GitHub

Agents Configuration

Agents in CodeCargo are reusable system prompts that organization administrators define and make available to all users in the GenAI Editor chat. When a user starts a chat session, they can select an agent to shape how the AI responds — for example, an agent tuned for Terraform migrations, security reviews, or CI/CD pipeline authoring. Each agent provides domain-specific instructions so the AI produces more relevant and consistent output for that use case.

The Agents page under organization settings lets you create and manage these agents. Each agent has:

  • Name — a human-readable identifier users see when selecting an agent in chat
  • Instructions — markdown-formatted prompt instructions that guide the AI's behavior when this agent is selected

You can create, edit, and delete agents. Instructions support full GitHub-Flavored Markdown with a write/preview toggle for editing.

CargoWall Configuration

The CargoWall settings page lets you enable or disable CargoWall for AI/LLM jobs and manage rules that control network egress from CodeCargo's AI agents.

Previous
CargoWall