Agent
Agent configuration for Crow CI workers.
Minimum Configuration
Section titled “Minimum Configuration”| Variable | Description |
|---|---|
CROW_SERVER | Server gRPC address (no protocol prefix) |
CROW_AGENT_SECRET | Authentication token from server |
Parallel Workflows
Section titled “Parallel Workflows”By default, agents execute one workflow at a time. Increase based on available resources.
Workflow Filtering
Section titled “Workflow Filtering”Crow routes workflows to agents using two mechanisms:
| Method | Description |
|---|---|
| Labels | Filter by matching key-value pairs |
| Priority | Prefer agents with higher priority when multiple match |
Labels
Section titled “Labels”Agents have built-in labels:
| Label | Description |
|---|---|
backend | Execution backend (docker, kubernetes, local, podman) |
type | Agent type |
platform | OS/architecture |
agent | Agent identifier |
Add custom labels to route specific workflows:
Only agents with matching labels will process workflows with those labels.
Priority
Section titled “Priority”When multiple agents match, higher priority agents are preferred. Priority is managed server-side per agent in the web UI (agent settings) or via the API, and persists across agent and server restarts.
Agent Types
Section titled “Agent Types”Global Agents
Section titled “Global Agents”Admin-managed agents that process all workflows. Configure via environment variables on the agent.
Organization/User Agents
Section titled “Organization/User Agents”Non-admin users can register agents scoped to their org or user account.
Remote agent configuration:
Multi-Org Agents
Section titled “Multi-Org Agents”Process workflows from multiple specified organizations or repositories.
Multi-org labels appear highlighted in the agent list:

Agent Scope
Section titled “Agent Scope”Admins choose an agent’s scope in the Add agent dialog. Global (the default) lets the agent run pipelines for any organization. Specific organizations scopes the agent to one or more selected orgs.
Org admins can manage agents scoped to their organization from the org’s agent settings page. Deleting a multi-org agent there removes it from that organization only; it is fully deleted when that was its last remaining organization.
Backend Options
Section titled “Backend Options”Configure backend-specific settings at the agent level. See environment variables for all CROW_BACKEND_* options.
Local Backend Sandboxing
Section titled “Local Backend Sandboxing”Enable process isolation using macOS sandbox-exec:
| Level | Network | System Access | Use Case |
|---|---|---|---|
none | ✅ Full | ✅ Full | Trusted code only |
standard | ✅ Full | ⚠️ Limited | Most CI/CD workloads |
strict | ❌ Blocked | ❌ Minimal | Offline builds, maximum isolation |
Standard level details:
| Allows | Denies |
|---|---|
| Network access (npm, go get, pip) | Writing outside workflow dirs |
| System libraries and frameworks | Sensitive user dirs (Documents, Desktop) |
| Shell configs (.bashrc, .zshrc) | SSH private keys |
| Workflow temp directories |
none runs processes without isolation. Only use with fully trusted code.