feat: durable providers integration proposal

[JackYPCOnline]

Description

Adds a new internal team doc covering the design and integration plan for durable execution support in the Strands SDK.

The doc covers:

• Why the current in-process agent loop breaks under production failure scenarios (mid-loop crash, Lambda 15-min ceiling)

• How teams can integrate today using Temporal and AWS Lambda Durable as a single coarse-grained step, including a working code example and the known limitations of each approach

• The three gaps in the current SDK that block native per-step checkpointing

• The proposed 2.0 solution: async hooks, AgentSpec, DurableBackend/ExecutionHandle ABCs, and a durable_backend parameter on Agent, with API sketches for each

Related Issues

Type of Change

• New content
• Content update/revision
• Structure/organization improvement
• Typo/formatting fix
• Bug fix
• Other (please describe):

Checklist

• I have read the CONTRIBUTING document
• My changes follow the project's documentation style
• I have tested the documentation locally using mkdocs serve
• Links in the documentation are valid and working

---

By submitting this pull request, I confirm that you can use, modify, copy, and redistribute this contribution, under the terms of your choice.

[pgrayy]

Nit: Duplicate line.

[pgrayy]

I personally like this because it forces us into thinking of the agent loop more as a state machine which it is.

[pgrayy]

And this stuff comes up a lot. That is why there are dedicated services like step functions and airflow. The one downside is these orchestrators can be heavy. Step functions is a whole dedicated service. Airflow can run in a single process but it is still not meant to be something that you import into an application and call like Strands.

With all that said, curious how process/memory heavy temporal is.

[JackYPCOnline]

Good call out .That's something I didn't check, but also kinda curious too. It is more like if we want to offer this option to customers instead of performance I guess.

[pgrayy]

Yep understandable.

[dbschmigelski]

see related comment https://github.com/strands-agents/docs/pull/584/changes#r2897275989

[zastrowm]

This means the tool definition and tool spec is accessible to both the workflow and the activity; e.g. they need the same set of tools

[JackYPCOnline]

Workflow is just the code entry point

[Unshure]

Can we just wrap the model provider as a Durable model provider?

from strands import Agent
from strands.models import BedrockModel, DurableWrapper

model = DurableWrapper(BedrockModel())
agent = Agent(model=model)

[JackYPCOnline]

Yess, this is exactly the same idea @zastrowm has

[zastrowm]

Worth noting that we still have the gap of needing to wrap/abstract tools in this case

(although.... maybe something new that let's model providers handle the tool calling?)

[ryanycoleman]

Surprising LDF does not support HIL. Is that coming?

[JackYPCOnline]

Actually the LDF has human-in-loop in different ways https://github.com/aws-samples/serverless-patterns/tree/main/lambda-durable-human-approval-sam

[zastrowm]

Yeah, was going to say something similar - this talks about a "pause"/waitForCallback which might be equivalent

https://dev.to/dobeerman/pause-your-lambda-building-a-slack-approval-workflow-with-aws-durable-functions-17jo

[ryanycoleman]

IOW the user of the 3P framework use that SDK (e.g. Temporal) as designed?

[JackYPCOnline]

yes, must use their SDK to ochestrate

[afarntrog]

The entire agent loop is one atomic Activity. If the process crashes after tool call 2 but before tool call 3, the whole activity retries.

Being that the entire agent retries, why would a customer want to use this as opposed to just using the regular Strands session manager?

[JackYPCOnline]

Yes, they can acheive this using strands graph directly, but it's more like what level will you handle retry & persistence

[zastrowm]

I think this might benefit for an Agent subclass here. Given how invasive it is, I wonder if just need to design the Agent a little more abstractly for durability when it's so invasive.

That might allow us to streamline some of the api, but then transitioning from normal Agent -> specific providers is not as slick

[dbschmigelski]

I admit that I may not be fully internalizing the flow in this document.

But, code smells usually indicate a problem with the underlying design. Here, what smells is that to use durability I need to use both TemporalDurability and a MyTemporalModelProvider.

What happens if I use MyTemporalModelProvider without TemporalDurability? Or what happens if I use TemporalDurability with a non temporal model provider?

[Unshure]

Yea, I agree with this. Ive seen a few similar comments too.

Calling back to @pgrayy design to split the agent runtime and agent state, if we turned the agent loop into a proper state machine, we could basically turn each state execution into a "durable" step to make replay a lot easier. That way side-effects are not re-computed, and we can more easily restart.

[JackYPCOnline]

In temporal, you need to instancitate a model object in Activities, where our model now is not json serializeable, if user want to pass configuration to models, they have to define their TemporalmodelProviders

[ryanycoleman]

Where this pattern gets tricky for me is when you have to layer on another SDK like AgentCore SDK, or whatever the users chosen runtime environment provides. The developer now has to navigate several layers of wrapping to achieve a working agent.

[JackYPCOnline]

This is durability at agent level, treating agent/multiagent execution as a atomic operation. Yes, I agree, this is meaningless.

[ryanycoleman]

My point is that they'll have to think about the AgentCore @entrypoint decorator /and/ how each durability solution works. I think for users of these frameworks that are highly motivated, that's fine.

I'm not sure the DX is good enough to attract someone who wants durability guarantees but hasn't gone deep in the SDKs.

[ryanycoleman]

This reads like a big limitation. What can we do about it?

[ryanycoleman]

Also is this specific to Temporal or also DAPR & LDF?

[ryanycoleman]

I'd encourage validation of your prototype in EKS and AgentCore runtime scenarios as well, in case there are any complications in the implementation or developer experience.

[pgrayy]

What happens if the whole process shuts down let's say during a model call? Will temporal allow us to pick up from here without the user having to prompt the agent again?

[pgrayy]

It has to replay the whole workflow? Or can it pick up from where it left off?

[JackYPCOnline]

it actually rerun the workflow, then return the cached value directly from each successful activities.

[dbschmigelski]

I think at a high level, and this is perfectly understandable, this feels like we are solving the problem that is immediately in front of us instead of taking step back to look at the bigger picture.

For me, a pre requisite for durability is a state machine implementation of the loop. I believe if we first solve that durability becomes a much smaller problem.

For example, if we have a state machine each step in that machine can be tied to the corresponding Hook. The hook can then represent the step that is about to be taken. Meaning suppose the BeforeModelCallHook looked like the following now

@dataclass
class BeforeModelCallEvent(HookEvent):
    invocation_state: dict[str, Any] = field(default_factory=dict)
    step: Step

if we allowed for mutation of the step then I think there is a world where durability is just a plugin that does the following

before_model_call_event.step = TemporalDurabiliy.wrap(step)

The overall gut feeling I have here, is this feature doesn't need to be quite as deep in the sdk as is proposed.

[lizradway]

plus one per state machine

[lizradway]

Do we see strands-aws as extending to hold other aws intergrations? If not, I think we should use more specific naming.