Skip to main content

Vertex AI Triage Backend

This page describes the planned Vertex AI / Gemini backend for the NoETL self-troubleshoot path. The first implementation step is a stub MCP backend that proves the pointer-swap contract end to end. It does not call Google Cloud; the real Vertex AI / Gemini integration is a follow-up.

Why Pointer-Swap, Not Branching

NoETL already treats MCP as a playbook-facing contract. The playbook-as-MCP work in noetl#405 made a playbook callable through standard JSON-RPC MCP methods, and the catalog-driven MCP architecture made MCP endpoints first-class catalog resources.

That means the troubleshoot agent should not branch on "Ollama versus Vertex" in Python or YAML. It should call an MCP backend through one contract:

diagnose_execution -> tool.kind=mcp -> mcp/<backend> -> chat completion

For local development, mcp/ollama points at the in-cluster Ollama bridge. For GKE or other cloud deployments, an operator can point the same workload at mcp/vertex-ai or mcp/gemini. Two deployments, one diagnose path.

MCP Backend Contract

Every compatible triage backend must implement standard JSON-RPC MCP over HTTP:

{"jsonrpc":"2.0","id":1,"method":"initialize","params":{}}
{"jsonrpc":"2.0","id":2,"method":"tools/list","params":{}}
{
  "jsonrpc": "2.0",
  "id": 3,
  "method": "tools/call",
  "params": {
    "name": "chat_completion",
    "arguments": {
      "model": "gemini-2.0-flash",
      "temperature": 0.1,
      "messages": [
        {"role": "user", "content": "{\"execution_id\":\"...\"}"}
      ],
      "system": "Return one JSON diagnosis object."
    }
  }
}

The backend may expose chat as a compatibility alias, but chat_completion is the portable name for new backends. The response must include a text content block whose text is a JSON object with the diagnosis fields consumed by diagnose_execution:

{
  "jsonrpc": "2.0",
  "id": 3,
  "result": {
    "content": [
      {
        "type": "text",
        "text": "{\"category\":\"unknown\",\"confidence\":0.5,\"root_cause\":\"...\",\"suggested_action\":\"...\",\"source\":\"vertex-stub\"}"
      }
    ],
    "isError": false,
    "_meta": {
      "backend": "vertex-ai-stub",
      "model": "gemini-2.0-flash",
      "usage": {
        "prompt_tokens": 1234,
        "completion_tokens": 256,
        "total_tokens": 1490
      }
    }
  }
}

The required diagnosis keys are:

  • category
  • confidence
  • root_cause
  • suggested_action
  • source

Backends may include user_message, model metadata, provider request ids, and token usage, but callers must not require provider-specific fields to parse a diagnosis.

Naming Convention

The old workload names were Ollama-specific:

  • workload.ollama_mcp_server
  • workload.ollama_model

The backend is now a triage concern, not an Ollama concern. The canonical names are:

  • workload.triage_mcp_server
  • workload.triage_model

The old names remain as deprecated aliases for one release cycle. The resolution order is:

  1. triage_mcp_server
  2. ollama_mcp_server
  3. default mcp/ollama

and:

  1. triage_model
  2. ollama_model
  3. default gemma3:4b

This preserves existing payloads while making new workloads read correctly when the backend is not Ollama.

Model Name Flow-Through

NoETL passes the selected model string through to the backend. The backend owns provider-specific validation and mapping.

Local tierCloud analogueUse
gemma3:4bgemini-2.0-flashDefault triage tier. Fast, low-cost, suitable for common failures.
gemma4:e4bgemini-2.0-flash-thinkingHigher-quality opt-in tier for deeper local or cloud reasoning.
qwen3:32bgemini-2.5-proEscalation tier for low-confidence diagnoses.

gemini-2.0-pro is also a valid operator choice where that SKU is the approved escalation model for a deployment. The NoETL diagnose path does not rewrite model names; operators pin the cloud model they want.

Credential Surface Unification

Each MCP backend playbook encapsulates its own credential pattern:

  • Vertex AI on GKE should prefer Workload Identity and the GKE metadata server.
  • The Gemini API can use an API-key credential when a direct API setup is chosen.
  • Future AWS Bedrock backends would use IAM roles or web identity.

The diagnose agent should never branch on provider credential details. It calls mcp/<backend> with model, messages, and temperature. The backend resolves credentials, calls the provider, and returns the same MCP envelope.

Discriminated Default Policy

Backend selection is explicit-only. NoETL should not auto-detect a GKE metadata server and silently switch from mcp/ollama to mcp/vertex-ai.

Environment-dependent defaults are difficult to debug because the same catalog entry behaves differently in local kind, GKE, CI, and an operator laptop. Operators declare the backend per deployment or per workload. The NoETL upstream default remains mcp/ollama and gemma3:4b.

Cost Telemetry Surface

Cloud-managed inference is metered, and the diagnose path runs on every agent failure. Every cloud MCP backend should return token usage under:

{
  "data": {
    "_meta": {
      "usage": {
        "prompt_tokens": 1234,
        "completion_tokens": 256,
        "total_tokens": 1490
      }
    }
  }
}

The MCP result should also carry the same usage object in result._meta.usage when the provider exposes it. The stub backend uses mock counts so downstream event projection, dashboards, and reports can be built before the cloud API call lands.

Streaming Policy

The diagnose path is non-streaming. Automated failure diagnosis needs a single deterministic response envelope with a parseable JSON body. Streaming is useful for chat-style interactions, but it adds ordering, retry, and partial-response ambiguity that is unnecessary for diagnose_execution.

Real Vertex AI / Gemini backends should call non-streaming generate or chat-completion APIs for this path.

Migration Path

An operator on a v2.35.9-style cluster can move gradually:

  1. Deploy and register the compatible MCP backend, such as mcp/vertex-ai.

  2. Keep the upstream catalog default as mcp/ollama.

  3. Run one workload with:

    {
      "triage_mcp_server": "mcp/vertex-ai",
      "triage_model": "gemini-2.0-flash",
      "escalate_to": "none"
    }

  4. Confirm diagnose_execution returns the five required diagnosis keys and provider usage metadata.

  5. Promote the backend at deployment level only after validation. That means an ops fork, Helm value, or environment-specific registration, not a NoETL upstream default change.

During the alias window, old payloads using ollama_mcp_server and ollama_model still work. New deployment docs should use the triage_* names.