This repo is the official implementation of "ChaosEater: Fully Automating Chaos Engineering with Large Language Models" (arXiv preprint). ChaosEater is an LLM-based system for FULLY automating the Chaos Engineering (CE) cycle in Kubernetes clusters. Systematically, the CE cycle consists of four phases: hypothesis, experiment, analysis, and improvement. ChaosEater pre-defines its general workflow (i.e., agentic workflow) according to the systematic CE cycle and assigns subdivided operations within the workflow into LLM agents. The operations assigned to LLM agents include several software engineering tasks, such as requirement definitions, test planning, and debugging. See the project page and the arXiv paper for technical details.
Warning
This system is an experimental implementation and is not for product environments.
In the following, we assume that Docker has been already installed on your machine.
FYI: Docker installation guide (official): https://docs.docker.com/engine/install/ubuntu/
We provide two options for building the ChaosEater app. The option A containerizes both K8s (kind) clusters and the ChaosEater app. This allows you to easily try out ChaosEater without modifying the host environment, but please use it only in a security-safe environment. In the option B, K8s (kind) clusters and the ChaosEater app's Docker container are built directly on the host.
Option A: kind-in-dind sandbox πRecomended for local usersπ
Here, we describe how to containerize both K8s (kind) clusters and the ChaosEater app. If you want to check the app's behavior while modifying the codebase, try the developement mode. See its document for more details.
β οΈ WARNING
This option uses privileged mode, so it should only be used on your local machine or a securely isolated cloud environment.
Clone this repository and move there.
git clone https://github.com/ntt-dkiku/chaos-eater.git && cd chaos-eater
docker build -f docker/Dockerfile_sandbox -t chaos-eater/kind-in-dind-sandbox:0.1 .
docker run --rm --name chaos-eater --privileged -d -p <port>:<port> -p 2333:2333 chaos-eater/kind-in-dind-sandbox:0.1
docker exec -it chaos-eater bash -c "
/usr/local/bin/entrypoint.sh -p <port> \
--openai-key <your-openai-api-key> \
--anthropic-key <your-anthropic-api-key> \
--google-key <your-gemini-api-key>"
Access localhost:<port> in your browser. Now, you can try the ChaosEater GUI in your browser!
If you are working on a remote server, don't forget to set up port forwarding, e.g., ssh <remote-server-name> -L <port>:localhost:<port>.
Option B: Standard kind cluster
Here, we describe how to build K8s (kind) clusters and the ChaosEater app's Docker container on the host.
Clone this repository and move there.
git clone https://github.com/ntt-dkiku/chaos-eater.git && cd chaos-eater
Install dependency tools in local using create_environment.sh. The installed tools include kubectl, kind, krew, kubectl-graph, skaffold. Note that tools that are already installed in local will be skipped.
./create_environment.sh
Create kind cluster using create_kind_cluster.sh. You may change the cluster name with the the -n,--name <your-favorite-name> option.
./create_kind_cluster.sh
Build a docker image for ChaosEater using Dockerfile_llm.
docker build -f docker/Dockerfile_llm -t chaos-eater/chaos-eater:1.0 .
Then, run the docker container in interactive mode.
docker run -it --rm \
-v .:/app/ \
-v ~/.kube/config:/root/.kube/config \
-v $(which kubectl):/usr/local/bin/kubectl \
-v $(which skaffold):/usr/local/bin/skaffold \
-v ~/.krew/bin/kubectl-graph:/root/.krew/bin/kubectl-graph \
-e PATH="/root/.krew/bin:$PATH" \
--name chaos-eater \
--network host \
chaos-eater/chaos-eater:1.0 bash
In the continer, set each API key (Anthropic, Gemini, and OpenAI are supported) and launch the streamlit app of ChaosEater. You may change the server port of the app with the --server.port <port> option.
export ANTHROPIC_API_KEY=<your anthropic api key>
export GOOGLE_API_KEYHow to use the GUI=<your gemini api key>
export OPENAI_API_KEY=<your openai api key>
streamlit run ChaosEater_demo.py --server.fileWatcherType none
Access localhost:<port> in your browser. Now, you can try the ChaosEater GUI in your browser!
If you are working on a remote server, don't forget to set up fort forwarding, e.g., ssh <remote-server> -L <port>:localhost:<port>.
The ChaosEater app provides a Graphical User Interface (GUI) like a chatbot.
At a minimum, all you need to do is upload the K8s system files via the file uploader.
Optionally, you can enter Chaos Engineering instructions in the chat box and control some parameters.
The details of the GUI controls are as follows.
(a) LLM setting
β οΈ WARNING
The current ChaosEater supports only GPT-4o (you can use Claude and Gemini, but they cannot complete CE cycles). We plan to add support for Claude and Gemini as soon as possible.
You may change the LLMs used by ChaosEater from the model dropdown button.
The currently supported LLMs are GPT-4o (openai/gpt-4o-2024-08-06, openai/gpt-4o-2024-05-13), Claude (claude-3-5-sonnet-20240620), Gemini (google/gemini-1.5-pro).
(b) Cluster setting
Currently available clusters are listed in the Cluster selection dropdown button.
You may change the working kind cluster here.
While the GUI browser is open, the selected cluster will be occupied, and other users will not see the same cluster in the dropdown button.
(c) Input examples
We prepare three types of input examples.
When you press each button, the content of the K8s manifests to be input and the instructions will be displayed in a dialog.
Click the Try this one button for the example you wanna try, and a CE cycle will start for that input example.
(d) Input box
You can try your custom system by inputting its data to the input box.
First, input a zipped folder to the file uploader box following the input format instruction below (this step is mandatory). If you don't have any instructions for the CE cycle, click the Submit w/o instructions button, and a CE cycle will start for that input system. If you do, write your instructions in the chat box and click the send icon βΆ / Enter. Then, a CE cycle that follows the instructions will start for that input system.
Input format
As input, ChaosEater currently supports only a zipped Skaffold project folder, which involves of a Skaffold configuration file and K8s manifests.
The Skaffold configuration file must be placed in the root directory of the folder.
The K8s manifests can be placed anywhere, but ensure that their relative paths are correctly specified in the manifests section of the Skaffold configuration file.
More specifically, please refer to our example folders: nginx, sock shop.
Case A: Ngnix
Nginx is a small-scale system that consists of two K8s manifests (i.e., two resources): pod.yaml and service.yaml. The former defines a Pod resource including a Nginx container, and the latter defines Service resource routing TCP traffic to the Pod. You can find the manifests at examples/nginx.
To verify whether ChaosEater can improve the system when there are resiliency issues, we intentionally configure the resource with a non-resilient setting; we set the Pod's restartPolicy to Never in pod.yaml. With this configuration, once the Pod goes down, it will never restart, resulting in extended service outages. we validate whether ChaosEater correctly identifies and addresses this resiliency issue through a reasonable CE cycle.
Given the Nginx, ChaosEater defined "The Pod should be running at least 90% of the time during the check period" as one of the steady states during the hypothesis phase. It then generated a failure scenario for a cyberattack, where the Pod would go down after a network delay. In the experiment phase, ChaosEater executed the chaos experiment to validate the steady states and successfully discovered that the Pod had not restarted after its failure.
In the analysis and improvement phases, ChaosEater analyzed the results and identified that the issue was caused by the restartPolicy being set to Never. It then replaced the Pod resource with a Depolyment resource with three replicas.
Finally, ChaosEater re-executed the chaos experiment on the reconfigured Nginx and confirmed that the hypothesis was satisfied. The cost and time for this CE cycle were approximately 0.21 USD and 11 minutes, respectively.
Case B: SockShop
SockShop is a practical and large-scale e-commerce system that consists of 29 manifests, which define the resources and databases for front-end pages, user information, order, payment, shipping, and so on. The number of replicas of all the Deployment resources is originally set to one. However, this setting could lead to downtime of the single replica when it goes down. You can find the manifests at examples/sock-shop-2.
To narrow down this original resiliency issue to a single point, we increase the replicas for Deployment resources other than front-end-dep.yaml to two, while keeping a single replica for front-end-dep.yaml. This RELATIVELY reduces the redundancy/resiliency of the front-end resource. We validate whether ChaosEater correctly identifies and addresses this resiliency issue through a reasonable CE cycle.
Given the SockShop with adjusted replica counts, ChaosEater defined "front-end resources are always in the Ready state" as one of the steady states during the hypothesis phase. It then generated a failure scenario for a Black Friday sale, where the front-end resource would go down after an increase in CPU usage of the carts-db resource due to excessive access. In the experiment phase, ChaosEater executed the chaos experiment to validate the steady states and successfully discovered the existence of downtime after the front-end resource failure.
In the analysis and improvement phases, ChaosEater analyzed the results and identified that the downtime was caused by the replica count of the front-end resource being set to 1. It then increased the replica count of the front-end resource to 2.
Finally, ChaosEater re-executed the chaos experiment on the reconfigured SockShop and confirmed that the hypothesis was satisfied. The cost and time for this CE cycle were approximately 0.84 USD and 25 minutes, respectively.
Case C: OnlineBoutique (WIP)
Comming soon!
Warning
Note that, due to the nature of the LLMs used, the generated datasets and evaluation results cannot be fully reproduced consistently, even when a seed value is set.
Generate a dataset of synthesis k8s manifests by running generate_datasets.py in the container.
python generate_datasets.py
Evaluate ChaosEater on the dataset. Run evaluate_quantitative_metrics.py and evaluate_quality_by_reviewer.py for quantitative and qualitative evalutions, respectively.
python evaluate_quantitative_metrics.py
python evaluate_quality_by_reviewer.py
Analyze the evaluation results on the Jupyter notebook analyze_evaluation_result.ipynb.
If you encounter bugs or have any questions, please post issues or discussions in this repo. New feature requests are also welcome.
Our code is licenced by NTT. Basically, the use of our code is limitted to research purposes. See LICENSE for details.
ChaosEater is built upon numerous excellect projects. Big thank you to the following projects! (A-Z):
- Anthropic API
- Chaos Mesh
- Gemini API
- Hugging Face + its community
- k6
- kind
- kubectl graph
- Kubernetes
- LangChain
- OpenAI API
- Skaffold
- Streamlit
- All other related projects
If you find this work useful, please cite our paper as follows:
@misc{dkiku2025chaoseater,
title={ChaosEater: Fully Automating Chaos Engineering with Large Language Models},
author={Daisuke Kikuta and Hiroki Ikeuchi and Kengo Tajiri and Yuusuke Nakano},
year={2025},
eprint={2501.11107},
archivePrefix={arXiv},
primaryClass={cs.SE},
url={https://arxiv.org/abs/2501.11107},
}