LIGHTCLOUD
ICE

What is next

Roadmap

Direction, not a ticket tracker. ICE is at v0.1.50 and Apache 2.0. Open an issue or PR to change anything here.

Editions

Community (this repo, single-user). Team (planned, self-hosted, multi-user). Cloud (planned, managed). Multi-user features ship in Team and Cloud.

ROADMAP.md on GitHub
AIProvidersBlocksObservabilitySecurityImport / Export / MigrationCollaboration and teamsTemplatesDeployFrontendDesktop

AI

  • Live telemetry context (AI Read L3): logs and metrics in the prompt
  • Multi-step tool use: plan, read, propose, validate
  • Full mutation surface: delete, rename, modify, group
  • Proactive suggestions: unused blocks, missing secrets, cost outliers
  • Per-provider prompt profiles
  • Validated OpenAI-compatible backends (Ollama, LM Studio, vLLM)

Providers

  • AWS and Azure deployer parity with GCP
  • Alibaba Cloud: design-only to deployable
  • Oracle Cloud Infrastructure
  • DigitalOcean: Droplets, App Platform, managed DBs, Spaces
  • Tencent Cloud
  • Kubernetes (any cluster): Helm and raw manifest outputs

Blocks

  • Networking primitives: VPC, firewall, DNS, load balancer
  • Managed K8s: GKE, EKS, AKS
  • CI/CD: registries and build services
  • Workflow orchestration: Step Functions, Cloud Workflows, Logic Apps
  • More data: Aurora, Azure SQL, Spanner, time-series
  • Auth and Analytics concepts
  • Info panel: "compiles to" with code snippets in 6 languages

Observability

  • Live logs in-canvas (Cloud Logging, CloudWatch, Azure Monitor)
  • Per-block metrics sparklines (rate, errors, latency)
  • Cost dashboards: projected vs actual, drift alerts
  • Alert configuration from the canvas
  • Real-time resource health polling

Security

  • Secret rotation UI, expiring-cert warnings, audit log
  • Pre-deploy checks: dependency vulns, IAM over-permission, region compliance (EU, HIPAA)
  • Supply chain: SBOM, notarised macOS, EV-signed Windows, provenance
  • Per-canvas secrets: reference without leaking plaintext
  • Electron safeStorage for desktop credentials

Import / Export / Migration

  • UI flow for existing GCP, AWS, Azure, Terraform, Pulumi importers
  • Docker Compose to canvas
  • Provider-to-provider migration plans
  • Export to Terraform HCL, Pulumi TS, AWS CDK, K8s manifests
  • Version migration: no canvas loss between releases

Collaboration and teams

  • Real-time canvas editing: presence, cursors, locking (CRDT/OT)
  • Comments and mentions
  • RBAC UI: editor / viewer / owner, sharing links, audit log
  • Team Edition: self-hosted multi-user, invites, OIDC SSO
  • Shared team and org template libraries

Templates

  • Missing patterns: serverless API, Jamstack, microservices, event-driven, batch, analytics
  • Quick-starts: single function, container+DB, worker+queue, static site
  • Per-env overrides in one template
  • Industry templates: e-commerce, mobile, IoT, media, multi-tenant SaaS

Deploy

  • CI/CD workflow templates (Cloud Run, Vercel)
  • Full AWS and Azure Apply parity

Frontend

  • Design system refresh: unified tokens, proportional sans-serif
  • Property help text rendering
  • Radix context menus: keyboard and a11y
  • Canvas search and export (SVG, PNG, PDF)

Desktop

  • Auto-update via electron-updater
  • Signed and notarised builds (.dmg, .exe/.msi, .AppImage/.deb)
  • IPC and credential-storage tests

Long tail

  • Marketplace: third-party blocks and templates
  • Policy as code: OPA / Rego hard gates
  • Project management: duplicate, archive, tags, filters
  • In-app learning: tutorial, contextual help, per-concept videos

Influence the roadmap

The list is hand-maintained. Items shift as priorities change.

Open an issueStart a discussion