惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

U
Unit 42
N
News and Events Feed by Topic
S
Schneier on Security
G
GRAHAM CLULEY
Scott Helme
Scott Helme
钛媒体:引领未来商业与生活新知
钛媒体:引领未来商业与生活新知
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
GbyAI
GbyAI
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
C
CERT Recently Published Vulnerability Notes
T
The Exploit Database - CXSecurity.com
C
Cisco Blogs
T
The Blog of Author Tim Ferriss
Cisco Talos Blog
Cisco Talos Blog
P
Privacy & Cybersecurity Law Blog
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
博客园 - 司徒正美
Blog — PlanetScale
Blog — PlanetScale
Project Zero
Project Zero
MyScale Blog
MyScale Blog
Recent Commits to openclaw:main
Recent Commits to openclaw:main
Apple Machine Learning Research
Apple Machine Learning Research
小众软件
小众软件
The Last Watchdog
The Last Watchdog
Vercel News
Vercel News
The Cloudflare Blog
C
Check Point Blog
Help Net Security
Help Net Security
Microsoft Security Blog
Microsoft Security Blog
AI
AI
Simon Willison's Weblog
Simon Willison's Weblog
云风的 BLOG
云风的 BLOG
M
MIT News - Artificial intelligence
Stack Overflow Blog
Stack Overflow Blog
腾讯CDC
NISL@THU
NISL@THU
S
Security @ Cisco Blogs
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
S
SegmentFault 最新的问题
MongoDB | Blog
MongoDB | Blog
C
CXSECURITY Database RSS Feed - CXSecurity.com
T
Threatpost
AWS News Blog
AWS News Blog
Cloudbric
Cloudbric
N
News and Events Feed by Topic
PCI Perspectives
PCI Perspectives
S
Securelist
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
V
Vulnerabilities – Threatpost
S
Secure Thoughts

Hacker News: Show HN

PurrrrrFocus: Pomodoro Timer App - App Store Workflow Engine — Multi-Step Orchestration for Bun RapidPhoto: Pro Photo Editor App - App Store GitHub - DheerG/swarms: Achieve extraordinary results with claude code across a variety of tasks SPICE simulation → oscilloscope → verification with Claude Code — Lucas Gerads Show HN: VCoding – A 5 MB native Windows IDE with no dynamic dependencies Show HN: LLMs don't hallucinate because they're bad at math, it's the format GitHub - Agent-FM/agentfm-core: AgentFM is a peer-to-peer network that turns everyday computers into a decentralized AI supercomputer. AgentFM lets you run massive AI workloads directly across a global mesh of idle CPUs and GPUs. Show HN: Tracking Top US Science Olympiad Alumni over Last 25 Years GitHub - Potarix/agent-hub: One place to talk to all your agents Show HN: Runtime security for AI agents(injection,tool abuse, data exfiltration) GitHub - dubeyKartikay/lazyspotify: Terminal Spotify client for macOS and Linux GitHub - the-banana-tool/king-louie: Easy to use GUI Personal AI Assistant. Win/Linux/Mac. Show HN I made my vacation rental bookable by AI agents–no Airbnb, 0% commission GitHub - basteez/jsf-autoreload: maven plugin to enable hot reload on jsf projects uvm32/hosts/host-gdbstub at main · ringtailsoftware/uvm32 GitHub - labsai/EDDI: Config-driven engine that turns JSON into production-grade AI agents. Multi-agent orchestration, 12+ LLM providers, MCP/A2A protocols, RAG, persistent memory, and enterprise compliance (EU AI Act, GDPR, HIPAA). Built on Quarkus. GitHub - glitchnsec/fortyone-oss: AI Executive Assistant Platform Quickstart | Alien GitHub - muxshed/shed: One stream in, or many. Every destination, simultaneously. No cloud middleman, no per-channel fees, no limits. GitHub - ocrbase-hq/ocrbase: 📄 PDF/IMG ->.MD/JSON Document OCR API for PaddleOCR and GLMOCR. Self-hostable. GitHub - impactjo/home-memory: MCP server that lets your AI assistant remember everything about your home. GitHub - Sets88/dbcls: DbCls is a powerful terminal database client that supports various databases GitHub - neptun2000/heor-agent-mcp GitHub - SeanFDZ/macmind: Single-layer transformer in HyperTalk for the classic Macintosh RollQuation: Math Puzzles - Apps on Google Play GitHub - dropbox/witchcraft Show HN: Agent-cache – Multi-tier LLM/tool/session caching for Valkey and Redis GitHub - opentalon/opentalon: OpenTalon is an open-source platform built from the ground up in Go as a robust alternative to OpenClaw LinkedIn™ 职位抓取工具 - Chrome 应用商店 GitHub - EdoardoBambini/Agent-Armor-Iaga: AI agents are getting tool access — shell, file system, databases, APIs, secrets. But **nobody is governing what they actually do with it**. Frameworks like LangChain, CrewAI, AutoGen, and Claude Code give agents the power to execute. Agent Armor gives you the power to control, audit, and approve every single action before it happens. HN Vibes — Week 15, Apr 7–13 2026 GitHub - chojs23/ec: Easy terminal-native 3-way git mergetool vim-like workflow GitHub - SethPyle376/hiraeth: Local AWS emulator focused on fast integration testing, with SQS support, SQLite-backed state, and a debug-friendly web UI. GitHub - JakOb-dotcom/cloud-sandbox-security-analysis: Technical analysis and Proof of Concept (PoC) regarding environment variable exfiltration in containerized cloud sandboxes via side-channel data leaks. Springboards - Flint Alpha Show HN: A simpler coding agent harness GitHub - audiodude/sudomake-friends GitHub - 256thFission/mini-mythos: OSS clone of Anthropic’s Mythos harness to locate C/C++ memory vulnerabilities Show HN: OpenParallax: OS-level privilege separation for AI agent execution Hacker News Sorted - Chrome 应用商店 Show HN: How to Install Docker on Ubuntu 24.04 LTS: Complete 2026 Guide GitHub - himanshudongre/smriti GitHub - sverrirsig/claude-control: macOS desktop dashboard for monitoring and managing multiple Claude Code sessions GitHub - ory/dockertest: Write better integration tests! Dockertest helps you boot up ephermal docker images for your Go tests with minimal work. Chiral - Chrome 应用商店 Show HN: Two Claudes collaborating through shared memory on a $100 mini-PC GitHub - pmichaillat/latex-cv: Minimalist LaTeX template for academic CVs GitHub - oguzbilgic/posse: A web UI for Anthropic Managed Agents. GitHub - sshiraz/depsly: Dependency risk analysis tool for npm packages ABI Add safari/agent-harness — Safari browser automation via safari-mcp by achiya-automation · Pull Request #212 · HKUDS/CLI-Anything GitHub - Halfblood-Prince/trustcheck: Verify PyPI package attestations and improve Python supply-chain security GitHub - oguzbilgic/kern-ai: Agents that do the work and show it. GitHub - bruits/satteri: High-performance Markdown and MDX processing for the JavaScript ecosystem GitHub - tylergibbs1/feedstock: High-performance web crawler and scraper for TypeScript, powered by Bun and Playwright GitHub - Grimm67123/grimmbot: The self-improving sandboxed and open-source AI agent. With persistent memory and scheduling. GitHub - whitevanillaskies/whitebloom: Local whiteboard that blooms. GitHub - hwdsl2/docker-whisper: Docker image for a self-hosted Whisper speech-to-text server with speaker diarization and OpenAI-compatible transcription and translation APIs. Powered by faster-whisper. Supports all Whisper models, NVIDIA GPU (CUDA) acceleration, JSON/SRT/VTT output, SSE streaming, offline mode, and multi-arch (amd64, arm64). GitHub - yisding/reviewwiggum GitHub - MarwanAlsoltany/serrors: Structured errors for Go: sentinel hierarchies, typed data, custom formatting, and slog integration. GitHub - soatok/age-php GitHub - Luthiraa/markitme GitHub - stagas/rtdiff: realtime git diff gui and AI-assisted commits GitHub - tombedor/excalicharts GitHub - wh1le/excalidraw-edit: Open and edit .excalidraw files from the terminal. Offline, auto-saves to disk. MalExt Sentry - Malicious Extension Scanner - Chrome 应用商店 GitHub - syi0808/asciianimesvg: Generate animated ASCII art SVGs from text. CLI, Rust library, WASM, and web editor. GitHub - zaina-ml/ml_forge: A visual-based graph node editor for training computer vision models. GitHub - anakin87/llm-rl-environments-lil-course: 🌱 A little course on Reinforcement Learning Environments for evaluating and training Language Models GitHub - takaakit/superpowers-uml: Superpowers-UML modifies Superpowers to ensure a software development workflow in which AI agents design through UML modeling. AdriByte Studio - Sviluppo Web e Soluzioni Digitali GitHub - chouligi/angel-copilot: Your personalized Angel Investment Advisor Show HN: MoodSense AI (ML and FastAPI and Gradio, Deployed on Hugging Face) Moodsense Ai - a Hugging Face Space by aman179102 GitHub - agenteractai/lodmem: Level Of Detail Context Management for Agents GitHub - ostefani/subnetlens: A fast, concurrent network scanner with a TUI and plain-text CLI, built in Go. It discovers live hosts on your network, scans their open ports, resolves hostnames, and fingerprints operating systems—delivered. Cyber Pulse: Agentic Intel - Apps on Google Play Whisper API: Self-Hostable Speech to Text Transcription The Agent-Web Protocol Stack: A Research Thesis GitHub - msmarkgu/RelayFreeLLM: A restful API designed to route user prompts to various AI model providers. Show HN: Provepy – A Python decorator that proves your code using Lean and LLMs Show HN: Pardonned.com – A searchable database of US Pardons GitHub - patrickdappollonio/dux: Dux is a terminal UI that lets you run multiple AI coding agents side by side, each in its own git worktree, with full companion terminals, macros, commit generation, and a command palette that knows more tricks than you do. kMC Crystal Simulator Show HN: HyperFlow – A self-improving agent framework built on LangGraph GitHub - stef41/vibescore: 🎵 Grade your vibe-coded project. One command, instant letter grade across security, quality, dependencies, and testing. GitHub - stef41/lmscan: 🔍 Detect AI-generated text and fingerprint which LLM wrote it. Open-source GPTZero alternative. Zero dependencies, works offline. imgur.com GitHub - visionscaper/collabmem: Enabling long-term collaboration with Agentic AI - building up episodic and world model memory over time with in-context awareness 在 Steam 上购买 FriedrichAI: Offline AI 立省 10% GitHub - atripati/ark: AI Runtime Kernel — a context operating system for AI agents. Eliminates tool bloat, loads only what’s needed, and gives LLMs their reasoning space back. GitHub - nowork-studio/toprank: Open-source Claude Code skills for SEO, SEM, Google Ads GitHub - tacomanator/sash: Lightweight macOS menu bar app for reliably cycling through windows of the current application. Appents | Social Media Management for Product-First Teams GitHub - pnhoang/youtube-spam-blocker: Automatically detects and hides spam messages in YouTube Live chat. Set rate limits, keyword filters, and block repeat offenders. GitHub - decisionnode/DecisionNode: CLI + Local MCP - A shared structured memory store across Claude Code, Cursor, Windsurf, Antigravity, and every MCP client. Semantically queryable. GitHub - AvaCodeSolutions/django-email-learning: An open source Django app for creating email-based learning platforms with IMAP integration and React frontend components. The $100K Gap in Kubernetes Security Tooling Function Calling Harness: From 6.75% to 100%
GitHub - m24927605/ait: AI coding agents should work in attempts, not your working tree
m24927605 · 2026-05-20 · via Hacker News: Show HN

ait scripted local session room: Claude Code, Codex, and Aider participants receive routed input, hand off context, and record a replay

Scripted local session-room capture · real AIT routing, PTYs, context refs, and replay

Why ait exists

Single-agent AI coding tools — Claude Code, Cursor, Aider — are fast but lock you to one model's view of the codebase. If that model misses something, nothing catches it before the code hits your tree.

ait runs multiple agents as a team. One investigates, another implements, a third reviews — and the review gate can block the apply if it finds a critical issue. Cross-agent context is handed off via AIT_CONTEXT_FILE, not re-pasted. Everything runs locally; your prompts, diffs, and provenance never leave your machine.

It wraps the agent CLIs you already use. MIT, Python 3.14+, zero runtime dependencies, no SaaS, no telemetry.

Read the manifesto: Multi-agent AI coding belongs on your laptop

Install and try

pipx install ait-vcs            # or: npm install -g ait-vcs
cd your-repo
ait init                        # one-time per repo
direnv allow                    # only if prompted
claude ...                      # or codex / aider / gemini / cursor — ait wraps them
ait status                      # see what ran
ait apply latest                # apply when you are ready

The package is ait-vcs on PyPI and npm. The installed command is ait.

AIT Work Graph showing attempts, evidence, memory, hot files, and query filters

Static HTML from ait graph --html: attempts, evidence, memory, hot files, and query filters in one local report.

Key Capabilities

Capability What it means
Git-native attempt ledger Each agent run becomes a queryable attempt linked to intent, prompt, context, output, files, commits, memory, and review evidence.
Live federated memory Claude Code, Codex, Aider, Gemini, Cursor, and shell agents can read the same live repo memory: AIT-owned history plus current CLAUDE.md, AGENTS.md, .claude/, .codex/, and Cursor rules.
Long-term repo memory Useful attempts, commits, notes, accepted facts, prior findings, and explicit adopted memory can survive across terminals, sessions, and weeks.
Agent-to-agent communication One agent can record an investigation, decision, failed path, or review finding, and another agent can receive that context later through AIT_CONTEXT_FILE rather than hidden chat state.
Adversarial review A separate reviewer agent can challenge an attempt; high-risk findings can be recorded and used to hold apply.
Attempt-first workflow AIT wraps the agent CLIs you already use and turns each run into an isolated attempt before anything touches your root checkout.
Attempt provenance Prompt, intent, adapter, output, changed files, commits, trace references, status, and outcome stay linked in one attempt record.
Worktree isolation Every run gets an internal isolated Git worktree, so failed or risky attempts do not pollute your current workspace.
Parallel agent attempts Multiple agents can try different approaches at the same time without racing inside the same checkout.
Explicit apply/recover flow Agent output remains a proposal until you apply it; held or failed work remains recoverable instead of becoming working-copy debris.
Wrapper bypass detection ait status <adapter> shows whether this shell will enter AIT or silently call the real agent binary.
Local-first metadata AIT metadata lives under .ait/ next to .git/; no SaaS dashboard, no telemetry, no required code upload.
Queryable history Attempts, intents, files, agents, statuses, review results, and old prompts can be found with AIT commands instead of shell history.

Problems ait Solves

Problem with agent coding today What ait adds Runnable example
A bad prompt rewrites half your repo before you notice Each run lands in an isolated Git worktree — your root checkout never moves 01-blast-radius
The diff has no useful provenance — which prompt produced it? Attempts link intent, command output, files, and commits in one record 02-provenance
Failed or partial runs leave your working copy half-broken Bad attempts stay recoverable; ait recover latest shows what AIT kept 03-failed-run-isolation
The next agent repeats investigation you already paid tokens for Shared repo-local memory feeds prior attempts, commits, notes, and accepted facts to the next run 04-memory-reuse
Two agents on the same task stomp each other Each attempt has its own worktree — run N agents in parallel 05-parallel-agents
Did the agent really fix it, or just claim it did? Explicit ait apply latest keeps speculative changes out of main until you decide 06-explicit-promotion
Cross-agent hand-offs lose every previous decision Live repo memory combines current agent memory files with prior attempts, notes, and accepted decisions 07-cross-agent-handoff
Provenance tooling wants to ship your code to a SaaS Metadata stays in .ait/ next to .git/ — harness daemon is local-only (Unix socket, no network), no telemetry 08-local-only-provenance
The same agent that wrote the code rubber-stamps its own work Run adversarial review with another reviewer agent; high-risk findings can block apply 09-verification-evidence, 09-1-codex-reviewer
"Where's that prompt I wrote last month?" -> grep shell history Query attempts, intents, and commits with a structured DSL 10-prompt-search

ait is not another agent. It is the local attempt workflow around the agents you already trust.

Core Concept

AIT does not replace Claude Code, Codex, or any other coding agent. It gives them an attempt-first workflow. Every agent run becomes an attempt with its own isolated worktree, provenance, queryable metadata, and explicit apply/recover flow.

That keeps AI-generated changes in a reviewable proposal state. You can compare attempts from different agents, inspect what each changed, keep failed runs for recovery, and decide which result should land in your checkout.

Memory in AIT is attempt-derived, evidence-backed repo memory, not a hidden chat-window transcript. It is not an external vector database product, not a CLAUDE.md generator, and not a bag of unreviewed prompt snippets. AIT recalls policy-allowed context from prior attempts, commits, notes, accepted facts, and review findings, then federates that AIT-owned memory with live external sources such as CLAUDE.md, AGENTS.md, .claude/memory.md, .codex/memory.md, and .cursor/rules at recall/run/review time. Those files remain their own source of truth; AIT does not auto-import them.

Agent-to-agent communication

AIT gives agents a shared, local handoff channel that is tied to Git state:

  1. A wrapped agent run creates an attempt with prompt, output, changed files, commits, status, and memory candidates.
  2. Useful facts, decisions, failures, and review findings stay queryable under .ait/ or in live repo memory files.
  3. The next wrapped run receives AIT_CONTEXT_FILE, a compact handoff assembled from policy-allowed prior attempts, accepted facts, notes, commits, and live agent memory files.

That makes communication asynchronous and inspectable. Claude can investigate, Codex can implement, Aider can patch, Cursor can follow repo rules, and a reviewer agent can challenge the result without depending on one model's private chat history.

What It Feels Like

Initialize once:

ait init
direnv allow   # only if prompted

Confirm the current shell is actually routed through AIT:

ait status claude-code
ait status codex
ait status --all

Bypass detection: wrapped means the agent command resolves to the repo-local AIT wrapper. Bypass detection: bypass_risk means this shell would call the real agent binary directly, so AIT would not capture prompt, attempt, or failure evidence. Re-run shell activation, direnv allow, or ait repair, then check status again.

Then keep using your agent:

claude ...
codex ...
aider ...
gemini ...
cursor ...

After a successful wrapped run, inspect the result:

ait status
ait recover latest --debug   # optional low-level details

Apply only when you are ready:

ait apply latest

Until apply, your root checkout stays unchanged. If apply is unsafe because your local edits overlap with the result, AIT holds the result for recovery instead of stashing or overwriting your work.

Inspect cleanup candidates before reclaiming old internal workspaces:

ait cleanup
ait cleanup --apply

ait cleanup defaults to a dry run. Apply mode removes safe terminal workspaces such as applied or discarded attempts while retaining active, pending, and reviewable attempts by default.

Core Features

Feature Description
Worktree isolation Agent edits happen away from your root checkout; worktrees are an internal detail
Attempt provenance Commands, status, output, changed files, and commits stay linked
Agent wrappers Repo-local claude, codex, aider, gemini, and cursor wrappers
Auto commit capture Successful changes become attempt-linked commits, without duplicating existing commits
Cleanup dry-run Inspect and reclaim safe terminal attempt workspaces without touching reviewable work
Shared memory Claude Code, Codex, and other agents can reuse the same live repo-local context
Long-term memory Prior attempts, commits, notes, accepted facts, findings, and explicit adopted memory survive across sessions
Adversarial review Ask a separate reviewer agent to challenge an attempt and persist blocking findings
Review flow Apply, recover, inspect, and query attempts without managing worktrees by hand

Quick Examples

Set explicit intent and commit text:

AIT_INTENT="Update README" \
AIT_COMMIT_MESSAGE="update README with Claude" \
claude -p --permission-mode bypassPermissions \
  "Shorten the README and improve the quickstart"

Wrap a command directly:

ait run --adapter claude-code --intent "Refactor query parser" -- claude
ait run --adapter codex --intent "Implement parser edge cases" -- codex
ait run --adapter aider --intent "Fix auth expiry" -- aider src/auth.py
ait run --adapter shell --intent "Regenerate fixtures" -- \
  python scripts/regenerate_fixtures.py

Use repo-local memory:

ait memory
ait memory sources
ait memory search "auth adapter"
ait memory recall "billing retry"
ait memory backfill --dry-run
ait memory backfill --import

ait memory sources and default ait memory recall are zero-touch reads: they do not create .ait/, do not mutate source files, and read current repo-local agent memory live. ait memory backfill --dry-run is also zero-write preview. Use backfill --import only as an explicit mutation when you want AIT to add advisory memory under .ait/; it is not required for live recall. Global or out-of-repo memory requires an explicit --global --path ....

Run adversarial review before apply:

ait review attempt latest-reviewable \
  --mode adversarial \
  --review-adapter claude-code \
  --review-budget standard

ait review finding list --severity high --format text
ait review report --attempt latest --format json
ait apply latest --mode current

Repair local setup if wrappers drift:

ait repair
ait repair codex

Integrations

ait ships first-class adapters for the agents most teams already run. Each adapter wraps the upstream CLI, isolates its work in a Git worktree, and records the attempt locally in .ait/.

ait init detects every supported agent CLI on $PATH and wires it up automatically — wrappers under .ait/bin/, hooks merged into the relevant .claude/, .codex/, .gemini/ config. The per-adapter sections below assume you already ran ait init. To re-run setup explicitly (e.g. after upgrading an agent), use ait adapter setup <name>.

Run Claude Code safely

claude -p --permission-mode bypassPermissions "Refactor the auth module"

ait captures the prompt, edited files, status, and resulting commits as one attempt. Apply it with ait apply latest once you are happy with the result, or use ait run --apply auto ... when you want safe results applied immediately.

Run Codex CLI safely on a real repository

ait run --adapter codex --intent "Implement parser edge cases" -- codex

Each Codex session edits in isolation. Failed attempts are kept for recovery; only applied attempts touch your root checkout.

Run Aider in isolation

ait run --adapter aider --intent "Fix auth expiry" -- aider src/auth.py

Aider's commits are captured as attempt results, with full provenance linking the prompt, edited files, and commits.

Run Gemini CLI with attempt history

ait run --adapter gemini --intent "Add config validation" -- gemini

Gemini sessions are recorded as attempts the same way as Claude Code and Codex. ait memory recall later surfaces what each agent tried.

Run Cursor agents with reviewable provenance

ait run --adapter cursor --intent "Migrate to new SDK" -- cursor

Cursor edits are confined until you apply them. The attempt log keeps the changed files, exit status, and commits available for review and recovery.

Wrap any other shell agent

ait run --adapter shell --intent "Regenerate fixtures" -- \
  python scripts/regenerate_fixtures.py

Use the generic shell adapter to give attempt provenance to any custom agent or script.

Compared to alternatives

ait is the layer around the agents, not a replacement.

You already use ait adds
Naked git worktree + manual cleanup Auto-managed internal workspaces, attempt records, apply/recover verbs, queryable history — see ait vs naked git-worktree
Aider's --auto-commits Outer-layer attempt history (Aider commits land inside an ait attempt), cross-session memory, multi-agent handoff
Claude Code's built-in worktrees Cross-agent (not Claude-only), structured attempt records, query DSL, explicit apply/recover
SaaS observability (Langfuse, Braintrust) Local-first, no telemetry, git-native (commit-linked, not token-linked); they operate at the LLM-call layer, ait at the git-call layer — both stack
GUI-first agent managers, memory layers, review bots AIT is CLI-first today. It is strongest as a local attempt ledger around existing CLIs: memory, review, provenance, and apply/recover are one Git-native workflow. See the category comparison.

How It Works

your prompt
    |
    v
agent CLI wrapped by ait
    |
    v
internal isolated workspace
    |
    v
attempt metadata + commits + memory
    |
    v
review, apply, recover, or inspect

The wrapped process receives:

AIT_INTENT_ID
AIT_ATTEMPT_ID
AIT_WORKSPACE_REF
AIT_CONTEXT_FILE   # when context is enabled

AIT_CONTEXT_FILE contains a compact repo-local handoff selected from previous attempts, commits, curated notes, accepted facts, review findings, and live external memory files such as CLAUDE.md, AGENTS.md, .claude/memory.md, .codex/memory.md, and .cursor/rules. AIT records a versioned ait.context_manifest next to the context file. The manifest separates trusted baseline, advisory, and excluded memory; candidate, stale, superseded, and policy-blocked memory cannot become trusted baseline, and policy-blocked body text is not copied into the context or manifest.

Install

Recommended:

pipx install ait-vcs
ait --version

Virtual environment:

python3.14 -m venv .venv
.venv/bin/pip install ait-vcs
.venv/bin/ait --help

npm wrapper:

npm install -g ait-vcs
ait --version

Tagged GitHub release:

pipx install "git+https://github.com/m24927605/ait.git@v0.55.67"

Upgrade:

ait upgrade
ait --version

Preview an upgrade:

ait upgrade --dry-run

Useful Commands

ait status
ait status claude-code
ait status codex
ait status --all
ait doctor
ait doctor --fix

ait adapter list
ait adapter doctor claude-code
ait adapter setup claude-code

ait attempt list
ait attempt show <attempt-id>
ait resume latest
ait intent show <intent-id>
ait context <intent-id>

ait memory
ait memory sources
ait memory search "auth adapter"
ait memory recall "billing retry"
ait memory backfill --dry-run
ait memory backfill --import
ait memory lint
ait memory lint --fix

ait graph
ait graph --html
ait console --read-only
ait console action apply --attempt latest --dry-run --format json

ait policy validate --format json
ait metadata export --dry-run --output ait-metadata.bundle.json --format json
ait metadata import --input ait-metadata.bundle.json --dry-run --format json

Shell auto-activation:

ait shell show --shell zsh
ait shell install --shell zsh
ait shell uninstall --shell zsh

Requirements

  • Python 3.14+
  • Git
  • SQLite from the Python standard library
  • Node.js 18+ only when installing through npm

Status

ait is currently 0.55.67 and alpha quality. It is intended for local dogfooding, power users, and infra-minded engineers who are comfortable with Git workflows.

Metadata is local to one repository under .ait/. It is not synchronized across machines.

The visual model is becoming usable: ait graph --html remains a static local report, and ait console --read-only writes or serves a loopback-only daily console over the same attempt graph, evidence, memory, hot files, and review results. Browser mutation UI is not enabled. A CLI action dry-run layer now exists for apply/recover/discard preflight and append-only journaling, but real apply/recover/discard still go through the existing CLI/domain paths.

Team-readiness hardening is still local-first: .ait/policy.json validation is fail-closed and is now consumed by apply, review, console action preflight, and context trust filtering. Metadata export/import currently supports dry-run planning only. There is still no cross-machine sync, SaaS dashboard, telemetry, automatic push, or automatic merge.

Product direction:

Current constraint Solution path
Category can sound like several tools at once Anchor the product as a local control plane and Git-native attempt ledger; describe memory, review, provenance, and apply/recover as parts of that ledger.
CLI-first experience loses some users to visual agent managers Keep the daily console read-only while hardening apply/recover/discard dry-run preflight and journaling before any browser mutation UI.
Alpha quality limits broad team adoption Focus first on local power users and infra-minded engineers; expose dry-run metadata export/import and fail-closed policy validation before any broader team sync story.
"Memory" can be mistaken for prompt stuffing Keep memory attempt-derived, evidence-backed, inspectable, and tied to Git state; avoid claiming external vector DB or hidden chat memory behavior.
Review gate impact needs proof The 10-case benchmark fixture and repaired Claude/Codex dogfood artifacts now exist. Keep publishing honest repeated runs until recall, false positives, latency, token cost, and the deterministic-vs-LLM tradeoff are stable enough for a quality claim.

Development

Set up the repository:

python3.14 -m venv .venv
.venv/bin/pip install -e .
.venv/bin/pip install pytest

Verify:

.venv/bin/pytest -q
.venv/bin/ait --version
.venv/bin/ait --help

Before a release:

git status --short
.venv/bin/pytest -q

The release version in pyproject.toml, the Git tag, and this README should match.

Documentation

For internal design notes (specs, memory architecture, refactor plans), see docs/, including the product weakness response plan.