惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

S
Schneier on Security
The Register - Security
The Register - Security
月光博客
月光博客
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
The GitHub Blog
The GitHub Blog
博客园 - 司徒正美
罗磊的独立博客
U
Unit 42
S
SegmentFault 最新的问题
Y
Y Combinator Blog
博客园_首页
Hugging Face - Blog
Hugging Face - Blog
J
Java Code Geeks
Schneier on Security
Schneier on Security
Know Your Adversary
Know Your Adversary
C
Check Point Blog
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
Simon Willison's Weblog
Simon Willison's Weblog
V
Vulnerabilities – Threatpost
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
阮一峰的网络日志
阮一峰的网络日志
The Hacker News
The Hacker News
博客园 - 叶小钗
C
Cybersecurity and Infrastructure Security Agency CISA
Spread Privacy
Spread Privacy
L
LINUX DO - 热门话题
T
The Exploit Database - CXSecurity.com
P
Palo Alto Networks Blog
cs.CL updates on arXiv.org
cs.CL updates on arXiv.org
Latest news
Latest news
L
Lohrmann on Cybersecurity
A
About on SuperTechFans
L
LangChain Blog
Stack Overflow Blog
Stack Overflow Blog
S
Securelist
A
Arctic Wolf
D
Darknet – Hacking Tools, Hacker News & Cyber Security
T
Threatpost
Scott Helme
Scott Helme
博客园 - 聂微东
博客园 - 【当耐特】
T
Tenable Blog
I
Intezer
D
DataBreaches.Net
B
Blog RSS Feed
Security Latest
Security Latest
C
Cisco Blogs
T
Tor Project blog
N
Netflix TechBlog - Medium

Show HN

GitHub - steveking-gh/firmion: Firmion is DSL and engine for firmware image generation. GitHub - villagesql/villagesql-skills: Agent skills for VillageSQL - gemini-cli-extension; claude-code-plugin GitHub - flightdeckhq/flightdeck: Observability and control plane for AI agents. CSP Radar GitHub - Light-Heart-Labs/DreamServer: Turn your PC, Mac, or Linux box into an AI server. LLM inference, chat UI, voice, agents, workflows, RAG, and image generation. GitHub - Diplomat-ai/diplomat-agent-ts: What can your TypeScript AI agent do to the real world? Scan your code. See which tool calls have zero checks Code Block Selector - Visual Studio Marketplace Prometheus dependency graph — interactive showcase | Riftmap Show HN: I made a vi-like modal keyboard plugin for Figma GitHub - run-llama/liteparse: A fast, helpful, and open-source document parser GitHub - dalemyers/Roar: A macOS CLI tool for notifications GitHub - district-solutions/open-agent-tools-coder: Enables small-to-large self-hosted ai models to use local source code when running tool-calling agentic workloads. We actively data mine 20,900+ (2+ TB) popular github repos using large and small ai models to create reuseable: json, markdown and parquet files for local-first tool-calling models. GitHub - progapandist/stripeek: A local TUI proxy for real-time Stripe API debugging, built for navigating complex payloads fast. GitHub - sir1st/hermes-desktop: All-in-one cross-platform desktop app for Hermes Agent — bundles Python + hermes-agent + hermes-web-ui GitHub - astefanutti/shaderbang: Shebang for Shaders Show HN: Generate Claude Code Workflows using Spec Driven Development approach GitHub - nixys/nxs-universal-chart: The Helm chart you can use to install any of your applications into Kubernetes/OpenShift Show HN: AI agents for UK GDAD PCF roles and their skills The Two Pillars: Mixer Mode and Meta-Software in the Reorganization of Software Work After AI GitHub - JaiCode08/teleport-env What 1,000+ Harness Experiments Taught Me About Self-Improving Agents Show HN: Liiists, a Markdown-first, iOS and CLI list app SwiperTab – Get this Extension for 🦊 Firefox (en-US) GitHub - kouhxp/fftext: Summarize, explain, fact-check, or translate any text, URL, or file. No GPU. No cloud. One command GitHub - sweetpad-dev/sweetpad: Develop Swift/iOS projects using VSCode GitHub - dogmaticdev/IRON: IRON a.k.a. Intermediate Representation Object Notation is a Interpreter/Database that is used to create Programming Languages. GitHub - sjhalani7/vaen: Package your AI coding harness into a portable .agent file, and share it across repos, teams, & the community without ever having to copy-paste instructions, skills, MCP config, or secrets. Show HN: Gandalf the Grader Show HN: Citadeld – replay any CI failure locally from a single file GitHub - tdortman/cuSBF: High-Performance GPU Super Bloom Filter coral-ai/claude-code-token-xray at main · Coral-Bricks-AI/coral-ai GitHub - ulyssestenn/funes: Funes is a Git-based framework for LLM-managed knowledge work: an AI Librarian ingests raw sources, builds an interlinked Markdown knowledge base, and uses it to produce cited reports, analyses, and other outputs. GitHub - ThatXliner/gah: Git Add Hunk, built for agents to use GitHub - harmont-dev/harmont-cli: Command-line client for the Harmont CI platform GitHub - brooksmcmillin/mcp-authflow: OAuth 2.0 Authorization Server framework for MCP servers GitHub - javaid-codes/audit-supply-chain-agents GitHub - amorey/gochan: A small library of common channel architectures for Go, inspired by Rust GitHub - arifozgun/OpenGem: Free, Open-Source AI API Gateway with Gemini, OpenAI & Anthropic Compatibility in 1 file GitHub - Pranesh950/BioPetals: 🌸 Run BIOxAI models at home, BitTorrent-style. Fine-tuning and inference up to 10x faster than offloading GitHub - cnguyen14/bounty-doctor: Diagnose a GitHub bounty issue before you waste hours: detects honeypot scam repos, AI-bot attempt swarms, and stale contests. Show HN: CoreMCP – MCP Server for On-Prem DBs Show HN: KittyHTML – Render HTML/CSS as an inline image in your terminal GitHub - bingud/filemat: Web-based file manager Show HN: TruthLens – Free multi-signal deepfake image detector GitHub - apexlocal-jz/claude-usage-tray: Windows system-tray app showing your Claude Code rate-limit usage at a glance. Zero deps, ~300 lines of PowerShell. Cross-IDE (works regardless of VS Code, Cursor, plain terminal). Release v0.1.2.1 · kouhxp/yapsnap GitHub - noopolis/moltnet: Self-hostable chat network for AI agents. Pre-built bridges for Claude Code, Codex, and the Claws. Rooms, DMs, history. No Slack bots, no Matrix, no glue code. GitHub - tamerh/enju: Coordinating Humans, AI Agents, and Compute as Peers on a Shared Workflow Graph Show HN: Continuity-auth – Respect-weighted rate limits for the open web GitHub - luml-ai/luml: AI lifecycle platform where engineers and agents track experiments, train models, and ship to production. GitHub - mrdanielcasper/CoreTex: A UNIX-inspired, biomimetic, flat-file AI harness and knowledge engine. GitHub - clemg/pierre-github: Pierre's diffs.com and trees.software for Github GitHub - lyriks-io/unspaghettit: Behavior-driven AI development without prompt spaghetti. GitHub - sofumel/claude-handoff-revive: Resume Claude Code work after rate/usage/context limits without replaying the prior transcript. Auto-saves at 90%/95% usage. Plugin-installable, 10 languages. GitHub - dotexorg/saferpc: Typed, end-to-end encrypted RPC over any bidirectional channel. GitHub - BeeZeeAgent/beezee: Agent harness orchestration Legato Next.js Boilerplate for Internal Tools · CoreUI GitHub - clark-labs-inc/clark-hash: Clark Hash, 32x smaller searchable sketches for embeddings GitHub - ZeroPointRepo/youtube-mcp: The fastest YouTube transcript + YouTube search MCP for AI agents. Try for free. Typing Mastery — climb toward 100+ WPM, deliberately GitHub - Andebugulin/Awareen GitHub - fayzan123/claude-workflow-composer: Visual desktop app for composing multi-agent coding workflows. Drag agents, attach skills and MCPs, wire handoffs, export to .claude/ GitHub - harshaneel/humanize: Best static AI text humanizer. Two research-grounded skills that work in any LLM (Claude, ChatGPT, Gemini, Codex): humanize beats perplexity-based detectors, ai-check produces forensic scoring with evidence-quoted flags. Nine levers, 50+ peer-reviewed sources, 2024-2026 detection literature. GitHub - StackOneHQ/stack-nudge GitHub - nodes-app/swift-markdown-engine: A native AppKit Markdown editor for macOS, built on TextKit 2 and bridged to SwiftUI. We hardened an LLM agent. Each defense we added made it more exploitable. GitHub - alkait/WhatsKept: Agent-queryable WhatsApp history from an iOS backup — a single Go binary. GitHub - octelium/cordium: Open-source, general-purpose sandbox platform for devs and AI agents that provides identity-based secure access to infrastructure without credentials. WAR.GOV/UFO Microfilm5 GitHub - scosman/videowright: Build animated explainer videos with your coding agent GitHub - dipankar/dscode: The code editor you can take apart. GitHub - zoharbabin/web-researcher-mcp: MCP server (Go) for AI assistants: web search, content extraction, academic/patent/news research. Multi-provider routing, 4-tier scraping, search lenses. Works with Claude, Cursor, and any MCP client. GitHub - ruvnet/RuView: π RuView turns commodity WiFi signals into real-time spatial intelligence, vital sign monitoring, and presence detection — all without a single pixel of video. GitHub - scanaislop/aislop: Catch the slop AI coding agents leave in your code: narrative comments, swallowed exceptions, as-any casts, dead code, oversized functions. 50+ rules across 7 languages (TypeScript, JavaScript, Python, Go, Rust, Ruby, PHP). Sub-second, deterministic, no LLM at runtime. MIT-licensed. GitHub - kouhxp/cheap-im: CPU-only voice agent approximating Thinking Machines' Interaction Models demo GitHub - unprovable/OrchidMantis: Orchid Mantis — standalone framework for Zero-Knowledge Proofs of eXploit (ZKPoX). GitHub - MarcellM01/TinySearch: Shrink the web for your local LLMs! GitHub - TangibleResearch/Halgorithem: A Algo designed to detect AI Hallucitions GitHub - DO-SAY-GO/freelang: I love freelang GitHub - CarpseDeam/Aura-IDE: An AI coding harness that shaped itself - Planner/Worker agents, repo awareness, surgical edits, validation, recovery, and safe diff approvals. GitHub - chojs23/concord: A feature-rich TUI client for Discord GitHub - tommyjepsen/awesome-ux-skills: UX & AI Product designs skills you can use today in Claude Code GitHub - aerf-spec/aerf: Agent Evidence Receipt Format (AERF) — an open specification for tamper-evident, independently verifiable records of AI agent actions. GitHub - kklimuk/docx-cli: CLI for AI agents (Claude, Codex) to read, edit, and comment on .docx files with full format fidelity. GitHub - Jwrede/tokentoll: Catch LLM cost changes in code review. Infracost for LLM spend. GitHub - samchon/ttsc: A `typescript-go` toolchain for compiler-powered plugins and type-safe execution + 500x faster lint integrated into compiler GitHub - Higangssh/homebutler: 🏠 Manage your homelab from chat. Single binary, zero dependencies. GitHub - olalie/tapmap: See where your computer connects and what stands out on a live world map. GitHub - Diplomat-ai/diplomat-agent: What can your AI agent do to the real world? Scan your code. See which tool calls have zero checks GitHub - Bajusz15/beacon: Open-source agent for secure remote access, monitoring, and deploys across home-lab and self-hosted machines like Raspberry Pi, N100, or any Linux server. Open web based TTY or tunnel Home Assistant and other local services securely without opening ports. BigTech AI News - Chrome 应用商店 GitHub - vinhnx/VTCode: VT Code is an open-source coding agent with LLM-native code understanding and robust shell safety. Supports multiple LLM providers with automatic failover and efficient context management. GitHub - michaelaz774/decision-engine: A decision operating system for startup founders, powered by Claude Code. Synthesizes wisdom from 25+ legendary founders and investors into interactive AI-driven decision frameworks. GitHub - Chrilleweb/dotenv-diff: Validate environment variable usage in your codebase GitHub - Lumen-Labs/brainapi2: BrainAPI is a knowledge graph–powered AI memory layer that transforms unstructured data into structured knowledge, enabling intelligent search, recommendations, and contextual memory for AI agents and applications. GitHub - familiar-software/familiar: Let AI watch you work. Familiar lets your AI update its memory, skills, and knowledge by watching your screen. GitHub - skorotkiewicz/rudo: A small, elegant dock for Wayland GitHub - muxshed/shed: One stream in, or many. Every destination, simultaneously. No cloud middleman, no per-channel fees, no limits. make sidebar/address bar rounded corner toggleable
GitHub - dimileeh/agent-workspace-fabric: Control plane that runs AI coding agents (Codex, Claude Code, Gemini, OpenCode, Grok, Cursor) as disciplined contributors: each task gets an isolated git worktree + Docker Compose stack, profile-driven validation, a created PR, and an autonomous PR-monitor loop (review, CI fixes, base sync, auto-merge). GitHub & BitBucket. Apache-2.0.
dimileeh · 2026-06-16 · via Show HN

CI License: Apache 2.0 Python 3.12 Coverage 99% Status: alpha

AWF — one control plane conducting an orchestra of AI coding agents, each in its own isolated workspace, producing merged pull requests

The AWF operator console: five agents running in parallel against one codebase — each in its own isolated workspace, each monitored through its own PR, all merging through one governed queue.

AWF operator console showing five parallel agent workspaces, live resource capacity, and a governed merge queue

▶️ Watch the 90-second explainer — how AWF runs an agent swarm on one machine without collisions.

📐 Interactive architecture diagram  ·  🧭 Concepts & glossary  ·  🚀 Quickstart

AWF is an industrial workspace fabric for AI coding agents.

It gives Codex, Claude Code, Gemini, and future coding agents a repeatable way to work like disciplined software contributors: each task gets an isolated workspace, a clean checkout, declared services, validation, PR creation, PR review monitoring, comment-fix loops, merge gates, artifacts, events, and cleanup.

AWF is not a chatbot and not a product-planning brain. It is the execution substrate beneath a planner, a human operator, or an MCP client; inside a workspace it can enforce a concrete implementation-plan lifecycle.

The Problem

AI coding agents can write code, but raw agent execution does not scale to a real engineering workflow.

Without a workspace fabric, parallel agent development quickly runs into the same operational failures:

  • Agents share local state, credentials, databases, Docker networks, or dependency caches.
  • A task passes tests against an old base branch and becomes stale before merge.
  • Review comments arrive after a PR initially looks green.
  • CI failures and reviewer feedback require manual babysitting.
  • Agents push branches but leave humans to handle comments, conflicts, and merge readiness.
  • Project-specific setup leaks into the orchestration code.
  • Failed workspaces are hard to inspect because logs, events, and reason codes are scattered.
  • The same runner is hard-coded for one project and cannot be reused for a Python, Node, Next.js, Docker Compose, Go, Java, C++, or Rust repository.

The real bottleneck is not whether an agent can edit files. The bottleneck is whether many agents can safely work on real repositories without requiring a human to supervise every PR by hand.

The AWF Solution

AWF turns one coding task into a durable, observable lifecycle:

  1. Create a workspace row in the control-plane database.
  2. Create an isolated git worktree from the requested base branch.
  3. Resolve a workspace profile that describes the project runtime.
  4. Render and launch a per-workspace Docker Compose stack.
  5. Run profile setup phases.
  6. Optionally run AWF-owned Plan -> Execute -> Compare iterations.
  7. Run the selected coding agent inside the workspace container.
  8. Run profile validation phases and explicit request validation commands.
  9. Commit, push, and open a pull request.
  10. Monitor the PR until it is merged, closed, or failed.
  11. Address meaningful review comments by invoking the same agent again.
  12. Fix CI failures when logs are available.
  13. Sync the base branch into the PR branch when needed.
  14. Respect reviewer timing through an initial review grace window.
  15. Auto-merge only after all gates pass.
  16. Tear down successful workspaces and preserve failed ones for inspection.

Project-specific knowledge belongs in workspace profiles. The AWF control plane owns generic lifecycle concerns: git isolation, agent execution, service orchestration, validation, artifacts, PR creation, monitoring, merge safety, and cleanup.

Current Status

This repository is the alpha local Core of Agent Workspace Fabric. It is ready for local evaluation and dogfooding, while hosted, GKE, and multi-tenant deployments remain future layers.

Implemented now:

  • FastAPI REST API with a single canonical /v1 namespace.
  • Typer CLI.
  • MCP server tools for workspace creation, controls, operator reads, metrics, and PR monitor adoption.
  • Local operator console.
  • SQLAlchemy control-plane models for workspaces, operations, and events.
  • Profile-driven workspace resolution.
  • Per-workspace Docker Compose stack generation.
  • Codex, Claude Code, Cursor, Gemini, OpenCode, and Grok adapters.
  • Central default model/effort map for agent adapters.
  • AWF-owned Plan -> Execute -> Compare lifecycle policy.
  • Generic phase-based validation.
  • Git worktree provisioning.
  • PR creation.
  • Feature PR monitor with automated comment handling and auto-merge.
  • Release/sync PR monitor variants that keep workspaces alive until human merge.
  • Post-merge target-branch reconciliation for Python/Alembic multi-head repair.
  • Initial PR review grace period before auto-merge.
  • Durable task policy metadata (task_class, owned_paths) for scheduling and review provenance.
  • Non-actionable bot status comment filtering.
  • Workspace timelines, logs, artifacts, runtime snapshots, validation provenance, metrics, locks, and merge-queue inspection.

Alpha limitations:

  • Multi-node scheduling.
  • Cloud backend and hosted control plane.
  • Multi-tenant authz, cloud secret broker, and hardened network sandbox.
  • Full semantic merge automation beyond the local PR monitor and merge-safety gates already implemented.

See:

Documentation

Installation

If you already use Claude Code or Codex, the fastest path is to let your agent install AWF and onboard your repo — it's the only lane that ends with your repository profiled and a green smoke. Paste this prompt (replace <PATH> with your project's path):

Set up Agent Workspace Fabric (AWF) on this machine and onboard my repo.
1. Clone https://github.com/dimileeh/agent-workspace-fabric and READ
   skills/awf-scheduler/SKILL.md and docs/QUICKSTART.md before doing anything.
2. Check prerequisites (Docker running, uv, git). For PR automation, configure only
   the auth my repo's forge needs: GitHub (github.com) needs gh authenticated;
   Bitbucket (bitbucket.org) needs BITBUCKET_API_TOKEN (and either BITBUCKET_EMAIL
   or BITBUCKET_AUTH_MODE=bearer) in .env and no gh. If any are missing, STOP and
   tell me — do not guess.
3. Install via the source lane: uv tool install . --force, then awf setup, awf start,
   and awf service status --format pretty.
4. Onboard my project at <PATH>: awf init <PATH> --write-profile --yes, then
   awf smoke run --project <PATH> --mocked-local --format pretty.
5. Stop when the mocked smoke is green and report the profile summary. Do not create
   a real workspace or open a PR unless I ask.

It reads the bundled skills/awf-scheduler/SKILL.md (the operator skill for driving AWF) so its steps track the current commands.

For a deterministic, reproducible install, AWF has three runnable first-run lanes. The public curl installer lane is release-gated until its hosted installer URL, manifest, checksums, and release artifacts are published and verified.

Lane Use When Install
uv tool / pipx You want a release-installed package mediated by an isolated Python tool manager. uv tool install agent-workspace-fabric or pipx install agent-workspace-fabric
Source checkout with global tool install You want inspectable source plus a global awf executable installed from that checkout. git clone ... then uv tool install . --force
Source checkout with no global install You want inspectable source and no global executable. git clone ... then run uv run --python 3.12 --extra dev awf ...

For package-manager and virtualenv lanes that put awf on PATH:

awf setup
awf start
awf service status --format pretty
awf init <path>
awf smoke run --project <path> --mocked-local --format pretty

awf start starts the local API, worker, database, and web console at http://127.0.0.1:3000. Use awf start --headless to skip the console or awf start --console-port 3333 to choose another localhost port.

For the source checkout with global tool install lane, run from the checkout:

uv tool install . --force
awf setup --source-checkout "$PWD"
awf start --source-checkout "$PWD"
awf service status --format pretty
awf init <path>
awf smoke run --project <path> --mocked-local --format pretty

For the source checkout with no global install lane, run from the checkout:

uv sync --extra dev
uv run --python 3.12 --extra dev awf setup --source-checkout "$PWD"
uv run --python 3.12 --extra dev awf start --source-checkout "$PWD"
uv run --python 3.12 --extra dev awf service status --format pretty
uv run --python 3.12 --extra dev awf init <path>
uv run --python 3.12 --extra dev awf smoke run --project <path> --mocked-local --format pretty

For the full lane-specific commands, including upgrade and uninstall paths, see Quickstart, Upgrade Guide, and Uninstall Guide.

Homebrew is planned after the first stable tagged PyPI/GitHub release and a formula audit; do not rely on a brew install path yet.

Supported Client Surfaces (v0.1)

REST, CLI, and MCP are the supported client surfaces for v0.1. AWF does not currently ship with a supported Python SDK. Integrators should use one of the supported surfaces (e.g., the CLI for operator convenience or the REST API for control-plane programmatic access). Please do not import internal AWF modules (such as awf.* or other internal paths) to build custom API clients, as they are not part of the stable public contract and are subject to change without notice.

PR Monitor Adoption

Existing GitHub pull requests can be adopted into AWF monitoring through the REST, CLI, and MCP surfaces. Adoption creates a monitor-owned workspace for the open PR without re-running the coding agent, then lets AWF apply the normal PR monitor loop for comments, checks, freshness, and merge policy. See PR Monitor Adoption for the operator runbook, auth preflight, idempotency behavior, monitor policy options, and mocked-local demo path.

Supply-Chain Guardrails

Workspace profiles can declare security.supply_chain to warn or block on conservative evidence of risky agent-authored install behavior, including unpinned dependency installs, remote script execution, unexpected package registry hosts, and lockfile edits outside owned paths. Findings are recorded with recovery guidance so operators and PR monitors can distinguish policy blocks from ordinary test failures.

License

Apache-2.0. See LICENSE.