Autonomous AI coding agent with built-in governance. Any LLM. Runs locally. MIT licensed.
npm install -g codebot-ai
codebot --setup # auto-detects local and cloud LLMs
codebot "refactor auth to use JWT" # run a task
codebot --dashboard # web UI at localhost:3120- Governance-first — every tool call passes through a constitutional safety engine (CORD) that risk-scores actions across 14 dimensions before execution
- Any LLM, anywhere — 8 providers: run fully local with Ollama/LM Studio/vLLM, or connect to Anthropic, OpenAI, Google, DeepSeek, Groq, Mistral, xAI
- 32 built-in tools — code editing, shell, Chrome automation, Git, Docker, databases, web search, deep research, scheduled routines, and more
- Cryptographic audit trail — SHA-256 hash-chained logs with SARIF export for CI integration
- Zero external dependencies — entire runtime built on Node.js built-ins; no Express, no Axios, no ORM
| CodeBot AI | Copilot | Cursor | Claude Code | |
|---|---|---|---|---|
| Self-hosted / local LLM | Yes | No | No | No |
| Any LLM provider | 8 | GPT | Mixed | Claude |
| Safety engine + audit trail | Yes | No | No | No |
| Free / MIT | Yes | $10-39/mo | $20/mo | $20/mo |
User --> Agent Loop --> Tool Router --> CORD Safety Engine --> Execution
| | |
8 LLM Providers 14-dimension risk 32 tools
(local + cloud) scoring + audit (code, shell,
browser, git...)
import { Agent, AnthropicProvider } from 'codebot-ai';
const agent = new Agent({
provider: new AnthropicProvider({
apiKey: process.env.ANTHROPIC_API_KEY,
model: 'claude-sonnet-4-6',
}),
model: 'claude-sonnet-4-6',
autoApprove: true,
});
for await (const event of agent.run('list all TypeScript files')) {
if (event.type === 'text') process.stdout.write(event.text || '');
}Custom tools via .codebot/plugins/ · MCP servers via .codebot/mcp.json · VS Code extension · GitHub Action
Docs · Changelog · Security · Contributing
MIT — Ascendral