CodeBot AI is a zero-dependency autonomous AI agent that works with any LLM provider. The architecture is designed around streaming, fail-safe operations, and defense-in-depth security.
┌─────────────────────────────────────────────────────────┐
│ Entry Points │
│ ├── CLI (src/cli.ts) │
│ ├── VS Code Extension (extensions/vscode/) │
│ └── GitHub Action (actions/codebot/) │
│ │ │
│ ▼ │
│ ┌─────────────────────────────────────────────┐ │
│ │ Agent Core (src/agent.ts) │ │
│ │ ├── Message history management │ │
│ │ ├── LLM streaming loop │ │
│ │ ├── Tool call parsing & validation │ │
│ │ ├── Permission checking │ │
│ │ ├── Parallel tool execution │ │
│ │ └── Context compaction │ │
│ └────┬────────────────────┬───────────────────┘ │
│ │ │ │
│ ▼ ▼ │
│ ┌──────────┐ ┌─────────────────┐ │
│ │ Providers │ │ Tool Registry │ │
│ │ OpenAI │ │ 28 built-in │ │
│ │ Anthropic │ │ + MCP servers │ │
│ │ (any) │ │ + plugins │ │
│ └──────────┘ └────┬────────────┘ │
│ │ │
│ ┌────────┼────────┐ │
│ ▼ ▼ ▼ │
│ ┌──────┐ ┌────────┐ ┌─────────┐ │
│ │Policy│ │Security│ │ Audit │ │
│ │Engine│ │Checks │ │ Logger │ │
│ └──────┘ └────────┘ └─────────┘ │
│ │
│ ┌──────────────────────────────────────────────┐ │
│ │ Observability Layer │ │
│ │ ├── MetricsCollector (counters, histograms) │ │
│ │ ├── RiskScorer (6-factor assessment) │ │
│ │ ├── TokenTracker (usage & cost) │ │
│ │ └── SARIF Exporter (audit → CI) │ │
│ └──────────────────────────────────────────────┘ │
└─────────────────────────────────────────────────────────┘
- User input enters via CLI, VS Code extension, or GitHub Action
- Agent appends user message to history, checks context budget
- LLM Provider streams response (text + tool calls)
- Tool calls are validated (schema, policy, capabilities, permissions)
- Risk assessment computed for each tool call (0-100 score)
- Parallel execution runs independent tools concurrently
- Audit logger records every action with hash chain
- Metrics track latency, counts, cache hits, errors
- Results fed back to LLM for next iteration
- Session summary shows tokens, cost, risk, tool breakdown
The core orchestration loop. Manages the LLM conversation, dispatches tool calls, enforces policies, and handles errors. Exposes an AsyncGenerator<AgentEvent> interface for streaming.
Adapters for LLM APIs. OpenAI-compatible (covers Ollama, LM Studio, vLLM, GPT, Gemini, DeepSeek, Groq, Mistral, Grok) and native Anthropic. All implement the LLMProvider interface with streaming.
28 built-in tools covering file operations, shell execution, git, web browsing, search, code analysis, testing, and more. Extensible via plugins and MCP servers.
Declarative JSON policies controlling every aspect of agent behavior. Merge order: project > global > defaults.
Append-only JSONL logs with SHA-256 hash chains. Supports verification, querying, and SARIF export.
- Plugins: Drop
.jsfiles in.codebot/plugins/to add custom tools - MCP Servers: Configure Model Context Protocol servers for external tool integration
- Custom Providers: Implement the
LLMProviderinterface for any LLM API - Policy Files: Customize security policies per-project