owlburtoe/pi
1
0
Fork 0
mirror of https://github.com/earendil-works/pi.git synced 2026-06-08 07:10:08 -04:00
Code Issues Projects Releases Packages Wiki Activity
AI agent toolkit: coding agent CLI, unified LLM API, TUI & web UI libraries, Slack bot, vLLM pods
4,443 commits 25 branches 281 tags 142 MiB
  • TypeScript 93.5%
  • JavaScript 5.6%
  • CSS 0.4%
  • Shell 0.3%
  • C 0.1%
Find a file
Exact
Mario Zechner 718215bd95 feat(coding-agent): add extension project trust decisions
2026-06-08 12:59:08 +02:00
.github chore: approve contributor ItsumoSeito 2026-06-07 08:29:37 +00:00
.husky chore: harden dependency workflows 2026-05-20 15:57:41 +02:00
.pi fix: show security advisories in prompt widget 2026-06-08 12:35:18 +02:00
packages feat(coding-agent): add extension project trust decisions 2026-06-08 12:59:08 +02:00
scripts fix(oauth): harden browser launch handling 2026-06-02 23:15:46 +02:00
.gitattributes chore: add repository .gitattributes for line ending normalization 2026-02-26 01:11:34 +01:00
.gitignore Closes #4182 2026-05-05 17:10:35 +02:00
.npmrc chore: harden dependency workflows 2026-05-20 15:57:41 +02:00
AGENTS.md docs: document commit message format 2026-06-03 23:15:15 -05:00
biome.json chore: remove web-ui workspace 2026-05-20 02:26:09 +02:00
CONTRIBUTING.md docs: explain issue triage policy (#3725) 2026-04-25 23:02:17 +02:00
LICENSE Initial monorepo setup with npm workspaces and dual TypeScript configuration 2025-08-09 17:18:38 +02:00
package-lock.json Release v0.78.1 2026-06-04 18:31:33 +02:00
package.json docs: add containerization guide and Gondolin example (#5356) 2026-06-03 15:53:16 +02:00
pi-test.bat chore: add pi-test batch wrapper 2026-05-18 00:55:01 +02:00
pi-test.ps1 chore: add HF_TOKEN to pi-test.ps1 --no-env unset list 2026-05-20 18:12:00 +02:00
pi-test.sh chore: run pi-test through tsx 2026-05-20 15:55:31 +02:00
README.md docs: add containerization guide and Gondolin example (#5356) 2026-06-03 15:53:16 +02:00
SECURITY.md doc: clarify wording in SECURITY.md 2026-06-02 17:24:41 +02:00
test.sh feat(ai): add ZAI Coding Plan China provider 2026-06-02 23:39:56 +08:00
tsconfig.base.json chore(ts): use source import extensions 2026-05-20 00:04:03 +02:00
tsconfig.json Exclude optional Gondolin example from root check 2026-06-04 18:27:18 +02:00

README.md

pi logo

Discord

pi.dev domain graciously donated by

Exy mascot
exe.dev

New issues and PRs from new contributors are auto-closed by default. Maintainers review auto-closed issues daily. See CONTRIBUTING.md.

Pi Agent Harness Mono Repo

This is the home of the pi agent harness project including our self extensible coding agent.

To learn more about pi:

Share your OSS coding agent sessions

If you use pi or other coding agents for open source work, please share your sessions.

Public OSS session data helps improve coding agents with real-world tasks, tool use, failures, and fixes instead of toy benchmarks.

For the full explanation, see this post on X.

To publish sessions, use badlogic/pi-share-hf. Read its README.md for setup instructions. All you need is a Hugging Face account, the Hugging Face CLI, and pi-share-hf.

You can also watch this video, where I show how I publish my pi-mono sessions.

I regularly publish my own pi-mono work sessions here:

All Packages

Package Description
@earendil-works/pi-ai Unified multi-provider LLM API (OpenAI, Anthropic, Google, etc.)
@earendil-works/pi-agent-core Agent runtime with tool calling and state management
@earendil-works/pi-coding-agent Interactive coding agent CLI
@earendil-works/pi-tui Terminal UI library with differential rendering

For Slack/chat automation and workflows see earendil-works/pi-chat.

Permissions & Containerization

Pi does not include a built-in permission system for restricting filesystem, process, network, or credential access. By default, it runs with the permissions of the user and process that launched it.

If you need stronger boundaries, containerize or sandbox Pi. See packages/coding-agent/docs/containerization.md for three patterns:

  • OpenShell: run the whole pi process in a policy-controlled sandbox.
  • Gondolin extension: keep pi and provider auth on the host while routing built-in tools and ! commands into a local Linux micro-VM.
  • Plain Docker: run the whole pi process in a local container for simple isolation.

Contributing

See CONTRIBUTING.md for contribution guidelines and AGENTS.md for project-specific rules (for both humans and agents).

Development

npm install --ignore-scripts  # Install all dependencies without running lifecycle scripts
npm run build        # Build all packages
npm run check        # Lint, format, and type check
./test.sh            # Run tests (skips LLM-dependent tests without API keys)
./pi-test.sh         # Run pi from sources (can be run from any directory)

Supply-chain hardening

We treat npm dependency changes as reviewed code changes.

  • Direct external dependencies are pinned to exact versions. Internal workspace packages remain version-ranged.
  • .npmrc sets save-exact=true and min-release-age=2 to avoid same-day dependency releases during npm resolution.
  • package-lock.json is the dependency ground truth. Pre-commit blocks accidental lockfile commits unless PI_ALLOW_LOCKFILE_CHANGE=1 is set.
  • npm run check verifies pinned direct deps, native TypeScript import compatibility, and the generated coding-agent shrinkwrap.
  • The published CLI package includes packages/coding-agent/npm-shrinkwrap.json, generated from the root lockfile, to pin transitive deps for npm users.
  • Release smoke tests use npm run release:local to build, pack, and create isolated npm and Bun installs outside the repo before tagging a release.
  • Local release installs, documented npm installs, and pi update --self use --ignore-scripts where supported.
  • CI installs with npm ci --ignore-scripts, and a scheduled GitHub workflow runs npm audit --omit=dev plus npm audit signatures --omit=dev.
  • Shrinkwrap generation has an explicit allowlist for dependency lifecycle scripts; new lifecycle-script deps fail checks until reviewed.

License

MIT