<div align="center">
<img src="assets/decapod-ultra.svg" width="800" alt="Decapod Logo">
<h2>A Governance Runtime for Autonomous Software Agents</h2>
<p>
<strong>Decapod turns "AI wrote code" into "I can merge this."</strong>
</p>
<p>
<a href="https://github.com/DecapodLabs/decapod/actions"><img alt="CI" src="https://github.com/DecapodLabs/decapod/actions/workflows/ci.yml/badge.svg"></a>
<a href="https://crates.io/crates/decapod"><img alt="Crates.io" src="https://img.shields.io/crates/v/decapod.svg"></a>
</p>
<p>
<strong>Local-first Β· Repo-native Β· Built in Rust π¦</strong>
</p>
</div>
---
<table>
<tr>
<td align="center" width="50%">
<img src="assets/screenshot-task-1.png" alt="Create agent-agnostic tasks!" width="100%">
<br>
<sub><b>Make Tasks</b> - agents create their own tasks to do later.</sub>
</td>
<td align="center" width="50%">
<img src="assets/screenshot-task-2.png" alt="Discover those tasks with other agents!" width="100%">
<br>
<sub><b>Share the Work</b> β other agents can discover tasks and complete the work!</sub>
</td>
</tr>
</table>
Demo video: **[View on GitHub](https://github.com/DecapodLabs/decapod/raw/master/assets/decapod-demo.mp4)** (12MB)
---
## What This Is
**Decapod is agent infrastructure: a governance runtime for autonomous software agents.**
Like Docker is a runtime for containers, Decapod is a runtime for agents. It gives autonomy a place to live that isnβt your chat window: **persistent state**, **binding methodology**, **proof gates**, and **coordination primitives**βso agent work becomes shippable, not scary.
Agents can write code. But they canβt reliably **ship** because they:
- forget what they built yesterday (no persistence)
- treat best practices as vibes (no enforcement)
- say βdoneβ without evidence (no proof gates)
- trip over each other in parallel (no coordination)
You set Decapod up once (`decapod init`), then agents operate inside the governed environment. **You donβt touch the internalsβjust like you donβt touch individual neurons.**
### What This Is Not
Decapod is not:
- a prompt pack
- an agent framework/library
- a hosted SaaS βagent platformβ
- a review bot that just comments on PRs
- a tool you manually operate (itβs agent infrastructure)
Decapod is an environment: **the place agent work becomes enforceable.**
---
## Getting Started
```bash
cargo install decapod
cd <your-project>
decapod init
```
From that point on, agents operate inside the governed environment. You observe outcomes, review summaries, and merge when proofs pass.
---
## Who This Is For
β
Youβre shipping production code with AI agents<br>
β
You want discipline enforced by the environment<br>
β
You want parallel agents without turning the repo into lore<br>
β
You merge to `main` (not just demoing prompts)<br>
β
You want an AI companion for building premium software<br>
β
You want βAI vibesβ with guardrails and customizable enforceable workflows<br>
---
## Security
Decapod is designed with security at the foundation. See [`SECURITY.md`](SECURITY.md) for:
- Credential architecture and lifecycle management
- Agent identity and session security
- Supply chain integrity
- Incident response philosophy
**TL;DR:** Agents must handle credentials securelyβnever log, never commit, always rotate. Violations are constitutional breaches.
---
## How It Works
### 1) Persistent State (Memory That Survives)
Agents persist work to `.decapod/`: todos, conventions, decisions, proof eventsβdurable state that survives sessions and model switches.
You get continuity without re-explaining. Agents get a real memory substrate instead of fragile chat history.
### 2) Enforced Methodology (Constitution as Code)
Decapod ships an embedded constitution: binding contracts for how agents must operate (intent-first flow, authority chains, proof doctrine, store separation, etc).
Generated entrypoints (`CLAUDE.md`, `AGENTS.md`, `GEMINI.md`) require agents to:
- read the constitution before acting
- use the control surface for state mutation (no internal access)
- follow Intent β Architecture β Implementation β Proof
- pass validation gates before claiming βdoneβ
Projects override behavior via `.decapod/OVERRIDE.md` without forking the constitution.
### 3) Proof Gates (Validation Before Promotion)
Promotion isnβt a vibe. Itβs a check that can fail.
Agents must satisfy proof gates before completion is credible. If validation fails, the work isnβt doneβno matter how confident the summary sounds. Evidence required, not assertions.
### 4) Coordination Primitives (So Parallel Doesnβt Mean Chaos)
Decapod standardizes the surfaces agents use to collaborate:
- a shared backlog with audit trail
- shared conventions and preferences
- shared rationale (decisions, constraints, invariants)
- a proof ledger (what passed, what failed, when, and why)
- policy boundaries (trust tiers, risk zones)
- (planned) safe multi-writer state via a DB broker
Multiple agents can work in parallel without collisions, duplicate effort, or lost context.
---
## The Difference
**Without Decapod:**
```
You: βAdd OAuth to the login flowβ
Agent: Writes 500 lines across 8 files
You: Review everything manually
You: Find broken tests, ignored conventions, missing error paths
Agent: Forgets context when you ask for fixes
```
**With Decapod:**
```
You: βAdd OAuth to the login flowβ
Agent: Checks recorded conventions and constraints
Agent: Produces tracked work, records decisions
Agent: Runs proof gates, fixes failures, re-validates
Agent: Marks work done with an auditable trail
You: Review summary and merge
```
---
## Architecture
```text
ββββββββββββββββββββββββββββββββββββββββββββ
β Agent Entrypoints (CLAUDE.md, etc) β β Generated by init
ββββββββββββββββββββββββββββββββββββββββββββ€
β Control Surface (stable interface) β β Agents interact here
ββββββββββββββββββββββββββββββββββββββββββββ€
β Subsystems (plugin-grade surfaces) β β Domain logic
ββββββββββββββββββββββββββββββββββββββββββββ€
β Governance Core (validate + doctrine) β β Enforcement layer
ββββββββββββββββββββββββββββββββββββββββββββ€
β State Layer (SQLite + event logs) β β Persistence + audit
ββββββββββββββββββββββββββββββββββββββββββββ€
β Embedded Constitution (methodology) β β Contracts, not tips
ββββββββββββββββββββββββββββββββββββββββββββ
Storage:
<your-project>/
βββ .decapod/
βββ data/ # State (agents write via control surface) !! DO NOT TOUCH
βββ generated/ # Entrypoints + derived files (auto-managed) !! DO NOT TOUCH
βββ OVERRIDE.md # Edit this file to manually override any constitution contract layer.
```
You donβt touch `.decapod/data/` directly. Agents use the control surface. Like neuronsβtheyβre there, they work, you donβt manipulate them individually.
---
## Subsystems
Decapod's control surface is organized into 9 top-level commands with grouped subsystems. **Agents interact with these; you communicate your desires to the agent and observe outcomes.**
Status legend:
- **REAL** = implemented and usable today
- **SPEC** = designed/claimed, but not fully shipped yet
### Core Commands
| `decapod init` | Bootstrap project with constitution | REAL |
| `decapod setup` | Configure git hooks and repository setup | REAL |
| `decapod docs` | Constitution discovery and access | REAL |
| `decapod todo` | Work tracking with audit trail | REAL |
| `decapod validate` | Proof gate before promotion | REAL |
### Governance (`decapod govern`)
| `policy` | Risk classification and approval gates | REAL |
| `health` | Proof ledger + system state monitoring | REAL |
| `health summary` | System health overview (replaces heartbeat) | REAL |
| `health autonomy` | Agent autonomy tiers (replaces trust) | REAL |
| `proof` | Executable verification and proof gates | REAL |
| `watcher` | Proactive integrity checks | REAL |
| `feedback` | User preference refinement | REAL |
### Data Management (`decapod data`)
| `archive` | Session history indexing and verification | REAL |
| `knowledge` | Project facts and rationale storage | REAL |
| `context` | Token budget management and archival | REAL |
| `schema` | Subsystem schema discovery | REAL |
| `repo` | Repository structure mapping | REAL |
| `broker` | SQLite audit trail access | REAL |
| `teammate` | User conventions and preferences | REAL |
### Automation (`decapod auto`)
| `cron` | Scheduled automation jobs | REAL |
| `reflex` | Event-driven triggers and actions | REAL |
### Quality Assurance (`decapod qa`)
| `verify` | Proof replay and drift detection | REAL |
| `check` | CI validation checks | REAL |
### Planned Enhancements
| `db_broker` | Multi-agent SQLite safety (write serialization) | SPEC |
---
## Real-World Scenarios
### Scenario 1: Preference Memory
You tell an agent once: βAlways use SEMVER for tagging git commits, and set that value in the Cargo.toml and Cargo.lock before pushing.β
That preference becomes durable state. Every future agent session in this project can check it and will use it. You never explain again.
### Scenario 2: Multi-Agent Feature Work
Work is tracked. Agents claim separate items, operate in parallel, and must pass proof gates before marking work done. No duplicate effort. No coordination bugs. No lost context.
### Scenario 3: Proof-Gated Promotion
An agent thinks itβs done. Proof gates fail. It canβt credibly claim completion until it fixes the failures and re-validates. Thatβs the difference between autonomy and theater.
---
## Ecosystem Status
**Real today (foundation):**
- Local-first repo runtime (initialize once, agents use it)
- Constitution routing + discovery (agents read, projects override)
- Proof gates (validation must pass)
- Core subsystems operational
**In progress:**
- DB Broker (multi-agent safe writes)
- Handoff/context passing surfaces
**Planned:**
- Trust automation (earn autonomy through proof history)
- Policy DSL (risk zones with approvals)
- Pattern learning (conventions inferred from repo)
---
<div align="center">
<strong>Agents will ship code whether you're ready or not.</strong><br>
<sub>Make them earn the merge.</sub>
<br><br>
<a href="https://github.com/DecapodLabs/decapod">β Star on GitHub</a> β’
<a href="https://crates.io/crates/decapod">π¦ Crates.io</a> β’
<a href="https://ko-fi.com/decapodlabs">β Support</a>
</div>
---
<div align="center">
<sub>
Built with Decapod Β· Proven with Decapod Β· Shipped with Decapod
</sub>
</div>