Skip to content

anhtaiH/agent-harness

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
bin
bin
 
 
docs
docs
 
 
runtime
runtime
 
 
src
src
 
 
tests
tests
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
npm-shrinkwrap.json
npm-shrinkwrap.json
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 

Repository files navigation

Agent Harness

Agent Harness is a local control plane for agentic engineering. It gives Codex, Claude, Cursor, and similar tools the same task packets, worktrees, evidence gate, memory inbox, PR-review flow, peer-review loop, and connector-write guardrails.

The user-facing workflow is natural language. You ask an agent to do work; the agent starts or resumes a harness task, uses the MCP/tools itself, and finishes with evidence.

Install

Run this from inside the repo you want agents to work on:

npx --yes github:anhtaiH/agent-harness setup

Setup detects the current git repo, chooses a workspace name, creates a runtime under ~/.agent-harness/<workspace>/, copies a self-contained source bundle into that runtime, installs runtime dependencies, creates safe shims, generates a local profile from the repo, and runs a doctor check.

When Codex, Claude, or Cursor are present, setup also installs managed user/app adapters so the agent can find the harness when you open the app later. Existing instruction files are preserved with marker-delimited managed blocks, restore metadata is kept under the local runtime, and project-local adapter files are added to .git/info/exclude instead of tracked git state.

For unattended setup:

npx --yes github:anhtaiH/agent-harness setup --yes

For a named workspace:

npx --yes github:anhtaiH/agent-harness setup --workspace my-product --yes

First Prompt

After setup, open Codex, Claude, or Cursor and try:

Use the agent harness for this repo. Start a task packet, inspect the checkout, and report what is ready for agentic work.

For real work:

Use the agent harness to fix ENG-123 in yolo mode. Keep the implementation in a harness worktree, run verification, get an independent review, and finish with evidence.

For PR review:

Review PR 12345 quickly with the harness. Draft only high-confidence comments and do not post to GitHub.

Daily Commands

These are for humans when they want status or troubleshooting:

agent-harness doctor
agent-harness where
agent-harness open
agent-harness examples
agent-harness upgrade
agent-harness uninstall --restore-adapters

Agents should use MCP tools or the runtime backend themselves. Humans should not need to type backend paths during normal work.

App Adapters

Setup makes the harness visible to the common agent surfaces without replacing the user's existing rules:

  • Codex: adds a managed block to the active user instructions file and registers the harness MCP server in Codex's user MCP config.
  • Claude: adds a managed block to the user memory file, registers MCP with claude mcp add --scope user when available, and writes ignored repo-local CLAUDE.local.md guidance.
  • Cursor: writes ignored repo-local .cursor/rules/agent-harness.mdc and creates Cursor's user MCP config when it is missing. Existing Cursor MCP config is left unchanged unless setup is run with --force.

Use agent-harness where to inspect what was installed. Use agent-harness uninstall --restore-adapters to remove managed blocks, managed local files, shims, and tool registrations.

What It Does

  • Creates source-backed task packets before non-trivial work.
  • Uses harness-managed worktrees for implementation.
  • Requires evidence before completion.
  • Runs independent review lanes for higher-risk work.
  • Builds PR review packets, classifies risk, and drafts private comments only.
  • Keeps memory local as source-backed candidates until a human promotes it.
  • Allows yolo mode for broad local shell autonomy while keeping hard stops for secrets and production-affecting actions.
  • Uses task-scoped connector-native write intents for Confluence, Jira, Slack, and GitHub maintenance writes.

Safety Model

Runtime state is local by default. The generic repo does not ship project-specific knowledge, personal memory, task history, worktrees, metrics, generated caches, or connector-derived evidence.

Hard stops remain:

  • credential and secret reads
  • token exfiltration patterns
  • production-affecting actions without explicit task scope
  • automatic PR review comment posting from the PR-review flow

External org writes are allowed through task-scoped connector-native tools. The harness does not require raw token environment variables.

Learn More

Development

npm ci
npm test

The test suite exercises no-clone setup, runtime self-containment, profile generation, task/evidence flows, PR-review smoke paths, write intents, eval smoke checks, and uninstall dry runs.

About

No description, website, or topics provided.

Resources

Readme

Security policy

Security policy
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages