OpenForge is a local-first control plane for AI programming CLIs. It gives developers one Web console for managing projects, persistent terminal sessions, AI tool configuration, models, API keys, Agents, Skills, Templates, plugins, usage visibility, and session history across Claude Code, OpenCode, and Codex.
OpenForge is built for self-hosted developer machines and private workspaces. The Gateway owns filesystem access, SQLite persistence, tmux sessions, WebSocket terminal traffic, encryption, and CLI process lifecycle. The Web console is a pure Next.js SPA that talks to the Gateway over HTTP and WebSocket.
OpenForge is in MVP / local-first release-candidate development. The core Gateway, Web console, tmux terminal flow, authentication, encrypted API key storage, project setup, adapter discovery, provider model profiles, live model sync, and management surfaces are in place for local user testing.
Codex app-server lifecycle work is currently experimental and intentionally guarded behind the Web console's experimental features area. Hosted collaboration, billing, cloud deployment, and autonomous remote execution are not part of the current local-first MVP.
- Keep long-running AI CLI work visible and recoverable from a browser.
- Manage Claude Code, OpenCode, and Codex sessions without mixing their local config files by hand.
- Keep terminal persistence in tmux, not in a browser tab or database log.
- Centralize project templates, Agents, Skills, API keys, models, and local diagnostics in one developer control surface.
- Stay local-first: secrets, project paths, terminal processes, and SQLite state remain on the host running the Gateway.
- Project create/import flows with AI tool config generation and compliance checks.
- tmux-backed terminal sessions that survive browser disconnects and Gateway restarts.
- Adapter discovery and gated session launch for Claude Code, OpenCode, and Codex.
- Provider model profiles with encrypted API key storage and live model sync for OpenAI-compatible provider endpoints.
- Agent, Skill, Template, plugin, usage, history, notification, and settings surfaces in the Web console.
- Session snapshots, terminal focus mode, command palette prototype, and local diagnostics export.
- WebSocket event stream for session status, notifications, and cache refresh.
Browser xterm.js
-> WebSocket
-> Gateway
-> node-pty
-> tmux attach
-> AI CLI process
Repository layout:
packages/
cli/ npm-distributed OpenForge CLI wrapper
gateway/ Express, WebSocket, tmux/node-pty, SQLite, adapters, services
web/ Next.js App Router, React, Tailwind CSS, xterm.js
docs/ architecture, release, smoke-test, trial, and localized docs
templates/ built-in AI CLI configuration templates
Key rules:
- Gateway and Web are separate services. Gateway API behavior does not live in Next.js API routes.
- REST APIs are under
/api/v1; terminal traffic uses/ws/terminal/:sessionId. - tmux is the persistence layer for terminal sessions.
- Terminal history is recovered from tmux capture-pane, not stored in SQLite.
- API keys are decrypted only in Gateway memory and injected into CLI sessions through tmux environment variables.
- Node.js 20 or newer
- pnpm 9 or newer for source development
- tmux 3.2 or newer
- SQLite-compatible local filesystem
- Claude Code, OpenCode, and/or Codex installed on
PATHfor real AI CLI sessions
On Windows, run OpenForge inside WSL for the built-in browser terminal. Native Windows installs can still use the management UI, but persistent terminal sessions depend on tmux.
npm install -g openforge
openforge doctor
openforge startOpen the Web console at the URL printed by openforge start.
The npm package installs the OpenForge CLI wrapper. It does not install tmux,
Claude Code, OpenCode, or Codex. Install the AI CLI tools you plan to use
separately and make sure they are available on PATH.
Install dependencies:
pnpm installCreate a local .env file. Do not commit it.
OPENFORGE_PORT=48731
OPENFORGE_WEB_PORT=48732
NEXT_PUBLIC_GATEWAY_URL=http://127.0.0.1:48731
OPENFORGE_MASTER_KEY=<64-hex-characters-from-openssl-rand-hex-32>
OPENFORGE_JWT_SECRET=<32+-character-random-secret>Start the Gateway and Web console in separate shells:
pnpm --filter @openforge/gateway dev
pnpm --filter @openforge/web dev -- --hostname 127.0.0.1 --port 48732Open the Web console:
http://127.0.0.1:48732
Run focused checks:
pnpm --filter @openforge/web typecheck
pnpm --filter @openforge/web test
pnpm --filter @openforge/gateway typecheck
pnpm --filter @openforge/gateway test
git diff --checkRun all package checks when preparing a release-sized change:
pnpm -r typecheck
pnpm -r test
pnpm -r build
pnpm build:npm
pnpm verify:npm
pnpm smoke:npmFor Codex Background Tasks release acceptance, also run
pnpm smoke:codex-app-server on a host with Codex CLI installed. The Web
prototype intentionally keeps prompt/turn input disabled for beta feedback.
- Architecture
- Product requirements
- Development plan
- API reference
- Open source readiness
- External evidence gates
- Contributing
- Security policy
- Security notes
- Smoke test guide
- Release plan
- Troubleshooting
- Never commit
.env, SQLite databases, API keys, JWT secrets, encryption keys, generated credentials, or personal AI CLI config. - Keep local Claude Code, Codex, and OpenCode user-level config outside this repository.
- Gateway validates project paths and rejects traversal, symlink escapes, and sensitive system paths.
- WebSocket terminal access requires JWT authentication and session-scoped attach credentials.
- OpenForge is local-first, but local-first does not remove the need to treat terminal access and API keys as sensitive.
OpenForge is released under the MIT License.