MartinLoop has been accepted into the NVIDIA Inception program.
Your AI coding run estimated $2.40.
It kept retrying until the bill hit $65.
47 attempts. No hard stop. No rollback. No audit trail. Nothing merged.
MartinLoop exists so that does not happen silently.
AI coding agents are useful. Unbounded retry loops are not.
MartinLoop wraps Claude Code, Codex, and custom agent runs with budget caps, policy checks, verifier gates, rollback evidence, and inspectable JSONL run records.
A typical autonomous coding loop keeps attempting work until tests pass. Without a governance layer, that loop can keep spending, mutate files outside the intended scope, lose track of why it failed, and leave teams without a clean audit trail.
Autonomous coding loops are powerful, but the usual pattern is attempt, check, retry, repeat, with no strong answer to:
- What changed?
- What did it cost?
- Why was it allowed?
- Why did it stop?
- Can we inspect or resume it later?
MartinLoop governs the failure mode.
MartinLoop wraps AI coding loops with a governance layer.
It does not try to replace the agent pattern. It makes that pattern safe to run.
| Capability | Current behavior |
|---|---|
| Budget governance | Enforces maxUsd, softLimitUsd, maxIterations, and maxTokens; rejects attempts projected to exceed remaining budget and exits on budget or iteration exhaustion. Hard USD budget caps that stop work before the next attempt breaches policy. |
| Verifier gate | A run only reaches completed when the adapter result and verifier state pass. Unsafe verifier commands are blocked before agent execution. |
| Failure taxonomy | Classifies failures across 11 current classes, including hallucination, test regression, scope creep, repo grounding failure, environment mismatch, and budget pressure, that distinguishes real success from unsafe, invalid, or terminal behavior. |
| Safety leash | Evaluates verifier commands, file scope, dependency or migration changes that require approval, and secret-like values in task text. Policy-as-code. |
| Context integrity | Scans user prompts and tool output for injection patterns (authority inversion, instruction override, identity redefinition) before any attempt is admitted. Aborts with human escalation on detection. |
| Rollback evidence | Captures rollback boundaries and restore outcomes for repo-backed attempts when a persistence store is configured. |
| Context distillation | Carries a distilled summary of recent attempts and remaining constraints into subsequent attempts. |
| Run records | The CLI appends JSONL loop records under ~/.martin/runs/<workspaceId>.jsonl; lower-level stores can also persist contracts, ledgers, and attempt artifacts. |
The result is a runtime that can complete good work, refuse unsafe work, stop uneconomical work, and leave evidence behind.
The Ralph Loop is the failure mode where an AI coding agent keeps trying without knowing when it should stop.
The pattern is simple: attempt the task, run checks, retry on failure, repeat. The problem is not that the loop exists. The problem is that most implementations have no hard budget cap, no signed evidence layer, and no pre-execution control system. They know how to keep trying. They do not know when continuing is unsafe, uneconomical, or impossible.
MartinLoop solves the Ralph Loop problem by enforcing rules before damage happens:
- it stops the next attempt before budget overspend
- it classifies unsafe or invalid actions before execution
- it appends a structured JSONL audit record for every attempt
- it rolls back failed runs instead of leaving broken state behind
- it reduces runaway token growth with context distillation
If a Ralph-style loop has ever burned budget without producing a verified result, MartinLoop is designed to stop that failure mode before the next unsafe attempt runs.
| Layer | What it does |
|---|---|
| 1. Task Contract | Objective, verifier plan, repo root, allowed/denied paths, acceptance criteria, workspace, project, and budget. |
| 2. Policy & Budget | Defaults from martin.config.yaml; CLI flags override. Budget preflight rejects attempts before execution. |
| 3. Agent Adapters | Claude CLI, Codex CLI, direct-provider, and stub adapters normalize execution results into the core runtime contract. |
| 4. Safety & Verification | Verifier commands, file scope, approval-boundary changes, secret-like values, and grounding determine whether work is kept. |
| 5. Persistence | CLI writes JSONL records under ~/.martin/runs/. Repo-backed runs can also persist contracts, ledgers, diffs, and rollback artifacts. |
Same task, same starting state. MartinLoop completes in one verified attempt at $2.30. The uncontrolled loop retries four times, spends $5.20, and fails with no audit trail.
Martin Loop matters because it turns AI coding from an opaque experiment into something that can be governed, replayed, verified, and trusted.
Try the packaged demo locally:
npx martin-loop demo
cd martin-loop-demo
npm install
MARTIN_LIVE=false npx martin-loop run "Summarize the demo workspace and confirm the verifier is green" --verify "npm test"Challenge page: Can your AI coding agent finish this task under $3?
If the problem is familiar, star the repo so other builders can find the runtime before their next runaway agent loop.
npm install -g martin-loopThis installs the public martin-loop CLI package. This README is synced for martin-loop@0.1.7.
Want a safe sandbox first? Run npx martin-loop demo and MartinLoop will copy a disposable local workspace into ./martin-loop-demo.
The public package surface is:
- Install target:
npm install martin-loop - CLI target:
npx martin-loop - SDK target:
import { MartinLoop } from "martin-loop" - MCP target:
npx -y @martinloop/mcp
martin-loop and @martinloop/mcp are published separately. The root package is for CLI and SDK use; the MCP package is for MCP hosts.
@martinloop/mcp@0.2.0 exposes ten stdio tools plus read-only resources, resource templates, and prompts. martin_run remains the only tool that can execute work; the newer cockpit tools are read-only review helpers for recent runs, dossiers, attempts, and verifier results.
Recommended first-use flow:
martin_doctormartin_preflightmartin_runmartin_list_runs,martin_run_dossier,martin_inspect, ormartin_status
Use the published MCP package directly:
- Codex:
codex mcp add martin-loop -- npx -y @martinloop/mcp - Claude Code macOS/Linux:
claude mcp add --transport stdio --scope user martin-loop -- npx -y @martinloop/mcp - Claude Code Windows PowerShell/cmd:
claude mcp add --transport stdio --scope user martin-loop -- cmd /c npx -y @martinloop/mcp
If you just want to launch the server manually, the one-line command is:
npx -y @martinloop/mcpnpx martin-loop run "fix the auth regression" \
--budget 3.00 \
--verify "pnpm test"You can also pass the objective explicitly:
npx martin-loop run --objective "fix the auth regression" --budget 3.00 --verify "pnpm test"For a no-spend repo-local dry run, use the stub adapter:
$env:MARTIN_LIVE='false'
npx martin-loop run --objective "Summarize the current runtime state" --verify "pnpm --filter @martin/core test"
Remove-Item Env:MARTIN_LIVEnpx martin-loop inspect --file ~/.martin/runs/<workspaceId>.jsonl
npx martin-loop resume <loopId>inspect prints a portfolio summary for records in the file. resume looks up a persisted loop record by ID under ~/.martin/runs/.
martin-loop run <objective> [options]
--objective <text> The task to accomplish, or pass it as the first positional arg
--budget <n> Hard cost cap in USD
--budget-usd <n> Alias for --budget
--soft-limit-usd <n> Soft budget threshold in USD
--verify <cmd> Verifier command after each attempt
--max-iterations <n> Maximum number of attempts
--max-tokens <n> Maximum total token budget
--engine <name> Adapter to use: claude (default) or codex
--model <name> Override the adapter model
--cwd <path> Repo root for the run
--allow-path <glob> Restrict agent writes to this path pattern; repeatable
--deny-path <glob> Block this path pattern; repeatable
--accept <criterion> Add an acceptance criterion; repeatable
--config <path> Path to a martin.config.yaml file
--workspace <id> Workspace ID for the run record
--project <id> Project ID for the run record
--metadata <key=value> Attach metadata to the run record; repeatable
The public CLI also includes demo, inspect, and resume.
Drop a martin.config.yaml in your repo root to set governance defaults:
budget:
maxUsd: 5.00
softLimitUsd: 3.75
maxIterations: 5
maxTokens: 40000
governance:
destructiveActionPolicy: approval
telemetryDestination: local-only
verifierRules:
- pnpm testCLI flags override config values when provided.
npm install martin-loopimport {
MartinLoop,
createClaudeCliAdapter,
createCodexCliAdapter,
runMartin
} from "martin-loop";
const loop = new MartinLoop({
adapter: createClaudeCliAdapter({ workingDirectory: process.cwd() }),
defaults: {
workspaceId: "my-workspace",
projectId: "my-project",
budget: {
maxUsd: 3.00,
softLimitUsd: 2.25,
maxIterations: 3,
maxTokens: 20_000
}
}
});
const result = await loop.run({
task: {
title: "Fix auth regression",
objective: "Fix the failing auth regression tests",
verificationPlan: ["pnpm test"],
repoRoot: process.cwd()
}
});
console.log(result.decision.status);Use Codex instead of Claude by swapping adapters:
const loop = new MartinLoop({
adapter: createCodexCliAdapter({ workingDirectory: process.cwd() })
});The lower-level runMartin function is also exported for callers that want to assemble the runtime input directly.
| Package or app | Role |
|---|---|
martin-loop |
Root public npm facade that vendors the runtime, CLI, adapters, and contracts into dist/. |
@martin/contracts |
Shared types for loops, policy, governance, budget, telemetry, and rollback. |
@martin/core |
Runtime controller, policy engine, safety leash, grounding, persistence, and rollback logic. |
@martin/adapters |
Claude CLI, Codex CLI, direct-provider, and stub adapter surfaces. |
@martin/cli |
CLI implementation for run, demo, inspect, and resume. |
@martinloop/mcp |
MCP server with governed execution plus read-only run review tools. |
Users install the root martin-loop package for the CLI and SDK, or the standalone @martinloop/mcp package for MCP hosts.
Requirements:
- Node 20+
- pnpm 10.x
git clone https://github.com/Keesan12/martin-loop.git
cd martin-loop
pnpm install
pnpm test
pnpm lint
pnpm build
Current RC gate commands:
pnpm oss:validate
pnpm public:smoke
pnpm rc:validate
pnpm release:matrix:local
pnpm --filter @martinloop/mcp verify:releaseCaution: This package is live on npm. Public releases should use the guarded GitHub Actions release workflow, with versioning and public copy verified before publishing.
Helpful docs:
- OSS quickstart
- OSS examples
- Under-$3 benchmark challenge
- Directory submission pack
- Integration outreach pack
- Claude Code walkthrough
- Ralph-style loop safety guide
- Release surface report
git checkout -b feat/your-feature
pnpm lint
pnpm test
git commit -m "feat: describe what you built"
git push -u origin feat/your-featureConventional commit prefixes: feat:, fix:, chore:, docs:, refactor:, and test:.
⭐Give the repo a star⭐ if you think AI coding needs budgets, brakes, and receipts.
APACHE 2.0 Licensed · martinloop.com · keesan@martinloop.com
"AI coding accountability: completes good work, refuses unsafe work, stops uneconomical work."
