A cloud coding agent powered by Claude that reads repos, writes patches, and opens PRs β all steered from Crustocean chat.
Conch connects to a GitHub repository and uses Claude's tool calling to:
- Read & explore files and directory structures
- Search code for patterns, functions, and dependencies
- Write patches with precise, targeted changes
- Create pull requests with descriptive titles and bodies
- Manage PRs β merge, comment, inspect checks and reviews
- Clean up β delete feature branches after merge
All work streams live in the Crustocean UI as an Agent Run with tool cards, status updates, permission gates, and a collapsible run timeline.
- Node.js >= 18
- A Crustocean account with agent creation permissions
- An Anthropic API key (Claude)
- A GitHub personal access token with
reposcope (classic) or Contents + Pull requests permissions (fine-grained) @crustocean/sdkmust be available β either published to npm or linked locally from the main Crustocean repo (see SDK setup below)
/agency create my-coding-room
/boot conch --persona "Cloud coding agent. Reads repos, writes patches, opens PRs."
/agent verify conch
Copy the agent token from /agent details conch.
cp .env.example .envEdit .env:
CRUSTOCEAN_API_URL=https://api.crustocean.chat
CONCH_AGENT_TOKEN=<your-agent-token>
ANTHROPIC_API_KEY=<your-anthropic-key>
npm install
npm startIn your Crustocean agency:
!conch connect owner/repo
Then set the GitHub token (encrypted, per-agency):
/agent customize conch github_token ghp_your_token --agency
If a default GITHUB_TOKEN is set in the environment, the second step is optional.
Once connected, @mention Conch with any coding task:
@conch fix the null check bug in src/api/users.ts
@conch add input validation to the signup form
@conch refactor the database queries to use parameterized statements
@conch add JSDoc comments to all exported functions in src/utils/
| Command | Description |
|---|---|
!conch connect owner/repo |
Link a GitHub repository |
!conch disconnect |
Unlink the repository |
!conch status |
Show current repo connection |
!conch help |
Show available commands |
Mention "demo" in your message without a repo connected and Conch will use a simulated workspace with a known bug to demonstrate the full workflow.
- Status banner β live text showing what Conch is doing
- Tool cards β each file read, search, and write shown with timing
- Permission gate β approve/deny before a PR is created or merged
- Streaming response β Conch's explanation rendered token-by-token
- Run timeline β collapsible log of every tool call and result
index.js # Main entry: connection, message handling, run orchestration
lib/
anthropic.js # Claude streaming API client with tool-use loop
tools.js # Tool definitions and workspace execution mapping
repo-config.js # Per-agency repo config (slug in notes, token in agent config)
diff.js # Shared unified diff generator
demo.js # In-memory demo workspace for showcasing without GitHub
workspace/
index.js # GitHubWorkspace β read, write, search, commit, PR lifecycle
github.js # GitHub API helpers with error handling and rate-limit awareness
Dockerfile
railway.toml
.env.example
- Workspace is local, not a separate package. It's ~500 lines, tightly scoped to what Conch needs, and keeping it inline makes the reference implementation self-contained.
@crustocean/sdkhandles the agent lifecycle (connect, socket, runs, streaming, permissions) and is the only external Crustocean dependency.- Staged writes are in-memory.
writeFilebuffers changes in aMap. Nothing touches GitHub untilcommit()is called during PR creation. This means changes are ephemeral per-run. - Atomic commits via Git Data API. Creates blobs, builds a tree, creates a commit, and updates the ref β no merge conflicts from concurrent contents API calls.
- Permission gates on
create_pull_request,merge_pull_request, anddelete_branchrequire explicit user approval in the Crustocean UI before executing. - File path validation rejects directory traversal (
..), null bytes, and absolute paths before they reach the GitHub API. - Write size limits (2 MB) prevent prompt-injected large writes from exhausting memory.
| Area | Status | Notes |
|---|---|---|
| Anthropic API key | Server-side only | Never exposed to chat |
| GitHub tokens | Per-agency encrypted | Stored via Crustocean API, decrypted at fetch time |
Shared GITHUB_TOKEN |
Use with caution | Single token serves all agencies β fine for self-hosting, risky in multi-tenant. See .env.example for details. |
| Destructive ops | Permission-gated | PR create, merge, and branch delete require explicit user approval |
| Branch deletion | Hard-blocked | main, master, and the default branch cannot be deleted |
| File paths | Validated | Traversal, null bytes, and absolute paths are rejected |
| Write size | Capped at 2 MB | Prevents memory exhaustion from large staged writes |
| Audit logging | Console-level | Risky operations are logged with structured context |
@crustocean/sdk is a private package. To make it available:
Option A β npm link (local development):
cd /path/to/crustocean/sdk
npm link
cd /path/to/conch
npm link @crustocean/sdkOption B β workspace reference (if co-located with the SDK):
Add to package.json, adjusting the path to where @crustocean/sdk lives relative to this repo:
"dependencies": {
"@crustocean/sdk": "file:../path-to-sdk"
}Option C β private registry:
Publish @crustocean/sdk to npm (private or public) and npm install will resolve it normally.
The included railway.toml is ready to go:
railway upSet environment variables in the Railway dashboard.
docker build -t conch .
docker run --env-file .env conchnpm install
node index.jsConch is a stateless worker β no database, no filesystem, no ports. It connects to Crustocean via WebSocket and to GitHub via REST API. Deploy anywhere that runs Node.js.
Edit lib/tools.js β add a definition to TOOL_DEFINITIONS and a case to executeTool(). For example, you could add a run_tests tool backed by an E2B sandbox.
Set CONCH_MODEL in .env. Any Anthropic model with tool-use support works.
Edit the SYSTEM_PROMPT constant in index.js to change Conch's behavior, coding style, or domain expertise.
MIT