AI coding agent for your terminal — built for developers, not teams or enterprises (yet).
Quick Start · Features · Usage · Skills · Tools · Architecture · Contributing
hawk is an AI-powered coding agent that lives in your terminal. It reads your codebase, writes and edits files, runs tests, and manages git — all through natural language. Unlike IDE-bound tools, hawk works over SSH, in containers, and on any machine with a shell.
Developer path: one machine, keychain credentials, local memory. Run hawk path to check readiness. See docs/DEVELOPER-PATH.md.
- Model-agnostic — works with Claude, GPT-4, Gemini, DeepSeek, Ollama, and 75+ models through eyrie
- Zero CGO — single static binary, cross-compiled for linux/darwin/windows on amd64/arm64
- Privacy-first — your code never leaves your machine except to the LLM API you choose
- Extensible — 40+ built-in tools, MCP server support, community skill registry
# Install
brew install GrayCodeAI/tap/hawk
# First run — paste API key in /config (stored in macOS Keychain / Linux keyring)
hawk
# Verify readiness
hawk pathSee docs/SECURITY-DEVELOPER.md for the credential model. Do not put API keys in shell env or .env for hawk.
Or install via other methods:
# Go install
go install github.com/GrayCodeAI/hawk@latest
# Install script (with checksum verification)
curl -fsSL https://raw.githubusercontent.com/GrayCodeAI/hawk/main/install.sh | sh
# From source
git clone https://github.com/GrayCodeAI/hawk && cd hawk && go build .Built with Bubble Tea for a smooth, keyboard-driven experience with vim-style keybindings.
| Category | Tools |
|---|---|
| Files | Read, Write, Edit, LS, Glob, Grep |
| Shell | Bash, PowerShell, CronCreate, CronDelete |
| Git | GitCommit, SmartCommit, EnterWorktree, ExitWorktree |
| Web | WebFetch, WebSearch, CodeSearch |
| Tasks | TodoWrite, TaskCreate, TaskList, TaskUpdate |
| Code | LSP diagnostics, CodeSearch, NotebookEdit |
| MCP | ListMcpResources, ReadMcpResource |
For larger tasks, decompose work into parallel feature branches (power-user / future team workflows):
hawk mission "Add auth, rate limiting, and logging"Each sub-agent runs in its own git worktree with full autonomy.
Discover and install modular instruction packages for specialized workflows:
hawk skills search api # Search community registry
hawk skills install go-review # Install from GitHub
hawk skills audit # Security scan installed skillshawk asks before running dangerous tools. Auto-mode learns from your decisions, with emergency killswitch support.
Connect external tools via Model Context Protocol and get code intelligence through Language Server Protocol.
hawk # Start REPL
hawk -r abc123 # Resume session
hawk -c # Continue latest session
hawk --provider openai --model gpt-4o # Override providerhawk -p "explain this repo" # Print response, exit
hawk -p "fix tests" --allowed-tools "Bash(go test:*) Edit Read"
hawk exec "refactor auth module" # Full engine, non-interactive
hawk exec --auto full "add error handling" # Full autonomy
hawk exec --worktree "add rate limiting" # Isolated branch
hawk exec --agent reviewer "review last commit" # Custom personahawk path # Developer path readiness (setup + security + sandbox)
hawk doctor # Full health report (eyrie + yaad + tok panel)
hawk ecosystem # Ecosystem panel only
hawk yaad # Persistent memory graph
hawk yaad search <query> # Search yaad memories
hawk preflight # Quick ready-to-chat check
make path # Developer path verification
make smoke # Build + quick verification scriptSee docs/DEVELOPER-PATH.md and docs/SECURITY-DEVELOPER.md.
See docs/ecosystem-message-flow.md for how eyrie, yaad, and tok connect during a chat session.
In the TUI: /path, /ecosystem, /yaad, /yaad search <query>, /memory (AGENTS.md).
hawk daemon start # Background HTTP server on port 4590
hawk daemon status # Check if running
hawk daemon stop # Graceful shutdownEndpoints: GET /v1/health, POST /v1/chat (JSON or SSE streaming)
hawk mission "Add auth, rate limiting, and logging"
hawk mission --workers 6 "Refactor into microservices"
hawk mission --dry-run "What would this decompose into?"hawk works with any LLM provider. Developer path: paste keys in /config (stored in OS keychain) — not shell env or .env. Use hawk credentials status to verify.
| Provider | Key (via /config) |
|---|---|
| Anthropic | ANTHROPIC_API_KEY |
| OpenAI | OPENAI_API_KEY |
| Gemini | GEMINI_API_KEY |
| OpenRouter | OPENROUTER_API_KEY |
| Grok (xAI) | XAI_API_KEY |
| Groq | GROQ_API_KEY |
| DeepSeek | DEEPSEEK_API_KEY |
| Ollama | local — no key (OLLAMA_BASE_URL optional) |
Provider routing, model resolution, and retries are handled by eyrie.
For deployment-aware routing, set "deployment_routing": true in .hawk/settings.json
or export HAWK_DEPLOYMENT_ROUTING=true. Hawk will route canonical model IDs through
Eyrie's deployment catalog, so new models can be exposed by refreshing the catalog
instead of changing Hawk. In chat, run /refresh-model-catalog to fetch the latest
deployment-aware catalog into ~/.eyrie/model_catalog.json.
hawk is built in Go with a modular, layered architecture:
hawk/
├── cmd/ # CLI entry point (Cobra + Bubble Tea TUI)
├── internal/
│ ├── engine/ # Agent loop, compaction, self-improvement
│ ├── tool/ # 40+ built-in tools with safety layer
│ ├── config/ # Settings, budget tracking, agent personas
│ ├── session/ # Persistence (JSONL, WAL, checkpoints)
│ ├── api/ # HTTP API server
│ ├── daemon/ # Background HTTP/SSE server
│ ├── sandbox/ # Command isolation (landlock, seccomp, docker)
│ ├── permissions/ # User approval system with auto-learning
│ ├── hooks/ # Event-driven plugin system
│ ├── mcp/ # Model Context Protocol client
│ ├── intelligence/ # Code intelligence (repomap, memory, planner)
│ ├── multiagent/ # Mission orchestration, parallel execution
│ ├── observability/ # Analytics, metrics, logging, tracing
│ ├── resilience/ # Circuit breaker, rate limiting, retries
│ ├── feature/ # eval, fingerprint, voice, IDE integration
│ ├── bridge/ # External bridges (sight, inspect, sessioncapture)
│ ├── provider/ # Provider routing
│ └── system/ # Bus, cron, retention, shutdown
├── docs/ # Architecture, research notes
└── testdata/ # Test fixtures
hawk integrates these GrayCodeAI repos in three ways:
go.modmodules: eyrie, sight, inspect, tok, yaad — pinned module requirements.- External checkout +
go.work: eyrie, sight, inspect, tok, yaad, trace — clone ecosystem repos underexternal/<repo>.go.worklists the local external checkouts. CI clones the same layout via.github/actions/checkout-eyrie. - Optional CLI (no Go import): trace — installed separately;
hawkshells intotracefor session capture when present.
Cross-repo types (severity, etc.) are exported from github.com/GrayCodeAI/hawk/shared/types so sight / inspect / tok do not import internal/.
You may keep a personal parent go.work that lists alternate clones on disk for multi-repo development.
| Component | Repository | Purpose |
|---|---|---|
| hawk | This repo | AI coding agent |
| eyrie | GrayCodeAI/eyrie | LLM provider runtime |
| sight | GrayCodeAI/sight | Diff-based code review (hawk sight) |
| inspect | GrayCodeAI/inspect | Site audit library |
| tok | GrayCodeAI/tok | Tokenizer & compression |
| yaad | GrayCodeAI/yaad | Graph-based memory |
| trace | GrayCodeAI/trace | Session capture CLI |
- Go 1.26+
go build . # Build binary
go test -race ./... # Run all tests with race detector
make ci # Run full CI suite (lint, test, security)
make cover # Generate coverage reporthawk follows Go conventions: cmd/ for entry points, internal/ for private code, tests alongside source files. See docs/architecture.md for details.
We welcome contributions! Please see CONTRIBUTING.md for development setup, commit conventions, and the PR process.
Quick start:
- Fork and create a branch:
git checkout -b feat/short-description - Make changes in small, focused commits
- Run
make cilocally - Open a pull request
Use Conventional Commits for commit messages — release-please uses them for versioning.
MIT — see LICENSE for details.
© 2026 GrayCode AI