The self-hosted control plane for background coding agents.
Run Claude Code, Codex, Gemini CLI, Aider, and any terminal agent on your own machines with durable sessions, watchdog supervision, and remote control.
brew install darioblanco/tap/pulpoThat's it. The daemon auto-starts when you run your first command.
Linux / manual install
# Linux (systemd)
curl -fsSL https://github.com/darioblanco/pulpo/releases/latest/download/pulpod-x86_64-unknown-linux-gnu.tar.xz | tar xJ
sudo mv pulpod pulpo /usr/local/bin/
pulpod # or: make service-install-linuxFor a one-liner install or upgrade that works on macOS and Linux, run the script that auto-detects your OS/arch:
curl -fsSL https://raw.githubusercontent.com/darioblanco/pulpo/main/scripts/install-pulpo.sh | bashSet BIN_DIR or TARGET when invoking the script if you need a different install directory or target triple. Re-running the script always pulls the latest release, so it doubles as the update command.
Download binaries from GitHub Releases. Windows uses Docker runtime (no tmux required).
# Spawn an agent on infrastructure you control
pulpo spawn my-api --workdir ~/repos/my-api -- claude -p "Fix failing auth tests"
# Check status
pulpo ls
# Open the dashboard (installable as PWA on your phone)
pulpo uiID NAME STATUS BRANCH COMMAND
a1b2c3d4 my-api [PR] idle fix-auth +42/-7 ↑1 claude -p "Fix failing auth tests"
Coding agents are turning into background workers.
That creates an infrastructure problem:
- your laptop is a bad place for long-running agent work
- SSH + tmux is not a control plane
- when a machine reboots, the session state should not disappear
- when an agent is waiting, stuck, finished, or lost, you should know without attaching
- when multiple agents work on one repo, they should not step on each other
Pulpo is built for that gap. It runs agents on your own machines, keeps session state durable, supervises execution, and gives you CLI, API, and phone-friendly web control over the same underlying sessions.
Pulpo treats every agent run as a managed session:
- You start a command as a session
pulpodruns it on a runtime backend (tmuxordocker)- Pulpo tracks lifecycle, output, git state, and intervention history
- You inspect, resume, stop, schedule, or redirect it from anywhere
That model works for Claude Code, Codex, Gemini CLI, Aider, shell scripts, and other terminal tools.
# Parallel agents on the same repo - each gets its own worktree
pulpo spawn frontend --workdir ~/repo --worktree -- claude -p "redesign sidebar"
pulpo spawn backend --workdir ~/repo --worktree -- codex "optimize queries"
# Spawn on a remote machine by name
pulpo --node mac-mini spawn review -- claude -p "security audit"
# Schedule nightly runs on the right machine
pulpo schedule add nightly "0 3 * * *" --workdir ~/repo -- claude -p "review code"
# Run in Docker when the task needs stronger isolation
pulpo spawn risky --runtime docker -- claude --dangerously-skip-permissions -p "refactor"Pulpo is for developers and small teams who:
- want coding agents to run on servers or always-on machines, not laptops
- need private-network access, self-hosting, or vendor independence
- use more than one agent tool and do not want to standardize on one vendor
- care about recovery, auditability, and remote supervision
Hosted agent products are improving quickly, but they optimize for vendor-owned cloud workflows.
Pulpo is the opposite bet:
# your machines
# your network access
# your sessions
# your policies
# your choice of agentIt is strongest when you need:
- self-hosted execution (sovereign by architecture, not by contract)
- remote supervision across multiple machines
- explicit recovery semantics after failure or reboot
- worktree isolation for parallel agent work
- Docker isolation for higher-risk sessions
- command-agnostic support instead of one vendor workflow
- Durable sessions: explicit lifecycle states (
creating,active,idle,ready,stopped,lost) with resume and stored output. - Watchdog supervision: idle detection, memory-pressure intervention, ready cleanup, error patterns, token tracking, and git telemetry.
- Multi-node fleet control: Tailscale discovery + manual peer config. Manage sessions across machines from one dashboard or CLI.
- Execution isolation: use worktrees for parallel repo work and Docker for sandboxed runs.
- Operational surfaces: CLI, web UI/PWA, REST API, SSE, MCP server, Discord bot, and notifications.
- Command-agnostic execution: Claude Code, Codex, Gemini CLI, Aider, shell scripts, and other terminal commands.
The product contract is simple:
- A session is a first-class object with durable state
- A runtime backend executes that session on infrastructure you control
- Lifecycle transitions are explicit and inspectable
- Recovery and intervention behavior are daemon-owned, not ad hoc shell state
Everything else builds on top of that core.
| Pulpo | agent-deck | cmux | NTM | |
|---|---|---|---|---|
| Multi-node fleet | Yes | No | No | No |
| Session lifecycle + resume | 6 states | TUI only | No | Status only |
| Watchdog (memory, idle, errors) | Yes | No | No | No |
| Git tracking (branch, diff, ahead) | Yes | No | No | No |
| Worktrees | Any agent | Yes | Claude only | No |
| Scheduling | Built-in cron | No | No | No |
| Docker runtime | Yes | Yes | No | No |
| Adopts external tmux | Yes | No | No | No |
| Command-agnostic | Any command | Generic | Claude only | 3 agents |
| Web UI + mobile PWA | Yes | Web | No | Dashboard |
Hosted coding agents are a different category. They generally win on managed cloud convenience. Pulpo is for cases where the runtime itself needs to live on infrastructure you control.
Licensed under either of Apache-2.0 or MIT at your option.