comis

mcp
Guvenlik Denetimi
Uyari
Health Uyari
  • License — License: Apache-2.0
  • Description — Repository has a description
  • Active repo — Last push 0 days ago
  • Low visibility — Only 5 GitHub stars
Code Uyari
  • process.env — Environment variable access in .github/scripts/check-pr-description.mjs
  • process.env — Environment variable access in .github/scripts/verify-release-tag.mjs
Permissions Gecti
  • Permissions — No dangerous permissions requested

Bu listing icin henuz AI raporu yok.

SUMMARY

Govern the execution, memory, security, authority, and cost of every AI agent on your infrastructure.

README.md

Comis — an open-source, security-first platform for AI agent teams

An open-source, security-first platform for AI agent teams.
Messaging, durable workflows, recoverable context, scoped secrets, and operational visibility.

CI npm License GitHub Stars

Quick Start · Documentation · Capabilities · Contribute


Comis

Comis is an Apache-2.0 platform for running multiple AI agents across messaging channels, APIs, scheduled work, and auditable execution graphs. Each agent can have its own model, scoped memory and context, tools, budget, and secret policy; routing bindings direct traffic to agents.

Comis runs on infrastructure you control. Network access depends on the models, channels, tools, and media services you configure.

[!NOTE]
Development status: Comis is under active development. APIs and configuration may change, and deployments should be evaluated carefully before use in critical environments. See Current limitations and the threat model.

Quick Start

One-line install

For a managed macOS or Linux host:

curl -fsSL --proto '=https' --tlsv1.2 https://comis.ai/install.sh | bash

This downloads and runs the installer immediately. The managed-host installer can install Node.js and host dependencies, initialize Comis data, and register the daemon with systemd or PM2. On Linux, it also attempts to provision Chromium and Xvfb by default and can create a dedicated comis user for a systemd service.

Additional options

To inspect the installer and preview its changes before running it:

curl -fsSL --proto '=https' --tlsv1.2 https://comis.ai/install.sh -o comis-install.sh
less comis-install.sh
bash comis-install.sh --dry-run
bash comis-install.sh

If Node.js 22.19+ is already installed, install directly from npm:

npm install --global comisai
comis init

Direct npm installation does not install host tools, create a service account, or register a system service. Use bash comis-install.sh --help to review managed-installer opt-outs and service choices.

Complete the setup wizard and start the daemon when prompted. If you choose to start it later, run comis daemon start. Then open http://127.0.0.1:4766, or connect a messaging channel during setup. Verify the daemon with:

curl http://127.0.0.1:4766/health

For containers and production hosts, see the installation guides. Linux with Bubblewrap is the recommended deployment target for isolated tool execution.

Why Comis

Capability What it provides
Auditable multi-agent workflows Persistent DAGs with parallel nodes, barriers, retries, budgets, approval nodes, debate, voting, refinement, and map-reduce.
Recoverable context Canonical messages and tool results can be recovered through DAG-backed summaries and ctx_search, ctx_inspect, and ctx_expand.
Outcome-gated learning Trust-aware learning can distill corroborated successful strategies into reusable Mental Models with source-trajectory provenance; profile and topic revisions retain prior bodies.
Scoped operation Agent-facing memory and context are tenant- and agent-scoped; agents can have separate models, budgets, tool policies, and configurable secret allowlists, while global routing bindings direct traffic to them.
Operational visibility Traces, incident reports, delivery health, cache diagnostics, provider usage and cost accounting with 1-hour cache-write correction, best-effort tool attribution, opt-in spend ceilings, security audit records, and optional OpenTelemetry/Prometheus export.
Model flexibility Cloud providers, local Ollama and LM Studio models, fallback chains, provider-specific caching, and capability-aware scaffolding for smaller models.

Capabilities

  • Messaging: Telegram, Discord, Slack, WhatsApp, Signal, iMessage, LINE, IRC, Email, and Microsoft Teams, with platform-specific media and interaction support.
  • Tools and MCP: Browser, files, web, media, scheduling, memory, infrastructure, MCP client integrations, and a permission-gated MCP server.
  • Media: Speech-to-text, text-to-speech, image and video analysis, image generation, and document extraction.
  • Automation: Cron, heartbeat monitoring, background work, sub-agents, and durable execution graphs.
  • Interfaces: Web dashboard, CLI, JSON-RPC, WebSocket, ACP bridge primitives, and experimental OpenAI-shaped HTTP endpoints.
  • Storage: Local SQLite stores with FTS5, optional vectors, session history, delivery queues, and encrypted-by-default secret storage.

Typical workflows include routing support conversations to specialized agents, coordinating parallel research and synthesis, and running scheduled operational checks with a traceable result.

Security and Deployment

Comis treats model output and external content as untrusted. The platform includes AES-256-GCM encrypted secret storage by default, configurable per-agent secret allowlists, SSRF defenses, external-content wrapping, prompt-injection detection, memory-write validation, completed-response output guards, tool policy, and an audit trail persisted by default. Streaming consumers receive deltas before the final-response scan.

Isolation depends on the host:

  • Linux with Bubblewrap provides the strongest supported tool isolation.
  • macOS sandbox-exec is best-effort and does not provide the same boundary as Linux.
  • By default, the interactive terminal driver refuses to spawn without its jail; an explicit operator-only setting can bypass that jail. The ordinary exec tool can run directly on the host when its sandbox is disabled or unavailable. Disable exec or deploy with Bubblewrap where this risk is unacceptable.
  • Approval requests are available on explicitly wired paths when approvals are enabled; configured rules and default modes are not yet a universal policy engine.

Read THREAT_MODEL.md before enabling shell, browser, network, or third-party integrations.

Current Limitations

  • Code extensions currently require source changes through ports, adapters, hooks, and tools. Prompt skills can be uploaded or imported, but Comis does not yet provide a stable third-party code-plugin ecosystem.
  • Deterministic tests cover the core runtime extensively, but not every provider, channel, model, or deployment combination is validated live.
  • APIs and configuration may change during active development; review release notes before upgrading.

Architecture

Comis is a pnpm/TypeScript monorepo organized around hexagonal ports and adapters. core owns contracts and domain rules; adapters implement them; the daemon composition root wires the running system.

Layer Packages
Foundations shared, core
Runtime infra, memory, agent, orchestrator, scheduler
Interfaces channels, gateway, cli, web
Capabilities skills
Operations and distribution observability, observability-otel, daemon, comis

Build and validate from source:

git clone https://github.com/comisai/comis.git
cd comis
pnpm install
pnpm validate

Start with the architecture guide, package guide, and repository engineering protocol.

Contributing

Contributors can start in any of three tracks:

  • Core runtime: orchestration, memory, context, security, observability, and reliability.
  • Integrations: channels, model and media providers, MCP connections, tools, and deployment targets.
  • Documentation and DX: onboarding, examples, troubleshooting, dashboard workflows, accessibility, and translations.

Browse open issues or discuss a proposal in GitHub Discussions. Read CONTRIBUTING.md before opening a pull request; behavior changes follow test-first development and the full architecture and security validation gates.

If Comis is useful, star the repository to help other contributors discover it.

Community

Comis builds on prior work from pi-mono by Mario Zechner.

License

Comis is licensed under the Apache License 2.0. Commercial use, modification, redistribution, and private deployment are permitted under its terms.

Yorumlar (0)

Sonuc bulunamadi