CC Pocket

Name: cc-pocket
Author: heypandax

Drive Claude Code — or OpenAI Codex — on your computer from your phone, from anywhere, not just your LAN. Start/resume sessions, browse working directories, send prompts, and approve or deny the agent's tool-permission requests remotely. Pick your agent (Claude or Codex) per session; either way, streaming output, command and file-change approvals, and interrupts all work the same. Traffic flows through a zero-knowledge relay that only ever forwards end-to-end-encrypted ciphertext. Clean-room Kotlin, MIT.

🌐 Website: https://heypandax.github.io/cc-pocket/ · 📱 Get the app: App Store (iPhone & iPad) · Android APK (GitHub Releases) · 🖥️ Desktop app: macOS (.dmg, signed) · Windows (.msi)

flowchart LR
    phone["📱🖥️ CC Pocket<br/>(phone · desktop)"] -- "wss · ciphertext" --> relay["relay<br/>(zero-knowledge broker)"]
    relay -- "wss · ciphertext" --> daemon["daemon<br/>(your computer)"]
    daemon -- "stdio" --> agent["claude / codex CLI"]

The relay pairs phone ↔ computer and routes opaque encrypted frames between them; it holds no message content and no private keys. The phone and the daemon run an end-to-end session (P-256 ECDH + HKDF + AES-256-GCM, an X3DH/Noise-style handshake) so plaintext never leaves the two trusted endpoints.

What you can do from your pocket

Approve from anywhere — tool-permission requests reach your phone the moment Claude raises one. Allow or deny in seconds; if you don't, it times out to a safe deny.
Set how much it asks — four execution modes (ask each step, auto-edit, plan, full auto), a persisted default mode and reasoning effort, plus per-session allow rules — switchable mid-conversation.
Pick up any session — resume the exact Claude session you left running on your computer, or start a fresh one in any repo; hand it back to the desktop later with claude --resume.
Watch it think, live — real-time streaming output, code blocks, tool events and background-task status, exactly as they render in the terminal.
Browse projects as a tree — drill through your computer's folders level by level (or a flat recents list), filter as you type, with a live breadcrumb and per-project session counts.
Pick Claude or Codex — choose the agent when you start a session and drive OpenAI Codex with the same remote, step-by-step approval as Claude: stream its output, approve its commands and diffs one step at a time, interrupt anytime. Codex sessions get a permission preset (Cautious / Balanced / Autonomous / Full auto) mapped to Codex's approval-policy × sandbox, and are tagged teal in lists and headers. A session stays bound to one backend.

Voice dictation, image attachments, slash-command autocomplete, model switching, and finish-time push notifications round it out. See the full feature list →

cc-pocket now also runs as a native desktop app (macOS / Linux / Windows), built from the same Compose Multiplatform codebase — a two-pane "mission control" for driving Claude Code or Codex on another computer with the same remote step-by-step approval, so it's no longer phone-only. Download: macOS (.dmg, signed) · Windows (.msi).

Modules

Module	What	Stack
`:protocol`	Shared wire protocol (`pocket/*` frames) — single source of truth	Kotlin Multiplatform + kotlinx.serialization
`:daemon`	Runs on your computer; drives `claude` as a subprocess, dials out to the relay	Kotlin/JVM + Ktor
`:relay`	Cloud broker: device-key pairing, ciphertext routing, multi-tenant, rate-limited	Kotlin/JVM + Ktor + SQLite
`:mobile`	The CC Pocket app	Compose Multiplatform — Android · iOS · desktop

Install

Two pieces: the app on your phone, and a hosted-relay daemon on your computer.

1. Get the app on your phone — App Store for iPhone & iPad, or the Android APK from GitHub Releases. (On a phone, the website links straight to the store; on a computer it shows a QR to scan.)

Or get the desktop app — cc-pocket also runs on your computer (drive another machine from it): macOS .dmg (Apple Silicon · signed & notarized) · Windows .msi (unsigned — SmartScreen → "More info → Run anyway"). Linux desktop: build from source.

2. Install the daemon on your computer — the relay is hosted for you.

macOS (Apple Silicon and Intel — each gets its own signed, notarized build):

brew install --cask heypandax/tap/cc-pocket
cc-pocket-daemon service-install --apply   # run on login, auto-reconnect
cc-pocket-daemon pair                       # prints a QR + 6-digit code

Then pair your phone (open the app, scan the QR or type the 6-digit code) and start driving Claude from it — full walkthrough in docs/USAGE.md. Upgrade with brew upgrade --cask cc-pocket.

Linux (x86_64) is one-click too:

curl -fsSL https://raw.githubusercontent.com/heypandax/cc-pocket/main/scripts/install.sh | bash
cc-pocket-daemon pair                       # prints a QR + 6-digit code

The installer pulls a self-contained tarball (bundled JRE — no system Java) from GitHub Releases, drops it under ~/.local, and registers a systemd --user service; re-run it to upgrade. Voice transcription on Linux uses ffmpeg instead of macOS's built-in afconvert.

Windows (x86_64) — install with Scoop (needs the Claude Code CLI installed — the daemon drives it):

scoop bucket add heypandax https://github.com/heypandax/scoop-bucket
scoop install cc-pocket-daemon
cc-pocket-daemon pair        # prints a QR + 6-digit code

scoop install puts cc-pocket-daemon on your PATH and registers a logon Scheduled Task so the daemon runs in the background (connecting to the hosted relay) — you just pair. Upgrade with scoop update cc-pocket-daemon. Other architectures (Linux arm64): build from source — see Quick start.

How pairing works

No accounts, no login. The daemon generates a static keypair on first run (its account id is the public fingerprint). To add a phone:

cc-pocket pair        # on your computer — prints a QR + a 6-digit code

On the phone, scan the QR (system camera or the in-app scanner) or type the 6-digit code. The phone registers its own device key and pairs end-to-end. Scanning the QR carries the daemon's key out-of-band, so even a malicious relay can't MITM that path.

See docs/SECURITY.md for the full threat model and the trust-without-trusting-us argument (open source, self-hostable, zero content logging).

Quick start

Requires JDK 17 and an installed, logged-in claude CLI.

Local single-machine (no relay), for development:

./gradlew :protocol:check                         # protocol contract test
./gradlew :daemon:run --args="run"                # daemon — local WebSocket on 127.0.0.1:8765
./gradlew :daemon:run --args="test-client"        # drive it against the real claude
#   dirs · ls <wd> · open <wd> [resumeId] · say <text> · cd <wd> · mode <m> · allow · deny · quit

Through the relay (off-LAN), the real product path:

./gradlew :daemon:installDist                      # build the launcher
daemon/build/install/cc-pocket-daemon/bin/cc-pocket-daemon \
  run --relay wss://<your-relay> --claude-bin ~/.local/bin/claude
# then, in another terminal:
daemon/build/install/cc-pocket-daemon/bin/cc-pocket-daemon pair

Build the app: Android via ./gradlew :mobile:composeApp:assembleDebug; iOS via iosApp/iosApp.xcodeproj (Xcode). See docs/ios-device.md for on-device install.

Docs

Website / landing page — https://heypandax.github.io/cc-pocket/
Full feature list — https://heypandax.github.io/cc-pocket/features.html
User guide (中文使用文档) — docs/USAGE.md
Run / operate the daemon — docs/RUN.md
Security model & threat analysis — docs/SECURITY.md
iOS device build & install — docs/ios-device.md
Relay deployment (Caddy + Cloudflare + systemd) — deploy/README.md
Requirements — docs/REQUIREMENTS.md
Implementation plan — docs/cc-connect-cc-connect-sequential-graham.md
UI design (claude.ai/design handoff) — docs/design/
Provenance / clean-room statement — docs/ANTIPLAGIARISM.md

License

MIT — see LICENSE.