hourglass
agent
Warn
Health Warn
- No license — Repository has no license file
- Description — Repository has a description
- Active repo — Last push 0 days ago
- Low visibility — Only 5 GitHub stars
Code Warn
- process.env — Environment variable access in server/src/acp/harness.ts
- process.env — Environment variable access in server/src/acp/session-manager.ts
- fs module — File system access in server/src/acp/session-manager.ts
- process.env — Environment variable access in server/src/acp/vibe-protocol-peer.ts
Permissions Pass
- Permissions — No dangerous permissions requested
Purpose
This tool is an AI agent orchestration platform designed to manage multiple coding agents (such as Claude and Vibe) through a unified interface. It provides session management, real-time streaming, and task scheduling using a Fastify backend and a Next.js frontend.
Security Assessment
The application requires API keys (Anthropic, Mistral) to function, which it reads securely via environment variables. It uses file system access to manage local SQLite databases. There are no hardcoded secrets, no dangerous permissions requested, and no evidence of unauthorized network requests or arbitrary shell command execution. However, the underlying source code was not manually reviewed line-by-line, so standard caution applies. Overall risk is rated as Low.
Quality Assessment
The project is active, with its last push occurring today. While it claims to be MIT licensed in the README, the automated scan failed to find a formal license file in the repository, which is a minor legal/administrative concern. Additionally, the tool has very low community visibility with only 5 stars, meaning it has not been widely tested or vetted by a broader audience.
Verdict
Use with caution due to very low community visibility and a missing license file, though the underlying code behavior appears fundamentally safe.
This tool is an AI agent orchestration platform designed to manage multiple coding agents (such as Claude and Vibe) through a unified interface. It provides session management, real-time streaming, and task scheduling using a Fastify backend and a Next.js frontend.
Security Assessment
The application requires API keys (Anthropic, Mistral) to function, which it reads securely via environment variables. It uses file system access to manage local SQLite databases. There are no hardcoded secrets, no dangerous permissions requested, and no evidence of unauthorized network requests or arbitrary shell command execution. However, the underlying source code was not manually reviewed line-by-line, so standard caution applies. Overall risk is rated as Low.
Quality Assessment
The project is active, with its last push occurring today. While it claims to be MIT licensed in the README, the automated scan failed to find a formal license file in the repository, which is a minor legal/administrative concern. Additionally, the tool has very low community visibility with only 5 stars, meaning it has not been widely tested or vetted by a broader audience.
Verdict
Use with caution due to very low community visibility and a missing license file, though the underlying code behavior appears fundamentally safe.
AI agent orchestration platform. Manage multiple coding agents (Claude, Vibe) through a unified interface with session management, real-time streaming, and task scheduling.
README.md
Hourglass
AI agent orchestration platform. Manage multiple coding agents (Claude, Vibe) through a unified interface with session management, real-time streaming, and task scheduling.
Structure
hourglass/
├── server/ # Fastify backend — WebSocket, ACP, SQLite
├── ui/ # Next.js frontend — Kanban, sessions, files
Quick Start
# Install all dependencies
npm install
# Copy and configure environment variables
cp .env.example .env
# Start both server and UI in development mode
npm run dev
- UI: http://localhost:7777
- Server: http://localhost:7778
Scripts
| Command | Description |
|---|---|
npm run dev |
Start server + UI in dev mode |
npm run dev:server |
Start only the server |
npm run dev:ui |
Start only the UI |
npm run build |
Build both packages |
npm run start |
Start production server |
npm run test |
Run server tests |
npm run db:push |
Push database schema |
Environment Variables
| Variable | Description | Default |
|---|---|---|
PORT |
Server port | 7778 |
HOST |
Server host | localhost |
ANTHROPIC_API_KEY |
Anthropic API key | — |
MISTRAL_API_KEY |
Mistral API key | — |
License
MIT
Reviews (0)
Sign in to leave a review.
Leave a reviewNo results found