A source-available command center for agents and agent activity — built on .NET 10.
Sovrant is a clean-room C# reimplementation inspired by the architecture and feature set of OpenClaude (the community fork of Anthropic's Claude Code). No Anthropic source code was copied, translated, or incorporated. Every line of Sovrant is original C# / .NET 10 code written from scratch — the project uses OpenClaude only as a functional reference for what an agentic coding tool should be able to do, not as a source of code.
We build Sovrant guided by three tenets:
- Be ethical with AI — Sovrant is designed with safety, trust boundaries, and responsible use at its core. We believe AI systems should be transparent, auditable, and operate within clearly defined human-controlled limits.
- Drive AI spend toward zero — by first-class support for free-tier and locally-hosted LLMs, Sovrant aims to make powerful AI accessible without recurring API costs. Paying for inference should be a choice, not a requirement.
- Minimise compute footprint — every architectural decision considers CPU, memory, and energy efficiency. Lower resource consumption means a smaller environmental impact and better performance on modest hardware.
Sovrant is a command center for AI — from conversational chat and directed agents to persistent teams, long-running missions, and parallel swarms. Runs can be fully autonomous, human-watched, or anywhere in between. Sovrant also connects to Claws — fully autonomous agent runtimes such as Pico Claw, Hermes, and Open Claw — via MCP, letting you observe and steer them from a single cockpit; future releases will let you launch Claws directly from Sovrant to handle tasks. It is not limited to coding — Sovrant powers chat interfaces, research workflows, business process automation, content creation, project management, and any task that benefits from tool-augmented, session-persistent AI.
The engine runs as a CLI agent, an OpenAI-compatible HTTP server, a desktop application (Windows/macOS/Linux), a web application (Blazor Server), an MCP server for IDE embedding, or via webhooks from Slack, Teams, Discord, and custom systems. Agents read and write files, execute shell commands, search the web, call tools autonomously, delegate to sub-agents, and maintain full conversation history across sessions — all with configurable permission controls.
Architecture note: The CLI, Server, Desktop, and Web are independent frontends. All consume the runtime layer (
Sovrant.Runtime) directly — the server does not depend on the CLI, and the desktop/web apps run the runtime in-process. You can deploy any frontend independently.
Runtime: .NET 10 / C# 14 License: Business Source License 1.1 — source-available, converts to Apache 2.0 on 2029-05-15. See LICENSE. Status: 58 tools. 25 agent templates. 32 built-in skills. 141 server endpoints + SignalR hub. Command Center cockpit + User Dashboard (Web + Desktop). Per-record privacy toggles. Optional Supabase/PostgreSQL backend. Multi-user with login, registration, per-user API tokens, workspaces, projects, and ownership scoping. Team orchestration with per-team run profiles. Swarm orchestrator. Mission engine. Inter-agent coordination. Cost tracking. Eval framework. MCP server mode. Desktop app. Web app (embedded + remote mode). Frontend SDK. 2,222 tests passing across 10 projects.
| Web | Desktop |
|---|---|
 |
 |
- Quick Start
- Command Center
- User Dashboard
- Key Features
- Architecture
- Tools
- Agent System
- Missions
- Eval Framework
- Providers
- Server API
- Desktop App
- Web App
- Frontend SDK
- MCP Server Mode
- LSP Integration
- Persistence
- Configuration
- Production Deployment
- Tests
- Documentation
Best experiences today: The Desktop app and the embedded Web app deliver the most complete, polished experience. The CLI is functional but actively being refined — treat it as a work in progress.
The fastest way to get up and running is to let your AI coding tool do it for you. This has been proven to work with Cursor and Claude Code — paste the prompt below into your tool and it will clone the repo, orient itself, build the project, and launch both the Desktop and Web apps.
Clone https://github.com/ramseur/sovrant.git, then:
1. Read README.md for an overview of the project
2. Read every file in the docs/ folder to understand the architecture
3. Run: dotnet restore && dotnet build
4. Start the Desktop app: dotnet run --project src/Sovrant.Desktop
5. Start the Web app: dotnet run --project src/Sovrant.Web
(opens on http://localhost:5100)
Report what you find and confirm both surfaces are running.
Your tool will read the docs, build the solution, and start both surfaces. On first launch the Desktop setup wizard walks you through adding an API key — the Web app does the same on first login.
- .NET 10 SDK or Runtime
- An API key from any supported LLM provider
git clone https://github.com/ramseur/sovrant.git
cd sovrant
dotnet restore
dotnet buildThe fastest way to get started. Full GUI with provider setup wizard, chat, and management pages.
dotnet run --project src/Sovrant.DesktopOn first launch, the setup wizard guides you through provider configuration (API key, model selection). Supports OpenAI, OpenRouter, DeepSeek, Groq, Mistral, Together AI, Google, Azure OpenAI, Ollama, and LM Studio.
Browser-based UI on port 5100 with the full runtime embedded.
dotnet run --project src/Sovrant.Web
# Open http://localhost:5100Set your provider credentials. Sovrant stores API keys in an encrypted, on-disk credential store; the auth subcommand prompts without echo so the key never lands in shell history.
Recommended (interactive — no echo):
dotnet run --project src/Sovrant.Cli -- auth set llm
# Enter value for llm: ********
# inspect what's configured (names only, never values)
dotnet run --project src/Sovrant.Cli -- auth list
# remove a stored key
dotnet run --project src/Sovrant.Cli -- auth delete llmScripted / CI (read from stdin):
cat key.txt | dotnet run --project src/Sovrant.Cli -- auth set llm --stdinEnv-var override (still supported for 12-factor / CI parity — wins over the stored value):
Linux / macOS / WSL:
export LLM_API_KEY="sk-..."
# Optional: use a different provider
export LLM_BASE_URL="https://generativelanguage.googleapis.com/v1beta/openai/"Windows (PowerShell):
$env:LLM_API_KEY = "sk-..."
$env:LLM_BASE_URL = "https://generativelanguage.googleapis.com/v1beta/openai/"Precedence: environment variable > encrypted credential store > built-in default.
auth listshows which is currently winning for each name.
Supported auth set <name> values: llm, provider, brave, firecrawl, openrouter.
Then run:
# One-shot prompt
dotnet run --project src/Sovrant.Cli -- --model gpt-4o-mini prompt "List all .cs files in src/"
# Interactive REPL
dotnet run --project src/Sovrant.Cli -- --model gpt-4o-mini
# Resume a named session
dotnet run --project src/Sovrant.Cli -- --model gpt-4o-mini --session my-project
# CI mode — machine-readable JSON output, non-zero exit on error
dotnet run --project src/Sovrant.Cli -- --ci --model gpt-4o-mini prompt "Fix the failing tests"dotnet run --project src/Sovrant.ServerThe server starts on port 5200. On first run, register your admin account — the first user to register is automatically granted the admin role.
# 1. Register (first user becomes admin)
curl -X POST http://localhost:5200/v1/auth/register \
-H "Content-Type: application/json" \
-d '{"email":"admin@example.com","password":"your-password"}'
# → { "token": "svt_...", "user_id": "...", "role": "admin" }
# 2. Save your token
export SVT_TOKEN="svt_..."All credentials (API keys, provider tokens) are stored in the AES-256-GCM encrypted keystore at ~/.sovrant/credentials/ by default. Environment variables (e.g. LLM_API_KEY) are still accepted as an override for 12-factor / CI deployments and always take precedence over the stored value.
# Non-streaming
curl -X POST http://localhost:5200/v1/chat/completions \
-H "Authorization: Bearer $SVT_TOKEN" \
-H "Content-Type: application/json" \
-d '{"model":"gpt-4o-mini","messages":[{"role":"user","content":"Hello"}]}'
# Streaming (SSE)
curl -X POST http://localhost:5200/v1/chat/completions \
-H "Authorization: Bearer $SVT_TOKEN" \
-H "Content-Type: application/json" \
-d '{"model":"gpt-4o-mini","messages":[{"role":"user","content":"Hello"}],"stream":true}'
# Persistent session
curl -X POST http://localhost:5200/v1/chat/completions \
-H "Authorization: Bearer $SVT_TOKEN" \
-H "Content-Type: application/json" \
-d '{"model":"gpt-4o-mini","messages":[{"role":"user","content":"My name is Eric"}],"session_id":"user-123"}'Auth model: All requests require a
svt_*bearer token. Log in viaPOST /v1/auth/loginto get a token. Additional long-lived tokens can be issued viaPOST /v1/users/me/tokens(self-service) orPOST /v1/users/{id}/tokens(admin). Tokens carry an optional expiry and can be revoked at any time. Non-admin callers see only their own data. See Multi-User & Workspaces.
| Mode | Behaviour |
|---|---|
default |
Asks before each tool use |
acceptEdits |
Auto-approves file edits, asks for shell |
bypassPermissions |
Auto-approves everything |
dontAsk |
Never prompts; silently skips denied tools |
plan |
Read-only — no file or shell writes |
dotnet run --project src/Sovrant.Cli -- --permission-mode bypassPermissions prompt "Refactor the auth module"Use camelCase for
--permission-modevalues:bypassPermissions, notbypass-permissions.
The Command Center (/command) is the homepage for Web and Desktop — a single live grid that answers "what is Sovrant doing for me right now?" It aggregates every active mission, team run, agent run, and conversation session into one read-only cockpit, with click-through to the existing detail pages (Activity, Orchestration, Mission detail).
┌──────────────────────────────────────────────────────────────────────┐
│ Command Center ⟳ live · 30s │
├──────────────────────────────────────────────────────────────────────┤
│ KIND TITLE STATUS STARTED COST │
│ 🎯 mission Refactor the auth module Running 12m ago $0.42 │
│ 👥 team Code review sweep Running 3m ago $0.08 │
│ 🤖 agent security-auditor:OWASP scan Running <1m ago $0.01 │
│ 💬 session user-123 Idle 2h ago $1.17 │
└──────────────────────────────────────────────────────────────────────┘
- Live — polled every 30 seconds; paginated grid with header timestamp and page-preserve on navigation.
- Read-only by design (v1). Click a row to drill into the detail page that already exists for it.
- Privacy masking. Private records appear as masked rows — title and content are hidden, existence is acknowledged for admin accountability.
- Backed by one endpoint:
GET /v1/command-center/stateaggregates fromagent_runs, the mission engine,team_runs, and the session pool. - First-run lands here. A clean install completes the setup wizard and lands the user on Command Center, not on a blank chat — the empty state explains how to start activity.
See docs/server.md for the endpoint contract and docs/frontend-integration.md for the SDK call.
The User Dashboard (/dashboard) is a personal cross-workspace activity view, distinct from the Command Center. Reached via the 👤 rail nav icon on both Web and Desktop.
┌──────────────────────────────────────────────────────────────────────┐
│ My Activity ⟳ live · 30s │
├──────────────────────────────────────────────────────────────────────┤
│ Shared (12) Private (3) Active (2) │
├──────────────────────────────────────────────────────────────────────┤
│ KIND TITLE PRIVACY STARTED WORKSPACE │
│ 💬 session API research Public 2h ago my-project │
│ 💬 session Internal notes 🔒 Private 1h ago personal │
│ 🤖 agent doc-writer run Public 3h ago team-ws │
└──────────────────────────────────────────────────────────────────────┘
- What you see: own public ("Shared") records + own private records + teammates' public records in shared workspaces. Other users' private records are never returned — not masked, not counted.
- Privacy toggles. Any session or agent run can be marked private. Private records are visible only to the owner. On the Command Center they appear as masked rows (title/content hidden); on the User Dashboard they're excluded entirely from other users' views. Server-side enforcement — no client-side bypass.
- Backed by
GET /v1/user-dashboard/state. Powered byUserDashboardAggregatorwith workspace membership gating.
See docs/server.md for the endpoint contract.
Connect to any OpenAI-compatible API — OpenAI, OpenRouter, Google Gemini, DeepSeek, Groq, Mistral, Together AI, Ollama (local), LM Studio (local), Azure OpenAI, or any provider that speaks the OpenAI chat completions format. The SmartRouter pings all configured providers on startup, scores them by latency, cost, and error rate, and routes each request to the optimal one. Switch providers by changing an environment variable or from the desktop/web settings UI — no code changes.
Automatically selects the best model for each turn based on what you're asking. A rule-based IntentClassifier categorizes every input into one of 10 intent classes (SimpleQa, CodeGeneration, Refactor, Planning, Debugging, etc.) with a complexity score (0.0–1.0), then routes to the appropriate model tier (fast / standard / high). The ModelTierResolver auto-assigns your discovered models into tiers from OpenRouter pricing data — no manual configuration needed.
Free models only mode — set SOVRANT_FREE_MODELS_ONLY=true to restrict routing to zero-cost models. On OpenRouter this means only :free variants are eligible; local/self-hosted models (Ollama) are always included.
Tool-aware routing — when the request includes tools, the resolver automatically filters to models that support native tool use, preventing 404 errors from providers that don't support tool_calls.
Configure via the Settings UI (Web + Desktop, persists to the DB) or environment variables — .sovrant/routing.json is no longer read as of Phase 93; any pre-existing file is imported once on first boot via LegacyConfigMigrator:
# Use OpenRouter as the provider
export LLM_BASE_URL="https://openrouter.ai/api/v1"
export LLM_API_KEY="sk-or-v1-..."
export OPENROUTER_API_KEY="sk-or-v1-..." # enables live model discovery
export SOVRANT_MODEL="google/gemma-4-31b-it:free"
# Restrict to free models only (no charges)
export SOVRANT_FREE_MODELS_ONLY=true
# Inspect tier assignments
sovrant router models
sovrant router statusAgents autonomously use tools for file operations, shell execution, web access, task management, plan/worktree mode, notebook editing, MCP resource access, LSP code intelligence, code verification, skill execution, agent delegation, team orchestration, swarm orchestration, mission management, artifact retrieval, and document generation. Up to 20 tool rounds per turn with automatic retries.
Define reusable agent roles as .md files with YAML frontmatter — each specifying a name, recommended model tier, system prompt, and allowed tools. 25 built-in templates ship with the engine. Drop custom templates into .sovrant/agents/ to override built-ins or add your own.
Skills are single .md files — YAML frontmatter (name, trigger, agents, tools) plus a markdown body with steps and instructions. 32 built-in skills across 7 domains: research (5), writing (5), business (5), project management (4), coding (7), media (3), and agent infrastructure (3). Invoke via /trigger slash commands or programmatically. Create new skills at runtime with SkillCreate.
Create persistent named agents with specific roles, custom system prompts, and tool restrictions. Teams persist to SQLite across restarts with full workspace/project scoping. Manage teams from within the agentic loop (LLM tool calls), via the HTTP API (/v1/teams/*, /v1/runs/*), or from the desktop/web UI. Run teams with optional parallelism and file-level locking. Publish swarm workers as reusable team members.
Submit a single complex prompt and the swarm auto-decomposes it into a task DAG, executes tasks in parallel waves via specialized agents, enforces file-level locking and token budgets, and runs an optional quality gate review. Available via CLI (sovrant swarm "task"), the Swarm tool, /swarm slash command, and POST /v1/swarm (SSE streaming).
Long-lived, goal-driven execution that spans multiple engine runs. A mission pursues an objective autonomously with re-planning, acceptance gates, and a full event journal. Missions are durable (persisted to SQLite), workspace-scoped, and manageable via API (/v1/missions/*).
Every conversation is stored in a SQLite database with full-text search via FTS5. Resume sessions by name across CLI invocations or HTTP requests. Automatic context compaction when conversations exceed token limits. See Persistence.
Sovrant ships as a proper multi-user system, not a single-admin tool.
- Login + registration on Web and Desktop. First-run goes through registration, not a blank config screen. Username + password (hashed in SQLite via V026). Admins can flip open registration and require admin approval flags from the Admin UI.
- Per-user API tokens. Users issue
svt_*bearer tokens viaPOST /v1/users/me/tokens(or admins viaPOST /v1/users/{id}/tokens); the plaintext is returned once and never recoverable. Tokens carry an optional expiry, a slidinglast_used_atfor inactivity TTL, and can be revoked at any time. svt_*bearer tokens. All API requests require asvt_*bearer token obtained viaPOST /v1/auth/login(or returned at registration). Additional long-lived tokens can be issued viaPOST /v1/users/me/tokens(self-service) orPOST /v1/users/{id}/tokens(admin); the plaintext is returned once and never recoverable. Tokens carry an optional expiry, a slidinglast_used_atfor inactivity TTL, and can be revoked at any time. Non-admin callers see only their own sessions, usage, and audit; cross-user access returns404(not403) so IDs are not enumerable.- Admin role.
users.role = 'admin'grants cross-user visibility and/v1/users/{id}/*management. Admin-issued password reset tokens (password_reset_tokenstable, 24-hour TTL, one-time use) cover lost-password flows. - Personal workspace per user. Every user gets an auto-created
ws-personal-{user_id}workspace on signup, idempotent and undeletable. Team workspaces are created via the API with 7-day invite tokens and owner/editor/viewer roles. Accept invites viaPOST /v1/workspaces/invites/accept. - Projects nest inside workspaces with their own member lists and 3-tier config inheritance (project → workspace → global).
- Workspace-scoped provider profiles. Admins add a provider key once at workspace level and every member sees it in the provider dropdown (marked with a "Workspace" badge) without ever seeing the plaintext key. Per-user profiles work the same way at personal-workspace scope. All API keys flow through the encrypted keystore —
provider_profiles.credential_idreferences the encrypted store, never the raw value. - Per-record privacy toggles. Any session or agent run can be marked private from the chat header or Agents UI. Private records are visible only to the owner — on the Command Center they appear as masked rows (title/content hidden); on the User Dashboard they are excluded from all other users' views entirely. Server-side enforcement via
is_privatecolumn (V030 migration).
Single endpoint that accepts messages from Slack, Teams, Discord, or custom systems. Build bots and automations that leverage the full agent toolkit. See docs/webhooks.md.
Machine-readable JSON output mode (--ci flag) with non-zero exit on error. GitHub Actions action and GitLab CI templates included. See docs/ci-cd.md.
Five permission modes from fully interactive (default — asks before each tool use) to fully autonomous (bypassPermissions). Plan mode provides read-only access for safe exploration. Configurable per-session via API.
Rolling file logs, JSON structured output for log aggregators, configurable log levels, per-session token usage tracking, and rate limiting.
┌───────────────────────────────────────────────────────────────────┐
│ Frontends │
│ ┌──────────┐ ┌────────────┐ ┌──────────┐ ┌──────────────┐ │
│ │ CLI │ │ Desktop │ │ Web │ │ Server │ │
│ │ (REPL) │ │ (Avalonia) │ │ (Blazor) │ │ HTTP :5200 │ │
│ └────┬─────┘ └─────┬──────┘ └────┬─────┘ └──────┬───────┘ │
│ └─────────────┬┴─────────────┘ │ │
│ │ All consume Sovrant.Runtime in-process │
└─────────────────────┼─────────────────────────────────────────────┘
│
┌─────────────────▼──────────────────────────────────────────┐
│ Sovrant.Runtime │
│ │
│ Mission Engine │
│ ├── IMissionStore (SQLite) │
│ ├── LlmMissionPlanner → RuntimePlan │
│ └── ParallelMissionExecutor │
│ │
│ Engine Layer │
│ ├── IPlanner → LlmPlanner (plan/re-plan) │
│ ├── IExecutor → LlmExecutor (crash-safe trace) │
│ └── IStepRunner → LlmStepRunner (tool dispatch) │
│ │
│ ConversationRuntime │
│ ├── agentic loop (up to 20 tool rounds) │
│ ├── session history (SQLite + in-memory) │
│ ├── permission gate │
│ └── MCP client (tool registration) │
│ │
│ IRuntimeSessionPool (one runtime per session_id) │
│ IStorageProvider (SQLite, 30 migrations, 45+ tables) │
└───────────┬──────────────────┬─────────────────────────────┘
│ │
┌───────────▼────────┐ ┌──────▼──────────────────────────┐
│ Sovrant.Api │ │ Sovrant.Tools (58 tools) │
│ │ │ │
│ SmartRouter │ │ File: Read Write Edit │
│ ├── OpenAI │ │ Glob Grep LS │
│ ├── OpenRouter │ │ Shell: Bash PowerShell REPL │
│ ├── DeepSeek │ │ Web: WebFetch WebSearch │
│ ├── Groq │ │ Tasks: TodoWrite Task* │
│ ├── Mistral │ │ Agent AskUser Sleep │
│ ├── Google │ │ PlanMode Worktree │
│ ├── Ollama │ │ Skill ToolSearch SkillCreate │
│ ├── LM Studio │ │ Verify NotebookEdit │
│ └── Custom │ │ MCP: List Read MCPTool McpAuth │
│ │ │ LSP: 5 tools (18 languages) │
│ IntentClassifier │ └──────────┬───────────────────────┘
│ ModelTierResolver │ │
└───────────┬────────┘ ┌──────────▼───────────────────────┐
│ │ Sovrant.Agents │
│ │ │
│ │ Unified Orchestration │
│ │ ├── SqliteTeamRegistry (DB) │
│ │ ├── AgentOrchestrator │
│ │ └── AgentRunStore (run ledger) │
│ │ │
│ │ SovrantAgentFactory │
│ │ ├── 25 agent templates │
│ │ └── FilteredToolRegistry │
│ │ │
│ │ IOrchestrationSystem │
│ │ ├── Isolated (process-per-agent) │
│ │ └── Shared (in-process async) │
│ │ │
│ │ Swarm Orchestrator │
│ │ ├── LlmSwarmDecomposer (DAG) │
│ │ ├── SwarmOrchestrator (waves) │
│ │ ├── SwarmFileLockManager │
│ │ └── SwarmQualityGate │
│ └───────────────────────────────────┘
│
┌───────────▼──────────────────┐
│ LLM Providers │
│ OpenAI · OpenRouter · │
│ DeepSeek · Groq · │
│ Mistral · Google · │
│ Together AI · Ollama · │
│ LM Studio · Azure · Custom │
└──────────────────────────────┘
| Project | Description |
|---|---|
Sovrant.Cli |
Interactive REPL and one-shot prompt CLI. Entry point for local use. |
Sovrant.Server |
ASP.NET Core Minimal API — OpenAI-compatible endpoints plus management APIs. 141 endpoints + SignalR hub. |
Sovrant.Desktop |
Avalonia desktop app — full GUI with streaming chat, tool use, settings, and management pages. |
Sovrant.Web |
Blazor Server web app — browser-based UI with embedded or remote runtime. Port 5100. Dual-mode: SOVRANT_RUNTIME_MODE=embedded (default) or remote (connects to Sovrant.Server via SignalR). |
Sovrant.Runtime |
Core agentic loop, mission engine, planner/executor, SQLite persistence (30 migrations V001–V030), permission system, tool executor, MCP client, cost tracking. |
Sovrant.Api |
LLM provider abstraction: OpenAI-compat, Ollama, native messages API. SmartRouter with health/latency/cost scoring. Intent-aware model routing. |
Sovrant.Tools |
All 58 tool implementations. 32 built-in skill .md files. |
Sovrant.Storage.Postgres |
Optional PostgreSQL/Supabase backend — overrides ISessionStore and ICredentialStore with Npgsql implementations. Schema mirrors SQLite (V001–V030). Activated at boot when system.database_backend = "supabase" is set via the Admin → System Integrations UI. |
Sovrant.Commands |
Slash commands for the REPL (/help, /clear, /session, /memory, etc.). |
Sovrant.Agents |
Orchestration: team registry (SQLite-backed), agent factory, dual backends (isolated + shared), 25 agent templates, swarm orchestrator, unified run ledger, inter-agent coordination (PM agents + mailbox). |
Sovrant.Mcp |
Shared MCP protocol handlers (tools/list, tools/call, resources, prompts, completions). Consumed by both the CLI's mcp-server stdio subcommand and Sovrant.Server's HTTP/SSE MCP transport. |
Sovrant.Lsp |
Language Server Protocol client: JSON-RPC over stdio, manages language server lifecycle, 5 LSP tools. |
sdk/js |
TypeScript/JavaScript client SDK: SovrantClient covering the 141-endpoint server (incl. login / register / getCommandCenterState / updateTeamProfile), SSE streaming, React useChat() hook, 85+ TypeScript interfaces. |
Always streaming internally. ConversationRuntime always sets Stream: true on every request. The server decides independently whether to forward chunks as SSE or buffer into a single JSON response. One code path in the agentic loop regardless of the client's preference.
One runtime per session. The server keeps one ConversationRuntime alive per session_id in a ConcurrentDictionary. Each runtime holds its own message history in memory, loaded from SQLite on first access.
SmartRouter with health fallback. All LLM calls go through ISmartRouter. On startup it pings every configured provider and scores them by latency, cost, and error rate. If all providers fail the startup ping, the router falls back to the configured list rather than refusing to start.
Tool execution is permission-gated. Every tool call goes through IPermissionPolicy before execution. The CLI uses ModeAwarePermissionPolicy (interactive prompts based on PermissionMode). The server defaults to DontAsk and can be changed live via PUT /v1/config.
Per-model token capping. The runtime automatically caps max_tokens to model-specific limits (e.g., gpt-4o: 16,384, gpt-4.1: 32,768) to prevent 400 errors from providers that enforce strict limits.
58 tools available. All run inside the agentic loop with automatic retries up to 20 tool rounds per turn.
Read · Write · Edit · Glob · Grep · LS
Bash (WSL required on Windows) · PowerShell · REPL (Python, Node, Ruby, Perl)
WebFetch · WebSearch (backend selected by SOVRANT_WEB_SEARCH — auto / brave / firecrawl / native / off — or per-session via /websearch; see docs/web-search.md)
TodoWrite · TaskCreate · TaskGet · TaskList · TaskOutput · TaskStop · TaskUpdate
EnterPlanMode · ExitPlanMode · EnterWorktree (git worktree add) · ExitWorktree
Agent (spawns an isolated sub-agent session) · AskUserQuestion · Sleep
TeamCreate · TeamDelete · TeamStatus · TeamDelegate · TeamRun (run a team with optional parallelism) · TeamPublish (publish swarm workers as reusable team members)
Persistent named agents with roles, system prompts, and tool restrictions. SQLite-backed, workspace-scoped. See Agent System.
Mission (create and drive long-lived goals with re-planning and acceptance gates)
Swarm (auto-decompose + parallel DAG execution with optional team) · SwarmStatus (live progress tracking)
Submit complex tasks for automatic decomposition into parallel waves. See Agent System.
ToolSearch (keyword search over registered tools) · Skill (loads and executes a skill by name or /trigger) · SkillCreate (creates new .md skill files at runtime)
Verify (6-phase quality gate: build, type-check, lint, test, security scan, diff review)
ListMcpResources · ReadMcpResource · MCPTool (dynamic proxy — calls any tool on any connected MCP server) · McpAuth (OAuth 2.0 + PKCE flow for MCP servers that require authorization)
LspHover · LspDefinition · LspReferences · LspDiagnostics · LspRename
Requires a language server configured via the Settings UI (Web + Desktop, persisted to the lsp_servers table). See LSP Integration.
NotebookEdit (read/write Jupyter .ipynb cells)
Sovrant provides a layered orchestration capability: ad-hoc sub-agents for quick delegation, reusable agent templates for purpose-built roles, persistent teams for structured orchestration, and swarm for parallel task execution.
The Agent tool spawns a lightweight, stateless sub-agent for a single task. The LLM decides when to use it — typically to parallelize independent research, explore multiple solution paths, or isolate risky operations.
- Each sub-agent gets its own
ConversationRuntimewith a fresh session - No persistent identity — created, runs, and discarded
- Recursion depth limited to 5
- Same tool access as the parent (unless a template restricts it)
Agent templates are .md files with YAML frontmatter — each defines a reusable agent persona with a name, recommended model tier (High/Standard/Fast), system prompt, and optional tool restrictions. Templates live in src/Sovrant.Agents/agents/ (built-in) and can be overridden by dropping .md files into .sovrant/agents/.
| Category | Templates |
|---|---|
| General-purpose (10) | researcher, writer, analyst, planner, summarizer, translator, tutor, debater, advisor, fact-checker |
| Code-specific (8) | coder, reviewer, debugger, refactorer, test-writer, architect, doc-writer, security-auditor |
| Creative / Domain (6) | storyteller, copywriter, data-scientist, sysadmin, product-manager, interviewer |
| Coordination (1) | pm-coordinator |
# Spawn a purpose-built agent from a template
Agent(template: "security-auditor", prompt: "Audit the auth module for OWASP Top 10")
# Create a team member backed by a template
TeamCreate(name: "reviewer", template: "reviewer")
Each template specifies a recommended_level that maps to a model string via ModelLevels config — so a "Fast" agent can use a cheaper model while a "High" agent gets the most capable one, without hardcoding model names.
Teams provide structured orchestration with persistent, named agents. Teams are stored in SQLite and survive process restarts with full workspace and project scoping.
Create and use teams from the agentic loop:
# Create a specialist agent (with or without a template)
TeamCreate(name: "reviewer", role: "reviewer",
prompt: "You review code for bugs and security issues",
allowed_tools: ["Read", "Grep", "Glob"])
# Delegate work
TeamDelegate(member_id: "abc123",
prompt: "Review the auth module for SQL injection")
# Check status
TeamStatus() → [{ name: "reviewer", status: "Completed", last_output: "Found 2 issues..." }]
# Run a team with parallelism and file-locking
TeamRun(team_id: "team-abc", prompt: "Implement the feature across all modules")
# Publish ephemeral swarm workers as reusable team members
TeamPublish(team_id: "team-abc")
Or manage teams via the HTTP API:
POST /v1/teams — create a team
GET /v1/teams — list teams
GET /v1/teams/{id} — get team + members
DELETE /v1/teams/{id} — delete a team
POST /v1/teams/{id}/members — add a member
POST /v1/teams/{id}/runs — start a team run
GET /v1/runs — list all runs
GET /v1/runs/{id} — get run details
Each team member has a role (General, Planner, Coder, Reviewer, Executor, Supervisor) with a role-specific system prompt, can be backed by an agent template, restricted to a subset of tools, and tracks lifecycle state (Idle → Running → Completed/Failed). All runs are recorded in the unified agent_runs ledger with token counts and status.
The swarm auto-decomposes complex tasks into parallel DAGs and executes them across multiple agents.
User prompt → [1. Decompose] → SwarmPlan (task DAG with waves)
↓
[2. Execute] → wave-by-wave parallel execution
↓
[3. Quality Gate] → score + verdict → SwarmResult
Phase 1 — Decomposition: A high-level LLM agent analyzes the prompt and produces a JSON task array with dependencies, file predictions, and agent template assignments. Kahn's topological sort assigns parallel wave indices.
Phase 2 — Execution: The orchestrator processes waves sequentially, tasks within a wave in parallel (bounded by SemaphoreSlim). File-level pessimistic locking prevents conflicts. Token budget enforcement with auto-cancellation on breach. Per-task retry with configurable timeout.
Phase 3 — Quality Gate (optional): A reviewer agent scores the combined output on a 1–10 scale with pass/needs_revision/fail verdict.
Configuration (Swarm Defaults panel in Web + Desktop, persisted to the workspace_settings table under swarm.* keys, OFF by default). Pre-Phase-93 .sovrant/swarm.json files are imported once on first boot via LegacyConfigMigrator:
| Key | Default | Description |
|---|---|---|
swarm.enabled |
false |
Master toggle |
swarm.max_concurrent |
4 |
Wave concurrency cap |
swarm.max_token_budget |
500000 |
Hard token ceiling per swarm |
swarm.max_retries |
1 |
Per-task retry budget |
swarm.quality_gate_enabled |
true |
Run the reviewer agent on the combined output |
swarm.decomposer_level |
High |
Tier used for decomposition |
swarm.worker_level |
Standard |
Tier used for task execution |
swarm.task_timeout_seconds |
300 |
Per-task timeout |
| Dimension | Team | Swarm |
|---|---|---|
| Trigger | LLM tool calls or HTTP API inside a conversation | User runs sovrant swarm "<goal>" from CLI, or POST /v1/swarm |
| Lifecycle | Persistent across turns and restarts (SQLite-backed) | Ephemeral — one swarm, one task, torn down at the end |
| Decomposition | Caller decides what to delegate and when | LlmSwarmDecomposer auto-produces a task DAG |
| Concurrency | Sequential by default; TeamRun adds optional parallelism |
Wave-based parallelism with topological sort + concurrency cap |
| Coordination | Independent delegations (or file-locking via TeamRun) |
File locks, retries, quality gate, token budget |
Use Team when the model needs persistent specialists it can call repeatedly.
Use Swarm when you have one large task that benefits from parallel sub-tasks with file-touch coordination.
They are not exclusive. A swarm can draw workers from a Team registry, and TeamPublish converts swarm workers into reusable team members.
| Isolated (default) | Shared | |
|---|---|---|
| Env var | AGENT_MODE=isolated (or unset) |
AGENT_MODE=shared |
| How it works | Process-per-agent — spawns a separate OS process | In-process async — each agent runs in the same process |
| Best for | Security-sensitive workloads, untrusted code | Lower overhead when agents share trusted memory space |
Missions are long-lived, goal-driven executions that span multiple engine runs. Unlike a single conversation turn, a mission pursues an objective autonomously — planning steps, executing them, re-planning when things change, and optionally pausing for human approval.
Lifecycle: Planning → Running → Awaiting Human → Completed / Failed / Cancelled
API:
POST /v1/missions — create a mission with a goal
GET /v1/missions — list missions (filter by status, owner)
GET /v1/missions/{id} — get mission state + current plan
POST /v1/missions/{id}/run — drive the mission forward one cycle
GET /v1/missions/{id}/events — full event journal (reconstructable history)
GET /v1/missions/{id}/export — export as JSON or Markdown
Missions are durable (persisted to SQLite), workspace-scoped, and include a full append-only event journal so history is always reconstructable. The engine layer underneath provides crash-safe execution via runtime_traces — every state transition is committed before the corresponding side effect runs, so a crash mid-step leaves a recoverable trail.
Define evaluation suites as JSON files in .sovrant/evals/. Run them from the CLI, programmatically, or via the server API.
| Type | How It Works |
|---|---|
| Code | Runs a command with the output as a temp file. Checks exit code + optional regex pattern. |
| Model | Sends output to an LLM with a rubric prompt. Parses VERDICT: PASS/FAIL + SCORE: N. |
| Human | Returns "pending human review" — designed for manual assessment workflows. |
# REPL
/eval my-suite
/eval --history my-suite
# API
POST /v1/evals/run {"suite_name": "my-suite", "tag": "regression"}
GET /v1/evals
GET /v1/evals/{name}/history| Provider | Base URL |
|---|---|
| OpenAI | https://api.openai.com/v1 (default) |
| OpenRouter | https://openrouter.ai/api/v1 |
| Google AI Studio (Gemini) | https://generativelanguage.googleapis.com/v1beta/openai/ |
| DeepSeek | https://api.deepseek.com/v1 |
| Groq | https://api.groq.com/openai/v1 |
| Mistral | https://api.mistral.ai/v1 |
| Together AI | https://api.together.xyz/v1 |
| Azure OpenAI | https://your-resource.openai.azure.com/openai/deployments/your-deployment/ |
| Ollama (local) | http://localhost:11434/v1 (no API key needed) |
| LM Studio (local) | http://localhost:1234/v1 (no API key needed) |
Desktop / Web: add a provider profile in Settings — the API key is stored in the AES-256-GCM encrypted keystore and never exposed in plaintext.
CLI: use sovrant auth set llm (prompts without echo) to store the key in the same encrypted keystore, then set the base URL with sovrant auth set base-url or LLM_BASE_URL. Keys stored this way are managed, rotatable, and never land in shell history or config files.
CI / scripted deployments:
LLM_API_KEYandLLM_BASE_URLenvironment variables are accepted as an override and take precedence over the stored value — but for interactive use the keystore is always preferred.
Gemma models via Google AI Studio do not support function calling over the OpenAI-compat endpoint. Use Gemini 2.5 Flash or a newer Gemini model.
The SmartRouter pings all configured providers on startup, scores them by latency, cost, and error rate, and routes each request to the optimal one. Use ROUTER_MODE=Fixed to always route to the first configured provider, or ROUTER_STRATEGY=Latency / Cost to change the scoring weight.
The server exposes an OpenAI-compatible chat completions endpoint plus comprehensive management APIs. 141 endpoints + SignalR hub across 27 route groups:
| Group | Endpoints | Description |
|---|---|---|
| Chat | POST /v1/chat/completions |
OpenAI-compatible chat with streaming (SSE) support |
| Command Center | GET /v1/command-center/state |
Live aggregated cockpit state (active missions, team runs, agent runs, sessions); private records masked |
| User Dashboard | GET /v1/user-dashboard/state |
Personal cross-workspace activity view; own + teammates' public; own private; others' private excluded |
| Sessions | 7 endpoints | CRUD, config, export, message history |
| Workspaces | 17 endpoints | Workspace CRUD, members, invites, config, memory, usage |
| Projects | 15 endpoints | Project CRUD within workspaces, members, config, archive |
| Users | 9 endpoints | User management, profiles, usage, audit |
| Teams | 10 endpoints | Team CRUD, members, runs, per-team run profile (PUT /v1/teams/{id}/profile) |
| Missions | 6 endpoints | Mission CRUD, run, events, export |
| Swarm | 4 endpoints | Start swarm, status, events, session history |
| Engine | 4 endpoints | Runtime trace, in-flight runs, recovery |
| Evals | 3 endpoints | Run evals, list suites, history |
| Artifacts | 3 endpoints | List, download, delete scoped artifacts |
| Tools / Skills / Agents | 6 endpoints | Registry queries for tools, skills, and agent templates |
| Cost | 1 endpoint | GET /v1/cost — cost tracking with daily/weekly/monthly rollups |
| Config / Status / Models | 5 endpoints | Runtime config, engine status, model discovery |
| Usage / Webhook / Health | 4 endpoints | Token usage, webhook ingress, health check |
| MCP Auth | 1 endpoint | OAuth callback for MCP server authorization |
| SignalR Hub | /hubs/chat |
Real-time streaming for web frontend (StreamTurn, ConfirmTool, DenyTool, CancelTurn) |
All endpoints require Authorization: Bearer <svt_token> (except /health, /v1/auth/login, /v1/auth/register, and the MCP auth callback). See docs/server.md for the full API reference.
The Avalonia-based desktop app provides a full GUI for interacting with the Sovrant runtime. Runs on Windows, macOS, and Linux.
- Streaming chat with thinking indicators, tool use blocks, and inline approve/deny
- Markdown rendering with code blocks, lists, headings, and inline formatting
- Dark and light theme toggle
- Sidebar navigation with workspace/project context selectors
- Settings with provider profiles (add, activate, delete), live model switching
- Management pages: Command Center, User Dashboard, Chat, Settings, Diagnostics, Artifacts, Documents, Tools, Skills, Agents, Memory, Projects, Workspaces, Orchestration, Integrations, Activity, Governance, Trust Boundary, Setup
- First-run setup wizard lands on Command Center on completion
- Session history with search
dotnet run --project src/Sovrant.DesktopThe Blazor Server web app provides a browser-based UI with the full runtime embedded in-process via SignalR.
- Streaming chat with real-time token rendering
- Tool use blocks with inline Allow/Deny confirmation
- Dark/light theme with CSS custom properties
- 19 pages matching the desktop feature set, including the live Command Center cockpit as the homepage and the User Dashboard (
/dashboard) as a personal activity view accessible from the 👤 rail nav - Workspace and project management with context switching
- Provider profile management with live model switching
dotnet run --project src/Sovrant.Web
# Open http://localhost:5100Dual-mode design: Components depend on runtime interfaces (IConversationRuntime, ISessionStore, IToolRegistry, etc.). In embedded mode (default), these are real implementations via AddSovrantRuntime(). In remote mode (SOVRANT_RUNTIME_MODE=remote), they are replaced by HTTP/SignalR client wrappers that call Sovrant.Server via AddSovrantClient() — components never change. Set SOVRANT_SERVER_URL and SOVRANT_API_TOKEN to connect to a remote server.
The TypeScript/JavaScript SDK (sdk/js) provides a typed client for building custom frontends against the Sovrant server.
SovrantClient— covers the 141-endpoint server: chat, auth (login, register, password reset, registration / approval toggles), command center (getCommandCenterState), user dashboard (getUserDashboardState), sessions, users (incl. adminissueResetToken/approveUser), workspaces, projects, teams (incl.updateTeamProfile), missions, swarm, engine, evals, artifacts, and registries- SSE streaming — real-time token-by-token responses with
streamChat() - React
useChat()hook — drop-in conversational UI component - 85+ TypeScript interfaces — full type coverage for all request/response shapes
- Security — AbortController timeouts, error body truncation, runtime input validation
npm install @sovrant/sdkimport { SovrantClient } from "@sovrant/sdk";
const client = new SovrantClient({
baseUrl: "http://localhost:5200",
token: "your-secret-token",
});
// Non-streaming
const response = await client.chat("gpt-4o-mini", [
{ role: "user", content: "Hello" },
]);
// Streaming
const stream = client.streamChat("gpt-4o-mini", [
{ role: "user", content: "Explain recursion" },
]);
for await (const chunk of stream) {
process.stdout.write(chunk.choices?.[0]?.delta?.content ?? "");
}See docs/frontend-integration.md for proxy setup, browser SSE, multi-tenant LLM key support, and the full API reference.
Sovrant can run as an MCP (Model Context Protocol) server over two transports, both backed by the same handlers in Sovrant.Mcp:
- stdio —
sovrant mcp-serversubcommand. The IDE spawns Sovrant as a child process and pipes JSON-RPC over stdin/stdout. Best for local IDE integration (VS Code, Cursor, Windsurf, Claude Code). - HTTP/SSE —
Sovrant.Serverexposes/mcpwhenSOVRANT_MCP_HTTP=true. Best for remote/multi-tenant access; reuses the server's bearer-token auth.
# stdio (local)
dotnet run --project src/Sovrant.Cli -- mcp-server
# HTTP/SSE (remote)
SOVRANT_MCP_HTTP=true dotnet run --project src/Sovrant.Server
# → MCP endpoint at http://localhost:5200/mcpSupported IDEs (stdio): VS Code (GitHub Copilot), Cursor, Windsurf, Claude Code.
Add to your IDE's MCP config (example for VS Code):
{
"github.copilot.chat.mcpServers": {
"sovrant": {
"command": "dotnet",
"args": ["run", "--project", "path/to/src/Sovrant.Cli", "--", "mcp-server"],
"env": { "LLM_API_KEY": "sk-..." }
}
}
}The synthetic chat tool runs a full agentic turn — the IDE sends a message and Sovrant runs it through the LLM with the full tool loop. Token-based authentication via SOVRANT_MCP_TOKEN and --token. Tool filtering via SOVRANT_MCP_TOOLS.
See docs/mcp-server.md for full IDE configuration, OAuth support, and environment variables.
Built-in Language Server Protocol client giving agents IDE-level code intelligence without leaving the agentic loop.
5 tools: LspHover · LspDefinition · LspReferences · LspDiagnostics · LspRename
18 languages supported: C#, Go, Python, Rust, TypeScript, TSX, JavaScript, JSX, Java, C, C++, Ruby, Swift, Kotlin, Zig, Lua (and header files).
Configure language servers via the Settings UI on Web (/lsp) or Desktop (Settings → LSP). Entries persist to the lsp_servers table (V019 schema); pre-Phase-93 ~/.sovrant/settings.json lsp_servers blocks are imported once on first boot.
Example entries (shown in JSON for documentation; you add them through the UI in practice):
{
"csharp": { "command": "OmniSharp", "args": ["-lsp"] },
"python": { "command": "pylsp", "args": [] },
"typescript": { "command": "typescript-language-server", "args": ["--stdio"] }
}Any language server that speaks LSP over stdio can be plugged in.
All durable state is stored in a single SQLite database at ~/.sovrant/data/sovrant.db. The database is created automatically on first run — no installer or manual setup required.
30 migrations (V001–V030). Covers sessions (with FTS5 full-text search and titles), agent memory, audit logs, credentials (AES-256-GCM encrypted), token usage, workspaces, projects, users (with password hashes + reset tokens), per-user API tokens (with sliding-TTL last_used_at), swarm events (with user ownership), runtime traces, missions, teams (with per-team run profiles), agent runs, inter-agent coordination, hooks, workspace settings, MCP/LSP server registry (incl. MCP HTTP transport), user preferences, provider profiles (encrypted API keys via the keystore), per-session MCP gating, unified workspace identity, workspace provider profiles, agent run prompts, swarm federation (parent_swarm_id), and per-record privacy (is_private on missions/agent_runs/sessions — V030).
Sovrant.Storage.Postgres provides an optional PostgreSQL backend for session and credential storage. When enabled, ISessionStore and ICredentialStore run on Postgres; all other stores (memory, audit, teams, missions, swarm, etc.) stay on SQLite.
Configure from Admin → System Integrations (Web or Desktop):
- Enter your Supabase Project URL and Service Role Key
- Click Initialize Schema to create the PostgreSQL tables
- Optionally click Migrate Data from SQLite to copy existing sessions and credentials
- Click Switch to Supabase and restart
Credentials are stored in the encrypted keystore — never plaintext on disk. To revert, click Revert to SQLite and restart. See docs/persistence.md for full details.
# CLI: resume a session
dotnet run --project src/Sovrant.Cli -- --session my-project prompt "What did we change last time?"
# Server: include session_id in the request body
{ "session_id": "user-123", "messages": [...] }The server keeps one ConversationRuntime alive per session_id in an in-memory pool — history is available immediately without a disk read on every turn.
Sovrant has two parallel memory systems: file-based memory (injected into the system prompt today) and database-backed memory (workspace + project, exposed over the API).
File memory — read at the start of every session and prepended to the system prompt:
| File | Scope |
|---|---|
~/.sovrant/memory.md |
Global — your preferences, personal notes |
.sovrant/memory.md |
Project — architecture notes, conventions |
Use /memory (or /mem) in the REPL to view or create these files.
Database memory — persisted in SQLite and managed via the API (Web/Desktop UI surfaces both):
| Scope | Storage | API |
|---|---|---|
| Workspace | workspace_memory table (layered entries with confidence scores) |
GET/POST/DELETE /v1/workspaces/{id}/memory |
| Project | Same table, scoped by project_id; reads merge project-scoped + workspace-level entries |
GET /v1/projects/{id}/memory (writes go through the workspace endpoint with project_id) |
Note: Database-backed memory is injected into the system prompt automatically by
MemoryInjector— workspace-level entries plus any project-scoped entries (merged at injection time) are appended to the prompt alongside file memory each turn.
sovrant db status # schema version, table row counts
sovrant db version # current schema version
sovrant db migrate # apply pending migrations
sovrant db migrate --dry-run # preview pending migrations
sovrant db backup [path] # checkpoint WAL and copy DB
sovrant db inspect <table> # PRAGMA table_info + first N rows
sovrant db import-swarm # import legacy JSONL swarm sessionsSet SOVRANT_DB_REQUIRE=true in production so database init failures halt the process instead of silently running without persistence. Set SOVRANT_DB_BACKUP_ON_UPGRADE=true to snapshot the DB before applying migrations.
See docs/persistence.md for the full schema reference, migration details, and security model.
Place a markdown file at .sovrant/commands/{name}.md. Invoking /{name} in the REPL injects the file's content as a user message. Use $ARGUMENTS as a placeholder.
.sovrant/commands/review.md → /review src/Auth.cs
API-key variables marked (stored) below can alternatively be saved with sovrant auth set <name> into the encrypted credential store; the env var still overrides the stored value when set.
| Variable | Required | Description |
|---|---|---|
LLM_API_KEY |
Yes (or auth set llm) |
API key for the primary provider — (stored) as llm. Aliases: OPENAI_API_KEY, PROVIDER_API_KEY |
LLM_BASE_URL |
No | Provider base URL (default: https://api.openai.com/v1). Alias: OPENAI_BASE_URL |
SOVRANT_PORT |
No | Server port (default: 5200) |
SOVRANT_MODEL |
No | Default model name |
PROVIDER_BASE_URL |
No | Enables native messages API provider (/v1/messages format) |
PROVIDER_API_KEY |
No | API key for the native messages API provider — (stored) as provider |
OLLAMA_BASE_URL |
No | Enables local Ollama provider |
ROUTER_MODE |
No | Smart (default) or Fixed |
ROUTER_STRATEGY |
No | Balanced (default), Latency, or Cost |
AGENT_MODE |
No | isolated (default, process-per-agent) or shared (in-process) |
SOVRANT_COMPACT_THRESHOLD |
No | Token count that triggers context auto-compaction (default: 80000). 0 to disable. |
SOVRANT_INTENT_ROUTING |
No | true to enable intent-aware tier selection (default: false) |
SOVRANT_FREE_MODELS_ONLY |
No | true to restrict routing to free/zero-cost models only |
SOVRANT_ROUTING_DEFAULT_TIER |
No | Default tier when no intent match: fast, standard (default), high |
SOVRANT_ROUTING_AUTO_TIER |
No | true (default) to auto-assign models to tiers from pricing data |
SOVRANT_ROUTING_ESCALATION |
No | true (default) to retry with higher tier on low-quality responses |
SOVRANT_ROUTING_MAX_ESCALATIONS |
No | Max tier escalations per turn (default: 1) |
SOVRANT_TIER_MODELS |
No | JSON object mapping tier → model ID, e.g. {"fast":"gpt-4o-mini","standard":"auto","high":"claude-opus-4-6"} |
SOVRANT_ROUTING_RULES |
No | JSON array of custom routing rules, e.g. [{"pattern":"fix.*bug","tier":"high"}] |
SOVRANT_WEB_SEARCH |
No | Backend selector: auto (default), brave, firecrawl, native, off. See docs/web-search.md. |
LLM_WEB_SEARCH |
No | Deprecated alias — true is treated as SOVRANT_WEB_SEARCH=native and emits a warning |
BRAVE_API_KEY |
No | Enables WebSearch via Brave Search API — (stored) as brave |
FIRECRAWL_API_KEY |
No | Enables WebSearch via FireCrawl — (stored) as firecrawl |
SOVRANT_DB_PATH |
No | SQLite database path (default: ~/.sovrant/data/sovrant.db) |
SOVRANT_DB_REQUIRE |
No | true to fail fast on DB init errors (recommended for production) |
SOVRANT_DB_BACKUP_ON_UPGRADE |
No | true to snapshot DB before applying migrations |
SOVRANT_USER_ID |
No | User identity for session ownership (default: OS username) |
SOVRANT_SESSION_TTL_SECONDS |
No | Idle session TTL before eviction (default: 3600) |
SOVRANT_MAX_SESSIONS |
No | Maximum active sessions in server pool (default: 500) |
SOVRANT_RATE_LIMIT_RPM |
No | Per-session rate limit: requests per minute (default: 60) |
SOVRANT_LOG_LEVEL |
No | Verbose, Debug, Information (default), Warning, Error, Fatal |
SOVRANT_LOG_FILE |
No | Rolling file path (default: ~/.sovrant/logs/sovrant-{Date}.log). Empty = disabled. |
SOVRANT_LOG_FORMAT |
No | text (default) or json (structured) |
SOVRANT_MCP_TOKEN |
No | Required bearer token for MCP server mode |
SOVRANT_MCP_TOOLS |
No | Comma-separated allow-list of tools for MCP server mode |
SOVRANT_TLS_CERT |
No | Path to TLS certificate (.pfx, or .pem when SOVRANT_TLS_KEY is also set). Enables HTTPS listener. |
SOVRANT_TLS_CERT_PASSWORD |
No | Passphrase for a PFX certificate. Omit when using separate PEM cert + key files. |
SOVRANT_TLS_KEY |
No | Path to PEM private-key file. Required when SOVRANT_TLS_CERT is a .pem/.crt. |
SOVRANT_TLS_HTTPS_PORT |
No | HTTPS port (default: 5443 for Server, 5101 for Web). |
OPENROUTER_API_KEY |
No | Enables live model metadata discovery from OpenRouter — (stored) as openrouter |
Desktop and Web apps store provider configuration in the SQLite database via the Settings UI — no environment variables needed for basic usage.
| Path | Purpose |
|---|---|
~/.sovrant/data/sovrant.db |
SQLite database (sessions, memory, audit, credentials, teams, missions, provider profiles, etc.) |
~/.sovrant/governance.json |
Legacy governance config — migrated to DB on first boot, renamed to .bak |
~/.sovrant/logs/ |
Rolling application log files |
~/.sovrant/credentials/.keystore |
AES-256-GCM master key (auto-generated). Decrypts the credentials table and provider profile API keys in SQLite. Override path via SOVRANT_KEYSTORE_PATH (env var or .env file). |
~/.sovrant/memory.md |
Global memory (human-edited, injected into system prompt) |
.sovrant/memory.md |
Project memory (human-edited, injected into system prompt) |
.sovrant/agents/*.md |
Custom agent templates |
.sovrant/skills/*.md |
Custom skills |
.sovrant/commands/*.md |
Custom slash commands |
.sovrant/evals/*.json |
Eval suite definitions |
.sovrant/swarm.json |
Legacy swarm config — migrated to workspace_settings (swarm.* keys) on first boot |
.sovrant/routing.json |
Legacy routing config — replaced by env vars + workspace_settings; imported once on first boot |
.sovrant/governance.json |
Project-level governance overrides — migrated to DB on first boot, renamed to .bak |
Auto-creation:
~/.sovrant/data/and the SQLite database are created automatically on first run. Override withSOVRANT_DB_PATH.
The CLI is short-lived and invoked repeatedly, so cold start time matters. Native AOT produces a single self-contained binary with no .NET runtime dependency.
dotnet publish src/Sovrant.Cli/Sovrant.Cli.csproj \
-c Release -r linux-x64 \
--self-contained true \
-p:PublishAot=true \
-p:OptimizeSpeed=true \
-p:InvariantGlobalization=true \
-p:StripSymbols=true \
-o ./publish/cliThe server is long-running — JIT warmup is paid once. ReadyToRun gives fast startup without AOT compatibility issues.
dotnet publish src/Sovrant.Server/Sovrant.Server.csproj \
-c Release -r linux-x64 \
--self-contained true \
-p:PublishReadyToRun=true \
-p:PublishTrimmed=true \
-p:TrimMode=link \
-o ./publish/serverFROM mcr.microsoft.com/dotnet/sdk:10.0 AS build
WORKDIR /src
COPY . .
RUN dotnet publish src/Sovrant.Server/Sovrant.Server.csproj \
-c Release -r linux-x64 --self-contained true \
-p:PublishReadyToRun=true -p:PublishTrimmed=true -p:TrimMode=link \
-o /publish/server
RUN dotnet publish src/Sovrant.Cli/Sovrant.Cli.csproj \
-c Release -r linux-x64 --self-contained true \
-p:PublishAot=true -p:InvariantGlobalization=true -p:StripSymbols=true \
-o /publish/cli
FROM mcr.microsoft.com/dotnet/aspnet:10.0 AS runtime
COPY --from=build /publish/server /app/server
COPY --from=build /publish/cli /app/cli
ENV PATH="/app/cli:${PATH}"
WORKDIR /app/server
EXPOSE 5200
ENTRYPOINT ["./sovrant-server"]Replace -r linux-x64 with -r win-x64 for Windows deployments.
dotnet test Sovrant.slnx # 2,222 tests across 10 projectsTest projects (10): Sovrant.Runtime.Tests (998) · Sovrant.Agents.Tests (240) · Sovrant.Tools.Tests (404) · Sovrant.Server.Tests (161) · Sovrant.Api.Tests (215) · Sovrant.Runtime.Documents.Tests (87) · Sovrant.Commands.Tests (56) · Sovrant.Mcp.Tests (34) · Sovrant.Lsp.Tests (26) · Sovrant.Integration.Tests (1).
All tests use isolated in-memory SQLite databases. No external services or API keys required.
| Document | Contents |
|---|---|
docs/server.md |
Full server API reference — all 141 endpoints + SignalR hub, Command Center, auth, CORS, streaming format, cost tracking, remote mode |
docs/frontend-integration.md |
SDK reference, proxy setup, browser SSE, multi-tenant LLM keys, React hook, remote mode (dual-mode web frontend) |
docs/persistence.md |
SQLite schema reference — 30 migrations (V001–V030), domain stores, Supabase/PostgreSQL backend, security model, keystore integration |
docs/agent-systems.md |
Team vs Swarm deep dive — architecture, value analysis, unified orchestration, inter-agent coordination |
docs/mcp-server.md |
MCP server mode — IDE config, available tools/resources, OAuth, env vars |
docs/webhooks.md |
Webhook endpoint, Slack bot setup, Teams/Discord integration guides |
docs/ci-cd.md |
CI/CD integration — --ci flag, GitHub Actions, GitLab CI template |
docs/engine-status.md |
Tool test results, provider compatibility, known issues |
docs/code-review.md |
Code review findings and coverage report |