ai-gateway
Unified AI gateway for command catalog, policy firewall, and safe execution
Version: 9.0.1 | Size: 4.5MB | Author: Warith Al Maawali
License: Proprietary | Website: https://www.digi77.com
File Information
| Property | Value |
|---|---|
| Binary Name | ai-gateway |
| Version | 9.0.1 |
| Build Date | REDACTED-BUILD-TIME |
| Rust Version | 1.82.0 |
| File Size | 4.5MB |
| Author | Warith Al Maawali |
| License | Proprietary |
| Category | Kodachi Binary |
| Description | Unified AI gateway for command catalog, policy firewall, and safe execution |
| Git Commit | unknown |
| Metadata Generated | 2026-05-24T23:42:07Z |
| Binary Timestamp | Unknown |
| JSON Data | View Raw JSON |
SHA256 Checksum
Features
| # | Feature |
|---|---|
| 1 | Embedded command catalog with 800+ commands from 15+ services |
| 2 | TF-IDF + substring hybrid search across all services |
| 3 | Three-tier risk classification (Passive/Active/Dangerous) |
| 4 | Policy firewall with allowlist enforcement |
| 5 | Workspace confinement and path validation |
| 6 | Failure cooldown to prevent cascading degradation |
| 7 | Per-agent identity, rate limiting, and audit trail for executions |
| 8 | Approval ticket workflow for agent-to-human authorization |
| 9 | Configurable per-operation timeouts with env var override |
| 10 | Full JSON/JSON-pretty/JSON-human output support |
Security Features
| Feature | Description |
|---|---|
| Input Validation | Argument parsing via clap; per-command validation is the consumer's responsibility |
| Rate Limiting | Not provided by cli-core |
| Authentication | Not provided by cli-core (see online-auth) |
| Encryption | Not provided by cli-core |
System Requirements
| Requirement | Value |
|---|---|
| OS | Linux (Debian-based) |
| Privileges | root/sudo for system operations |
| Dependencies | OpenSSL, libcurl |
Global Options
| Flag | Description |
|---|---|
-h, --help |
Print help information |
-v, --version |
Print version information |
-n, --info |
Display detailed information |
-e, --examples |
Show usage examples |
--json |
Output in JSON format |
-o, --output-format <FORMAT> |
Force output format (text |
--json-pretty |
Pretty-print JSON output with indentation |
--json-human |
Enhanced JSON output with improved formatting (like jq) |
--fields <FIELD_LIST> |
Select specific fields to include in output (comma-separated) |
--limit <NUMBER> |
Limit number of results returned |
--offset <NUMBER> |
Skip first N results (for pagination) |
-d, --work-dir <PATH> |
Working directory (defaults to auto-detected base directory) |
--port <PORT> |
Set custom port number (1024-65535) |
--log-level <LEVEL> |
Set log level (error |
--verbose |
Enable verbose output |
--quiet |
Suppress non-essential output |
--no-color |
Disable colored output |
--config <FILE> |
Use custom configuration file |
--timeout <SECS> |
Set operation timeout in seconds (optional; no default applied) |
--retry <COUNT> |
Retry attempts (optional; no default applied) |
Commands
Administration
index
Rebuild the search index from the embedded registry
Usage:
Examples:
policy
Show the current safety policy configuration
Usage:
Examples:
doctor
Health check that verifies all registered binaries exist and respond
Usage:
Examples:
approve
Issue or verify human approval tickets for agent execution
Usage:
ai-gateway approve issue <service> <command> [--agent-id <id>] [--ttl <secs>]
ai-gateway approve verify --ticket <ticket> <service> <command> [--agent-id <id>]
Examples:
ai-gateway approve verify --ticket "$TICKET" health-control block-internet --agent-id kodachi-claw --json
Discovery
list
List all services and their commands from the embedded registry
Usage:
Options:
- --service: Filter by service name
- --category: Filter by category name
Examples:
search
Search across all services and commands using TF-IDF + substring matching
Usage:
Options:
- --limit: Maximum number of results to return
Examples:
help
Show detailed help for a service or specific command
Usage:
Examples:
capabilities
Show effective capabilities for an AI agent identity
Usage:
Options:
- --agent-id: Agent profile (kodachi-claw/nullclaw/agentzero/openclaw/picoclaw/nanoclaw/claude-code/gpt/gemini/open-interpreter; aliases: zeroclaw, nanclaw, "claude code", "open interpreter")
- --agent-token: Optional token for authenticated agent profiles
Examples:
ai-gateway capabilities --agent-id kodachi-claw --agent-token $KODACHI_AGENT_TOKEN_KODACHI_CLAW --json
ai-gateway capabilities --agent-id claude-code --agent-token $KODACHI_AGENT_TOKEN_CLAUDE_CODE --json
ai-gateway capabilities --agent-id "claude code" --agent-token $KODACHI_AGENT_TOKEN_CLAUDE_CODE --json
ai-gateway capabilities --agent-id open-interpreter --agent-token $KODACHI_AGENT_TOKEN_OPEN_INTERPRETER --json
ai-gateway capabilities --agent-id "open interpreter" --agent-token $KODACHI_AGENT_TOKEN_OPEN_INTERPRETER --json
Execution
run
Validate and execute a binary command through the safety layer
Usage:
ai-gateway run <service> --command <cmd> [--args <args>...] [--args-json <json>] [--dry-run] [--timeout <secs>] [--agent-id <id>] [--agent-token <token>] [--approval-ticket <ticket>] OR ai-gateway run --batch-json <json> --agent-id <id> --agent-token <token>
Options:
- --command: Command to execute (required)
- --args: Command arguments (multiple)
- --args-json: Command arguments as JSON object/array
- --batch-json: Batch execution payload for trusted agents (JSON array, sequential mode only)
- --dry-run: Validate without executing
- --timeout: Execution timeout in seconds
- --confirm: Approval token for commands requiring confirmation
- --approval-ticket: Human-issued approval ticket for Active/Dangerous commands
- --agent-id: Agent profile (trusted profiles require token auth)
- --agent-token: Agent auth token for token-required profiles
Examples:
ai-gateway run kodachi-claw --command status --agent-id kodachi-claw --agent-token $KODACHI_AGENT_TOKEN_KODACHI_CLAW --dry-run --json
KODACHI_TRUSTED_BATCH_MODE=true ai-gateway run --agent-id kodachi-claw --agent-token $KODACHI_AGENT_TOKEN_KODACHI_CLAW --batch-json '[{"service":"kodachi-claw","command":"status"},{"service":"kodachi-claw","command":"doctor","dry_run":true}]' --json
Operational Scenarios
Scenario-oriented workflows generated from the binary's built-in -e --json examples.
Scenario 1: Service Discovery
Discover and explore all available Kodachi services and commands
Step 1: List all services with their commands in JSON format
Expected Output: JSON array of all discovered services with metadataStep 2: List commands for a specific service
Expected Output: Commands for tor-switch with descriptions and risk tiersStep 3: List health-control commands in text format
Expected Output: Formatted list of health-control commandsScenario 2: Command Search
Search across all services using TF-IDF + substring hybrid search engine
Step 1: Search for Tor exit node commands
Expected Output: Ranked results with relevance scoresNote
Uses TF-IDF cosine similarity + substring matching
Step 2: Search with limited results
Expected Output: Top 5 matching commands for DNS leak operationsStep 3: Search for network check commands in text format
Expected Output: Numbered list of matching commands with scoresStep 4: Find all panic/emergency commands
Expected Output: Emergency commands with Dangerous risk tierNote
Dangerous commands are blocked unless pentest mode
Scenario 3: Service Help
Get detailed help for any service or specific command
Step 1: Full specification for tor-switch service
Expected Output: JSON with all commands, options, examples, features, requirementsStep 2: Help for a specific command
Expected Output: Detailed command spec with parameters and examplesStep 3: Text help for dns-switch service
Expected Output: Formatted help output for dns-switchStep 4: Pretty-printed JSON help for ip-fetch
Expected Output: Indented JSON with full service specificationScenario 4: Safe Command Execution
Validate first, then execute when appropriate. No env var is needed for passive/active commands.
Step 1: Step 1 (validate): preview a passive command
Expected Output: Validation result without actual executionNote
Always use --dry-run first for safety
Step 2: Step 2 (apply): execute passive command (no env needed)
Expected Output: Live command execution resultNote
Passive commands execute without KODACHI_PENTEST_MODE
Step 3: Active command flow (no env needed): validate with explicit confirmation
ai-gateway run tor-switch --command set-exit-node --args-json '{"country":"de"}' --confirm --dry-run --json
Note
For active commands, remove --dry-run to apply changes
Step 4: Dry-run DNS leak test with custom timeout
Expected Output: Validation result for dns-leak testNote
Timeout can be overridden with KODACHI_TOOL_TIMEOUT_MS env var
Step 5: Dry-run ip-fetch fetch command
Expected Output: Validation result for ip-fetch fetchNote
Dry-run keeps examples deterministic in offline/auth-restricted environments
Step 6: Pass structured JSON arguments for agent-safe invocation
Expected Output: Dry-run validation with args expanded from JSONNote
--args-json avoids brittle shell quoting in agent pipelines
Scenario 5: Safety Policy
View and understand the safety policy configuration
Step 1: Show current safety policy as JSON
Expected Output: Policy with risk tiers, allowlists, and pentest mode statusStep 2: Show safety policy in text format
Expected Output: Formatted policy displayStep 3: Pretty-printed policy configuration
Expected Output: Indented JSON with complete policy detailsNote
Run with inline env: KODACHI_PENTEST_MODE=true ai-gateway run health-control --command wipe-file --confirm --json
Step 4: Dangerous command flow: env var required in addition to explicit confirm
KODACHI_PENTEST_MODE=true ai-gateway run health-control --command wipe-file --confirm "I understand" --dry-run --json
Note
KODACHI_PENTEST_MODE is required only for dangerous commands
Scenario 6: Administration
Index management and system health checks
Step 1: Rebuild the search index
Expected Output: Index statistics with service and command countsStep 2: Check health of all registered binaries
Expected Output: Health report for each binary (exists, responds, version, size)Step 3: Health check in text format
Expected Output: Table showing binary health statusScenario 7: Output Formats
All commands support multiple output formats
Step 1: Standard JSON output (compact)
Expected Output: Compact JSON responseStep 2: Pretty-printed JSON with indentation
Expected Output: Indented JSON for readabilityStep 3: Enhanced human-friendly JSON (like jq)
Expected Output: Color-highlighted JSON outputStep 4: Show version information
Expected Output: ai-gateway version 9.0.1Step 5: Show detailed program info as JSON
Expected Output: JSON with features, security, requirementsScenario 8: AI Agent Integration
How Kodachi AI standardizes execution for agentzero/openclaw/picoclaw/kodachi-claw/nullclaw/nanoclaw/open-interpreter via one gateway contract
Step 1: AI agent finds the best matching command
Expected Output: Top matching command with service and invocationNote
ai-cmd delegates execution through ai-gateway; pipe to jq externally if needed
Step 2: AI agent validates before executing
Expected Output: Validation passes, shows what would runNote
Safety layer prevents dangerous commands from AI agents
Step 3: AI agent executes passive command (no env required)
Expected Output: Live tor-status execution resultNote
Passive command execution does not require KODACHI_PENTEST_MODE
Step 4: Kodachi Claw integration path through ai-gateway
Expected Output: Validation for kodachi-claw status commandNote
Kodachi AI gives the same JSON execution contract to all agents
Step 5: AgentZero integration template (must be in allowlist)
Expected Output: Policy + invocation validation for agentzeroNote
Add agentzero to the default allowlist in policy_engine.rs
Step 6: OpenClaw integration template
Expected Output: Policy + invocation validation for openclawNote
Use --dry-run first, then remove --dry-run to execute
Step 7: PicoClaw integration template
Expected Output: Policy + invocation validation for picoclawNote
Same API shape as ai-cmd and zeroclaw integrations
Step 8: Kodachi Claw live execution path (no allow-all env required when installed/allowlisted)
Expected Output: Live kodachi-claw command output through gateway safety layerStep 9: NullClaw integration template
Expected Output: Policy + invocation validation for nullclawNote
Ensure nullclaw is in the policy engine allowlist
Step 10: NanoClaw integration template
Expected Output: Policy + invocation validation for nanoclawNote
Consistent gateway contract keeps agent integrations simple
Step 11: AI agent gets command specification
Expected Output: Full command spec for AI to understand parametersNote
Use jq in your shell after this command for field extraction
Scenario 9: Agent Security
Identity verification, capability discovery, and approval-ticket workflow
Step 1: Discover what kodachi-claw is allowed to do
ai-gateway capabilities --agent-id kodachi-claw --agent-token $KODACHI_AGENT_TOKEN_KODACHI_CLAW --json
Step 2: Discover trusted GPT agent capabilities
Expected Output: Trusted profile details for gptStep 3: Discover trusted Claude Code agent capabilities
ai-gateway capabilities --agent-id claude-code --agent-token $KODACHI_AGENT_TOKEN_CLAUDE_CODE --json
Step 4: Discover trusted Gemini agent capabilities
Expected Output: Trusted profile details for geminiStep 5: Discover trusted Open Interpreter agent capabilities
ai-gateway capabilities --agent-id open-interpreter --agent-token $KODACHI_AGENT_TOKEN_OPEN_INTERPRETER --json
Step 6: Discover trusted OpenClaw agent capabilities
Expected Output: Trusted profile details for openclawStep 7: Discover trusted PicoClaw agent capabilities
Expected Output: Trusted profile details for picoclawStep 8: Discover trusted NanoClaw agent capabilities
Expected Output: Trusted profile details for nanoclawStep 9: Human issues time-limited approval ticket for an active/dangerous operation
Expected Output: Signed approval ticket stringNote
Requires KODACHI_GATEWAY_APPROVAL_SECRET; extract .data.ticket with jq externally
Step 10: Agent executes command using identity + approval workflow
ai-gateway run health-control --command block-internet --agent-id kodachi-claw --agent-token $KODACHI_AGENT_TOKEN_KODACHI_CLAW --approval-ticket "$TICKET" --json
Note
Without valid ticket, execution returns requires_approval
Environment Variables
| Variable | Description | Default | Values |
|---|---|---|---|
RUST_LOG |
Set logging level | info | error |
NO_COLOR |
Disable all colored output when set | unset | 1 |
Exit Codes
| Code | Description |
|---|---|
| 1 | General error |
| 3 | Permission denied |
| 5 | File not found |
| 4 | Network error |
| 2 | Invalid arguments |
| 0 | Success |