Marionette¶
Remote agent orchestration and observability platform for AI coding agents.
Marionette enables you to deploy, manage, and observe AI coding agents (like Claude Code, Codex, etc.) running in isolated environments with enterprise-grade security and scalability.
-
Quick Start
Get up and running with Marionette in under 5 minutes
-
Core Concepts
Understand the architecture, sessions, tasks, and providers
-
Guides
CLI reference, API documentation, and integration guides
-
Open Source
MIT licensed, open source, and community-driven
Features¶
- Multi-Agent Support - Run Claude Code, Codex, or custom AI coding agents
- Flexible Deployment - Docker, Kubernetes, E2B, Firecracker, or bare metal pools
- Session Management - Long-lived work contexts with suspend/resume capabilities
- Workspace Persistence - Encrypted storage with content-addressable deduplication
- Real-time Streaming - Live logs, permission requests, and progress updates
- Port Forwarding - HTTP tunnels, desktop streaming (WebRTC), mobile emulators
- Multi-tenant - Built for SaaS integration with tenant isolation
- Observability - Prometheus metrics, structured logging, OpenTelemetry tracing
Architecture Overview¶
flowchart TB
subgraph Server["Server (Go)"]
subgraph Core["Core Services"]
SM[SessionMgr]
TM[TaskMgr]
RM[RunnerMgr]
TuM[TunnelMgr]
end
subgraph Providers["Provider Registry"]
Docker
K8s[Kubernetes]
E2B
Pool
end
Core --> Providers
subgraph Endpoints["API Endpoints"]
GRPC[":9090 gRPC"]
API[":8080 Public API"]
Admin[":8081 Admin UI"]
end
Providers --> Endpoints
DB[(PostgreSQL)]
Endpoints --> DB
end
subgraph Runner1["Runner (Isolated)"]
Agent1[marionette-agent]
Claude[Claude Code]
WS1["/workspace"]
Agent1 --> Claude
Agent1 --> WS1
end
subgraph Runner2["Runner (Pool)"]
Agent2[marionette-agent]
Sandbox["Sandbox (gVisor)"]
Agent2 --> Sandbox
end
GRPC <--> Agent1
GRPC <--> Agent2
API <--> CLI[CLI / Apps]
Admin <--> WebUI[Admin WebUI]┌─────────────────────────────────────────────────────────────────────┐
│ Server (Go) │
│ ┌─────────────┐ ┌─────────────┐ ┌─────────────┐ ┌─────────────┐ │
│ │ SessionMgr │ │ TaskMgr │ │ RunnerMgr │ │ TunnelMgr │ │
│ └─────────────┘ └─────────────┘ └─────────────┘ └─────────────┘ │
│ ┌─────────────────────────────────────────────────────────────┐ │
│ │ Provider Registry (Docker, K8s, E2B, Pool, ...) │ │
│ └─────────────────────────────────────────────────────────────┘ │
│ │ │
│ :9090 gRPC │ :8080 Public API │ :8081 Admin UI │
└──────────────┼────────────────────┼─────────────────────────────────┘
│ │
▼ ▼
┌──────────────────────┐ ┌──────────────────────┐
│ Runner (isolated) │ │ Runner (pool) │
│ ┌────────────────┐ │ │ ┌────────────────┐ │
│ │marionette-agent│ │ │ │marionette-agent│ │
│ │ ┌────────────┐ │ │ │ └───────┬────────┘ │
│ │ │Claude Code │ │ │ │ │ │
│ │ └────────────┘ │ │ │ ┌───────▼────────┐ │
│ │ ┌────────────┐ │ │ │ │Sandbox (gVisor)│ │
│ │ │ /workspace │ │ │ │ │ Agent+Workspace│ │
│ │ └────────────┘ │ │ │ └────────────────┘ │
│ └────────────────┘ │ └──────────────────────┘
└──────────────────────┘
Core Concepts¶
| Concept | Description |
|---|---|
| Runner | Execution environment (container, VM, or machine) |
| Session | Long-lived work context binding Runner + Workspace |
| Task | Unit of work (prompt) executed within a Session |
| Workspace | Persistent /workspace directory |
| Agent | AI coding agent (Claude Code, Codex, etc.) |
Quick Example¶
# Create a session
curl -X POST http://localhost:8080/api/v1/sessions \
-H "Authorization: Bearer $API_KEY" \
-H "Content-Type: application/json" \
-d '{"agent": "claude", "api_key": "sk-ant-xxx"}'
# Submit a task
curl -X POST http://localhost:8080/api/v1/tasks \
-H "Authorization: Bearer $API_KEY" \
-H "Content-Type: application/json" \
-d '{"session_id": "'$SESSION_ID'", "prompt": "Build a REST API"}'
Next Steps¶
-
Install Marionette using Docker, Kubernetes, or from source
-
Run your first AI coding agent in 5 minutes
-
Configure providers, storage, and security settings
-
Deep dive into how Marionette works