Skip to content

sgtrusty/wssch

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

4 Commits
docs
docs
Β 
Β 
src
src
Β 
Β 
.gitignore
.gitignore
Β 
Β 
Makefile
Makefile
Β 
Β 
README.md
README.md
Β 
Β 
bun.lock
bun.lock
Β 
Β 
package.json
package.json
Β 
Β 
tsconfig.json
tsconfig.json
Β 
Β 

Repository files navigation

Workspace Scheduler (wssch)

"I know you're watching, Claude/Gemini. That's why my data stays local."

Run AI coding assistants securely with sandboxing, local knowledge, and token optimization.

What it solves

wssch provides a secure, local-first environment for running AI coding assistants in your workspace. It combines:

  • Sandboxing β€” Run AI agents inside an isolated bwrap environment, protecting your system
  • Local Knowledge β€” RAG-powered code awareness using local embeddings (no external API calls)
  • Token Optimization β€” Compress context before sending to the AI, reducing costs and improving response quality

It's designed as a workspace aggregator β€” a single entry point that brings together the tools and strategies you need for productive AI-assisted development.

Technologies

  • Runtime: TypeScript / Node.js (>=20) + Bun
  • Supported Sandboxes: bwrap (bubblewrap)
  • Supported AI Assistants: OpenCode, ForgeCode
  • Supported MCPs: Shinpr MCP LocalDB, Shinpr MCP LocalRAG, Lumen MCP
  • Supported Token Algorithms: RTK (context compression)

Prerequisites

Before using wssch, ensure you have:

  • bwrap β€” Install via your package manager (e.g., apt install bwrap, brew install bwrap). Optional β€” use --no-sandbox or orchestrate command in Docker/WSL environments without bwrap.
  • Node.js β€” >=20
  • OpenCode β€” AI coding assistant
  • Ollama β€” For local embeddings (optional, RAG works without it)

Quick Start

# Clone and install
git clone <repo> ~/tools/wssch
cd ~/tools/wssch
make install

# Add to PATH (if not already)
export PATH="$HOME/.local/bin:$PATH"

# Run in a project directory
wssch /path/to/your/project

Commands

wssch run [dir]              # Start sandbox and run orchestrator (default: cwd)
wssch run --no-sandbox       # Bypass bwrap, run directly (Docker/WSL without bwrap)
wssch orchestrate            # Run orchestrator without sandbox (alias: orcs)
wssch init [dir]            # Scaffold config in a project directory
wssch database              # Edit preferences interactively (alias: db)
wssch deps                  # Install dependencies

Note: wssch can be used without sandbox in non-bwrap environments (Docker, WSL, etc.) using --no-sandbox or the orchestrate command.

Configuration Storage

wssch stores data in ~/.config/wssch/:

  • ~/.config/wssch/bin/ β€” Local binaries (bun, rtk)
  • ~/.config/wssch/opencode/ β€” OpenCode config/shared
  • ~/.config/wssch/whitelist.db β€” Directory whitelist database

Project-specific data is stored in .wssdata/ in your project directory:

  • .wssdata/mcp/ β€” MCP server configuration

Vision

Yes, it was AI-built. But in 2026, what's wasn't? Still, this is built for the security-conscious β€” not out of tinfoil-hat paranoia, but because your codebase shouldn't be training data for the next model release. Local embeddings, isolated sandboxes, your tokens staying your tokens.

wssch aims to be extensible β€” a unified interface for plugging in different AI agents and strategies. Future plans include:

  • Support for additional AI coding assistants
  • Pluggable RAG backends and embedding providers
  • Custom token compression and context strategies
  • Workspace-level policies for fine-grained control

The goal: your workspace, your rules, any AI assistant.

About

Takes care of you while you code for them πŸ«°πŸŽ‡

Topics

security node typescript ai optimization mcp opencode virtualization inference workspace token gpt claude bubblewrap bwrap llm agentic

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages