Run autonomous AI agents safely — at scale, in CI, on Kubernetes.
Axon is a Kubernetes controller that runs AI coding agents (like Claude Code) in isolated, ephemeral Pods with full autonomy. You get the speed of --dangerously-skip-permissions without the risk — and the ability to fan out hundreds of agents in parallel across repos and CI pipelines.
# 1. Initialize your config
$ axon init
# Edit ~/.axon/config.yaml with your token and workspace
# 2. Run a task against your repo
$ axon run -p "Fix the bug described in issue #42 and open a PR with the fix"
task/fix-issue-42-xyz created
# 3. Stream the logs
$ axon logs fix-issue-42-xyz -f
[init] model=claude-sonnet-4-20250514
--- Turn 1 ---
Let me investigate issue #42...
[tool] Bash: gh issue view 42
--- Turn 2 ---
I see the problem. The auth middleware does not handle expired tokens.
[tool] Edit
...
--- Turn 8 ---
PR created: https://github.com/your-org/repo/pull/123
[result] completed (8 turns, $0.12)
See Examples for a full autonomous self-development pipeline.
AI coding agents are most powerful when they run fully autonomous — no permission prompts, no human in the loop. But on your laptop, that means the agent can touch your filesystem, network, and everything else on the host. And there’s no easy way to fan out dozens of agents across repos or plug them into CI.
Kubernetes solves both problems at once. Inside a Pod, “dangerously skip permissions” isn’t dangerous anymore — the agent gets full autonomy within an isolated, ephemeral container while the blast radius stays at zero for the host.
- Safe autonomy — agents run with
--dangerously-skip-permissionsinside isolated, ephemeral Pods. Full speed, zero risk to the host. - Scale out — launch hundreds of agents in parallel across repositories. Kubernetes handles scheduling and resource management.
- CI-native — trigger agents from any pipeline. A Task is just a Kubernetes resource — create it with
kubectl, Helm, Argo, or your own tooling. - Observable — watch agents move through
Pending → Running → Succeeded/Failedwith kubectl. - Simple — a handful of CRDs, one controller, zero dependencies beyond a running cluster.
Task: refactor auth ──┐ ┌──▶ Isolated Pod ──▶ Succeeded
├──▶ Axon ─────┼──▶ Isolated Pod ──▶ Succeeded
Task: add tests ──────┤ └──▶ Isolated Pod ──▶ Failed
│
Task: update docs ────┘
You apply a Task, Axon runs it as an isolated Job with --dangerously-skip-permissions, and tracks it through Pending → Running → Succeeded/Failed. Currently supported agents: Claude Code.
TaskSpawner — Automatic Task Creation from External Sources
TaskSpawner watches external sources (e.g., GitHub Issues) and automatically creates Tasks for each discovered item.
polls new issues
TaskSpawner ─────────────▶ GitHub Issues
│ ◀─────────────
│
├──creates──▶ Task: fix-bugs-1
└──creates──▶ Task: fix-bugs-2
- Kubernetes cluster (1.28+)
- kubectl configured
go install github.com/axon-core/axon/cmd/axon@latest
axon init
# Edit ~/.axon/config.yaml with your token:
# oauthToken:
Using kubectl and YAML instead of the CLI
Create a Workspace resource to define a git repository:
apiVersion: axon.io/v1alpha1
kind: Workspace
metadata:
name: my-workspace
spec:
repo: https://github.com/your-org/your-repo.git
ref: main
Then reference it from a Task:
apiVersion: axon.io/v1alpha1
kind: Task
metadata:
name: hello-world
spec:
type: claude-code
prompt: "Create a hello world program in Python"
credentials:
type: oauth
secretRef:
name: claude-oauth
workspaceRef:
name: my-workspace
kubectl apply -f workspace.yaml
kubectl apply -f task.yaml
kubectl get tasks -w
Using an API key instead of OAuth
Set apiKey instead of oauthToken in ~/.axon/config.yaml:
Or pass --secret to axon run with a pre-created secret (api-key is the default credential type), or set spec.credentials.type: api-key in YAML.
Add workspace to your config:
# ~/.axon/config.yaml
oauthToken:
axon run -p "Add unit tests"
Axon auto-creates the Workspace resource from your config.
Or reference an existing Workspace resource with --workspace:
axon run -p "Add unit tests" --workspace my-workspace
Add a token to your workspace config:
workspace:
repo: https://github.com/your-org/repo.git
ref: main
token:
axon run -p "Fix the bug described in issue #42 and open a PR with the fix"
The gh CLI and GITHUB_TOKEN are available inside the agent container, so the agent can push branches and create PRs autonomously.
Create a TaskSpawner to automatically turn GitHub issues into agent tasks:
apiVersion: axon.io/v1alpha1
kind: TaskSpawner
metadata:
name: fix-bugs
spec:
when:
githubIssues:
workspaceRef:
name: my-workspace
labels: [bug]
state: open
taskTemplate:
type: claude-code
credentials:
type: oauth
secretRef:
name: claude-credentials
promptTemplate: "Fix: {{.Title}}\n{{.Body}}"
pollInterval: 5m
kubectl apply -f taskspawner.yaml
TaskSpawner polls for new issues matching your filters and creates a Task for each one.
This is a real-world TaskSpawner that picks up every open issue, investigates it, opens (or updates) a PR, self-reviews, and ensures CI passes — fully autonomously. When the agent can’t make progress, it labels the issue axon/needs-input and stops. Remove the label to re-queue it.
┌──────────────────────────────────────────────────────────────────┐
│ Feedback Loop │
│ │
│ ┌─────────────┐ polls ┌────────────────┐ │
│ │ TaskSpawner │───────▶ │ GitHub Issues │ │
│ └──────┬──────┘ │ (open, no │ │
│ │ │ needs-input) │ │
│ │ creates └────────────────┘ │
│ ▼ │
│ ┌─────────────┐ runs ┌─────────────┐ opens PR ┌───────┐ │
│ │ Task │───────▶ │ Agent │────────────▶│ Human │ │
│ └─────────────┘ in Pod │ (Claude) │ or labels │Review │ │
│ └─────────────┘ needs-input└───┬───┘ │
│ │ │
│ removes label ─┘ │
│ (re-queues issue) │
└────────────────────────────────────────────────────────────────┘
See self-development/axon-workers.yaml for the full manifest.
The key pattern here is excludeLabels: [axon/needs-input] — this creates a feedback loop where the agent works autonomously until it needs human input, then pauses. Removing the label re-queues the issue on the next poll.
| Feature | Details |
|---|---|
| Safe Autonomy | Agents run with --dangerously-skip-permissions inside isolated, ephemeral Pods |
| Scale Out | Run hundreds of agents in parallel — Kubernetes handles scheduling |
| CI-Native | Trigger agents from any pipeline via kubectl, Helm, Argo, or your own tooling |
| Git Workspace | Clone a repo into the agent’s working directory via a Workspace resource, with optional GITHUB_TOKEN for private repos and PR creation |
| Config File | Set token, model, namespace, and workspace in ~/.axon/config.yaml — secrets are auto-created |
| TaskSpawner | Automatically create Tasks from GitHub Issues (or other sources) via a long-running spawner |
| CLI | axon install, axon uninstall, axon init, axon run, axon get, axon logs, axon delete — manage the full lifecycle without writing YAML |
| Full Lifecycle | Pending → Running → Succeeded / Failed |
| Owner References | Delete a Task and its Job + Pod are automatically cleaned up |
| Credential Management | API key and OAuth supported via Kubernetes Secrets |
| Model Selection | Override the default model per-task with spec.model |
| Status Tracking | Job name, pod name, start/completion times, and messages |
| Leader Election | Safe multi-replica deployment out of the box |
| Minimal Footprint | Distroless container, 10m CPU / 64Mi memory requests |
| Extensible | Pluggable agent type — add new agents via the switch in job_builder.go |
- Hands-free CI — let an autonomous agent generate, refactor, or fix code as a pipeline step, with no permission prompts blocking the run.
- Batch refactoring at scale — spin up dozens of agents in parallel to apply the same prompt across microservices, each safely isolated in its own Pod.
- Scheduled maintenance — pair with a CronJob or workflow engine to run recurring code-health agents on a schedule.
- Developer self-service — expose agent execution through an internal portal so any developer can run a fully autonomous AI agent without local setup.
- AI in your internal platform — embed Axon as the execution layer for AI-powered features in your developer platform.
Task Spec
| Field | Description | Required |
|---|---|---|
spec.type |
Agent type (claude-code) |
Yes |
spec.prompt |
Task prompt for the agent | Yes |
spec.credentials.type |
api-key or oauth |
Yes |
spec.credentials.secretRef.name |
Secret name with credentials | Yes |
spec.model |
Model override (e.g., claude-sonnet-4-20250514) |
No |
spec.workspaceRef.name |
Name of a Workspace resource to use | No |
Workspace Spec
| Field | Description | Required |
|---|---|---|
spec.repo |
Git repository URL to clone (HTTPS, git://, or SSH) | Yes |
spec.ref |
Branch, tag, or commit SHA to checkout (defaults to repo’s default branch) | No |
spec.secretRef.name |
Secret containing GITHUB_TOKEN for git auth and gh CLI |
No |
TaskSpawner Spec
| Field | Description | Required |
|---|---|---|
spec.when.githubIssues.workspaceRef.name |
Workspace resource (repo URL, auth, and clone target for spawned Tasks) | Yes |
spec.when.githubIssues.labels |
Filter issues by labels | No |
spec.when.githubIssues.excludeLabels |
Exclude issues with these labels | No |
spec.when.githubIssues.state |
Filter by state: open, closed, all (default: open) |
No |
spec.taskTemplate.type |
Agent type (claude-code) |
Yes |
spec.taskTemplate.credentials |
Credentials for the agent (same as Task) | Yes |
spec.taskTemplate.model |
Model override | No |
spec.taskTemplate.promptTemplate |
Go text/template for prompt ({{.Title}}, {{.Body}}, {{.Number}}, etc.) |
No |
spec.pollInterval |
How often to poll the source (default: 5m) |
No |
Task Status
| Field | Description |
|---|---|
status.phase |
Current phase: Pending, Running, Succeeded, or Failed |
status.jobName |
Name of the Job created for this Task |
status.podName |
Name of the Pod running the Task |
status.startTime |
When the Task started running |
status.completionTime |
When the Task completed |
status.message |
Additional information about the current status |
Configuration
Axon reads defaults from ~/.axon/config.yaml (override with --config). CLI flags always take precedence over config file values.
# ~/.axon/config.yaml
oauthToken:
| Field | Description |
|---|---|
oauthToken |
OAuth token — Axon auto-creates the Kubernetes secret |
apiKey |
API key — Axon auto-creates the Kubernetes secret |
secret |
(Advanced) Use a pre-created Kubernetes secret |
credentialType |
Credential type when using secret (api-key or oauth) |
Precedence: --secret flag > secret in config > oauthToken/apiKey in config.
The workspace field supports two forms:
Reference an existing Workspace resource by name:
workspace:
name: my-workspace
Specify inline — Axon auto-creates the Workspace resource and secret:
workspace:
repo: https://github.com/your-org/repo.git
ref: main
token: # optional, for private repos and gh CLI
| Field | Description |
|---|---|
workspace.name |
Name of an existing Workspace resource |
workspace.repo |
Git repository URL — Axon auto-creates a Workspace resource |
workspace.ref |
Git reference (branch, tag, or commit SHA) |
workspace.token |
GitHub token — Axon auto-creates the secret and injects GITHUB_TOKEN |
If both name and repo are set, name takes precedence. The --workspace CLI flag overrides all config values.
| Field | Description |
|---|---|
model |
Default model override |
namespace |
Default Kubernetes namespace |
CLI
The axon CLI lets you manage the full lifecycle without writing YAML.
# Install axon into a cluster
axon install
# Initialize a config file
axon init
# Run a task
axon run -p "Refactor auth to use JWT"
# Run against a git repo (requires a Workspace resource)
axon run -p "Add unit tests" --workspace my-workspace
# Override config file defaults with CLI flags
axon run -p "Fix bug" --secret other-secret --credential-type api-key
# List tasks
axon get tasks
# List task spawners
axon get taskspawners
# View logs (follow mode)
axon logs my-task -f
# Delete a task
axon delete my-task
# Uninstall axon from the cluster
axon uninstall
Build, test, and iterate with make:
make update # generate code, CRDs, fmt, tidy
make verify # generate + vet + tidy-diff check
make test # unit tests
make test-integration # integration tests (envtest)
make test-e2e # e2e tests (requires cluster)
make build # build binary
make image # build docker image
- Task dependencies — chain tasks so one waits for another to finish before starting, enabling agent pipelines in pure Kubernetes.
Task: scaffold service ──▶ Task: write tests ──▶ Task: generate docs
- Fork the repo and create a feature branch.
- Make your changes and run
make verifyto ensure everything passes. - Open a pull request with a clear description of the change.
For significant changes, please open an issue first to discuss the approach.