╔══════════════════════════════════════════════════════════════╗
║ ║
║ _ ___ ___ ___ _ _ ║
║ /_\ / __| _ \ | _ )_ __(_)__| |__ _ ___ ║
║ / _ \ (__| _/ | _ \ '_|| / _` / _` |/ -_) ║
║ /_/ \_\___|_| |___/|_| |_\__,_\__, \___| ║
║ |___/ ║
╠══════════════════════════════════════════════════════════════╣
║ ║
║ 🦞 OpenClaw ─┐ ┌──► 🤖 Kiro ║
║ ┼──► acp 🌉 ──┼──► 🤖 Claude ║
║ 🌐 Web UI ──┘ ├──► 🤖 Codex ║
║ └──► ... ║
║ ║
║ https://github.com/xiwan/acp-bridge ║
╚══════════════════════════════════════════════════════════════╝
~ 🌐 The world 🔌 ACP protocol 🤖 Local AI agents ~
A bridge service that exposes local CLI agents (Kiro CLI, Claude Code, OpenAI Codex, etc.) via ACP (Agent Client Protocol) over HTTP, with async job support and Discord push notifications.
┌──────────┐ HTTP JSON req ┌──────────────┐ ACP stdio ┌──────────────┐
│ OpenClaw │──────────────────▶│ ACP Bridge │──────────────▶│ CLI Agent │
│ Gateway │◀──── SSE stream ───│ (uvicorn) │◀── JSON-RPC ──│ kiro/claude │
└──────────┘◀── /tools/invoke ──└──────────────┘ └──────────────┘
- Native ACP protocol support: structured event stream (thinking / tool_call / text / status)
- Process pool: reuse subprocess per session, automatic multi-turn context retention
- Memory protection: auto-evict idle connections when system memory exceeds threshold (OOM prevention)
- Sync + SSE streaming + Markdown card output
- Async jobs: submit and return immediately, webhook callback on completion
- Discord push: send results via OpenClaw Gateway
/tools/invoke - Job monitoring: stuck detection (>10min auto-fail), webhook retry, status stats
- Auto-reply to
session/request_permission(prevents Claude from hanging) - Bearer Token + IP allowlist dual authentication
- OpenClaw tools proxy: unified entry point for message/tts/nodes/cron/web_search and more
- Web UI (opt-in): chat interface at
/uiwith persistence (SQLite), message folding, and settings panel - Client is pure bash + jq, zero Python dependency
Which CLI agents work with ACP Bridge today?
| Agent | Vendor | ACP | Mode | Status | Tests |
|---|---|---|---|---|---|
| Kiro CLI | AWS | ✅ Native | acp |
✅ Integrated | 7/7 |
| Claude Code | Anthropic | ✅ Native | acp |
✅ Integrated | 5/5 |
| Qwen Code | Alibaba | ✅ --acp |
acp |
✅ Integrated | 6/6 |
| OpenAI Codex | OpenAI | ❌ | pty |
✅ Integrated | 6/6 |
| Gemini CLI | 🧪 --experimental-acp |
— | 🟡 Planned | — | |
| Copilot CLI | GitHub | ✅ --acp |
— | 🟡 Planned | — |
| OpenCode | Open Source | ✅ opencode acp |
acp |
✅ Integrated | 6/6 |
| CoStrict | Open Source 🇨🇳 | ✅ Native | — | 🟡 Planned | — |
| Trae Agent | ByteDance 🇨🇳 | ❌ | — | ⚪ No ACP | — |
| Aider | Open Source | ❌ | — | ⚪ No ACP | — |
Legend: ✅ Integrated — 🟡 Planned (ACP-ready) — ⚪ No ACP support yet — 🧪 Experimental
Agents without ACP can still be integrated via PTY mode (like Codex). PRs welcome!
See CHANGELOG.md for full version history. Current: v0.10.11
acp-bridge/
├── main.py # Entry: process pool, handler registration, job/health endpoints
├── src/
│ ├── acp_client.py # ACP process pool + JSON-RPC connection management
│ ├── agents.py # Agent handlers (ACP mode + PTY fallback)
│ ├── jobs.py # Async job manager (submit, monitor, webhook callback)
│ ├── pipeline.py # Multi-agent pipeline (sequence, parallel, race, random, conversation) + shared workspace
│ ├── sse.py # ACP session/update → SSE event conversion
│ └── security.py # Security middleware (IP allowlist + Bearer Token)
├── skill/
│ ├── SKILL.md # Kiro/OpenClaw skill definition
│ └── acp-client.sh # Agent client script (bash + jq)
├── tools/
│ └── tools-client.sh # OpenClaw tools client (debug + integration)
├── examples/
│ └── echo-agent.py # Minimal ACP-compliant reference agent
├── test/
│ ├── lib.sh # Test helpers (assertions, env init)
│ ├── test.sh # Full test suite runner
│ ├── test_agent_compliance.sh # Agent compliance test (direct stdio, no Bridge needed)
│ ├── test_common.sh # Common tests (agent listing, error handling)
│ ├── test_tools.sh # OpenClaw tools proxy tests
│ ├── test_kiro.sh # Kiro agent tests
│ ├── test_claude.sh # Claude agent tests
│ ├── test_codex.sh # Codex agent tests
│ ├── test_qwen.sh # Qwen agent tests
│ ├── test_opencode.sh # OpenCode agent tests
│ └── reports/ # Test reports
├── AGENT_SPEC.md # ACP agent integration specification
├── config.yaml # Service configuration
├── pyproject.toml
└── uv.lock
- Python >= 3.12
- uv package manager
- A CLI agent installed (e.g.
kiro-cli,claude-agent-acp,codex) - Client dependencies:
curl,jq,uuidgen - For Codex: Node.js (npm), LiteLLM (if using non-OpenAI models via proxy)
cd acp-bridge
cp config.yaml.example config.yaml
# Edit config.yaml with your settings
uv sync
uv run main.pyA lightweight Docker image containing only the ACP Bridge gateway. Agent CLIs (Kiro, Claude Code, Codex) stay on your host — mount them into the container as needed.
# 1. Prepare config
cp config.yaml.example config.yaml
# Edit config.yaml with your settings
# 2. Edit docker/light/docker-compose.yml
# Uncomment volume mounts for the agents you have installed
# 3. Set environment variables (pick one method)
# Method A: .env file (recommended, works with sudo)
cp docker/light/.env.example docker/light/.env
# Edit docker/light/.env with your tokens
# Method B: inline env vars
sudo \
ACP_BRIDGE_TOKEN=<your-token> \
CLAUDE_CODE_USE_BEDROCK=1 \
ANTHROPIC_MODEL=<your-model> \
LITELLM_API_KEY=<your-litellm-key> \
docker compose -f docker/light/docker-compose.yml up -d
# 4. Build and run
sudo docker compose -f docker/light/docker-compose.yml up -d --build
# Check logs
sudo docker compose -f docker/light/docker-compose.yml logs -fNote: When using
sudo, shell environment variables and~paths are NOT passed to Docker. Use a.envfile or pass variables inline as shown above.
See docker/light/docker-compose.yml for mount examples for each agent.
OpenAI Codex CLI doesn't support ACP protocol natively, so it runs in PTY mode (subprocess). To use non-OpenAI models (e.g. Kimi K2.5 on Bedrock), Codex needs LiteLLM as an OpenAI-compatible proxy.
# Codex CLI
npm i -g @openai/codex
# LiteLLM proxy
pip install 'litellm[proxy]'# ~/.codex/config.toml
model = "bedrock/moonshotai.kimi-k2.5"
model_provider = "bedrock"
[model_providers.bedrock]
name = "AWS Bedrock via LiteLLM"
base_url = "http://localhost:4000/v1"
env_key = "LITELLM_API_KEY"# ~/.codex/litellm-config.yaml
model_list:
- model_name: "bedrock/moonshotai.kimi-k2.5"
litellm_params:
model: "bedrock/moonshotai.kimi-k2.5"
aws_region_name: "us-east-1"
general_settings:
master_key: "sk-litellm-bedrock"
litellm_settings:
drop_params: truedrop_params: true is required — Codex sends parameters (e.g. web_search_options) that Bedrock doesn't support.
LiteLLM uses the EC2 instance's AWS credentials (IAM Role or ~/.aws/credentials) to access Bedrock. The master_key is just the proxy's own auth token.
LITELLM_API_KEY="sk-litellm-bedrock" litellm --config ~/.codex/litellm-config.yaml --port 4000acp-bridge ──(PTY)──► codex exec ──(HTTP)──► LiteLLM :4000 ──(Bedrock API)──► Kimi K2.5
server:
host: "0.0.0.0"
port: 18010
session_ttl_hours: 24
shutdown_timeout: 30
ui: false # enable Web UI at /ui (or use --ui flag)
upload_dir: "/tmp/acp-uploads" # file upload storage directory
pool:
max_processes: 8
max_per_agent: 4
memory_limit_percent: 80
webhook:
url: "http://<openclaw-ip>:18789/tools/invoke"
token: "${OPENCLAW_TOKEN}"
account_id: "default"
target: "channel:<default-channel-id>" # also accepts feishu targets
security:
auth_token: "${ACP_BRIDGE_TOKEN}"
allowed_ips:
- "127.0.0.1"
litellm:
url: "http://localhost:4000"
required_by: ["codex", "qwen"]
env:
LITELLM_API_KEY: "${LITELLM_API_KEY}"
agents:
kiro:
enabled: true
mode: "acp"
command: "kiro-cli"
acp_args: ["acp", "--trust-all-tools"]
working_dir: "/tmp"
description: "Kiro CLI agent"
claude:
enabled: true
mode: "acp"
command: "claude-agent-acp"
acp_args: []
working_dir: "/tmp"
description: "Claude Code agent (via ACP adapter)"
codex:
enabled: true
mode: "pty"
command: "codex"
args: ["exec", "--full-auto", "--skip-git-repo-check"]
working_dir: "/tmp"
description: "OpenAI Codex CLI agent"
qwen:
enabled: true
mode: "acp"
command: "qwen"
acp_args: ["--acp"]
working_dir: "/tmp"
description: "Qwen Code agent"
opencode:
enabled: true
mode: "acp"
command: "opencode"
acp_args: ["acp"]
working_dir: "/tmp"
description: "OpenCode agent (open source, multi-provider)"export ACP_BRIDGE_URL=http://<bridge-ip>:18010
export ACP_TOKEN=<your-token>
# List available agents
./skill/acp-client.sh -l
# Sync call
./skill/acp-client.sh "Explain the project structure"
# Streaming call
./skill/acp-client.sh --stream "Analyze this code"
# Markdown card output (ideal for IM display)
./skill/acp-client.sh --card -a kiro "Introduce yourself"
# Specify agent
./skill/acp-client.sh -a claude "hello"
# Upload a file
./skill/acp-client.sh --upload data.csv
# Multi-turn conversation
./skill/acp-client.sh -s 00000000-0000-0000-0000-000000000001 "continue"Submit long-running tasks and get results pushed to Discord automatically.
curl -X POST http://<bridge>:18010/jobs \
-H "Authorization: Bearer <token>" \
-H "Content-Type: application/json" \
-d '{
"agent_name": "kiro",
"prompt": "Refactor the module",
"target": "user:<user-id>",
"channel": "discord",
"callback_meta": {"account_id": "default"}
}'
# → {"job_id": "xxx", "status": "pending"}curl -X POST http://<bridge>:18010/jobs \
-H "Authorization: Bearer <token>" \
-H "Content-Type: application/json" \
-d '{
"agent_name": "kiro",
"prompt": "Analyze the codebase",
"target": "user:<feishu-open-id>",
"channel": "feishu",
"callback_meta": {"account_id": "main"}
}'curl http://<bridge>:18010/jobs/<job_id> \
-H "Authorization: Bearer <token>"POST /jobs → Bridge executes in background → On completion POST to OpenClaw /tools/invoke
→ OpenClaw sends to Discord/Feishu/... via message tool → User receives result
| Scenario | Format | Example |
|---|---|---|
| Discord channel | channel:<id> or #name |
channel:1477514611317145732 |
| Discord DM | user:<user_id> |
user:123456789 |
| Feishu user | user:<open_id> |
user:ou_2dfd02ef... |
| Feishu group | <chat_id> |
oc_xxx |
account_id refers to the OpenClaw bot account — default for Discord, main for Feishu (depends on your OpenClaw config).
GET /jobs— List all jobs + status stats- Patrol every 60s: jobs stuck >10min are auto-marked as failed + notified
- Failed webhook sends are retried automatically until success or job expiry
| Method | Path | Description | Auth |
|---|---|---|---|
| GET | /agents |
List registered agents | Yes |
| POST | /runs |
Sync/streaming agent call | Yes |
| POST | /jobs |
Submit async job | Yes |
| GET | /jobs |
List all jobs + stats | Yes |
| GET | /jobs/{job_id} |
Query single job | Yes |
| POST | /pipelines |
Submit multi-agent pipeline | Yes |
| GET | /pipelines |
List all pipelines | Yes |
| GET | /pipelines/{id} |
Query single pipeline | Yes |
| GET | /tools |
List available OpenClaw tools | Yes |
| POST | /tools/invoke |
Invoke an OpenClaw tool (proxy) | Yes |
| POST | /chat/messages |
Save a chat message (Web UI) | Yes |
| GET | /chat/messages |
Load recent chat messages (Web UI) | Yes |
| DELETE | /chat/messages |
Clear all chat messages (Web UI) | Yes |
| POST | /chat/fold |
Fold a session's messages (Web UI) | Yes |
| POST | /files |
Upload a file to Bridge | Yes |
| GET | /files |
List uploaded files | Yes |
| DELETE | /files/{filename} |
Delete an uploaded file | Yes |
| GET | /health |
Health check | No |
| GET | /health/agents |
Agent status | Yes |
| GET | /ui |
Web UI chat interface (if enabled) | No |
| DELETE | /sessions/{agent}/{session_id} |
Close session | Yes |
ACP Bridge proxies OpenClaw's tool system, giving you a unified entry point for both agent calls and tool invocations.
| Tool | Description |
|---|---|
message |
Send messages across Discord/Telegram/Slack/WhatsApp/Signal/iMessage |
tts |
Convert text to speech |
web_search |
Search the web |
web_fetch |
Fetch and extract content from a URL |
nodes |
Control paired devices (notify, run commands, camera) |
cron |
Manage scheduled jobs |
gateway |
Gateway config and restart |
image |
Analyze an image with AI |
browser |
Control browser (open, screenshot, navigate) |
# List available tools
./tools/tools-client.sh -l
# Send a Discord message
./tools/tools-client.sh message send \
--arg channel=discord \
--arg target="channel:123456" \
--arg message="Hello from ACP Bridge"
# Text to speech
./tools/tools-client.sh tts "Today's build passed"
# Web search
./tools/tools-client.sh web_search "Python 3.13 new features"
# Notify a Mac
./tools/tools-client.sh nodes notify \
--arg node="office-mac" \
--arg title="Deploy done" \
--arg body="v1.2.3 is live"curl -X POST http://<bridge>:18010/tools/invoke \
-H "Authorization: Bearer <token>" \
-H "Content-Type: application/json" \
-d '{
"tool": "message",
"action": "send",
"args": {
"channel": "discord",
"target": "channel:123456",
"message": "Hello from ACP Bridge"
}
}'Requires webhook.url to be configured pointing to an OpenClaw Gateway.
Verify a CLI agent implements the ACP protocol correctly — no Bridge required:
bash test/test_agent_compliance.sh kiro-cli acp --trust-all-tools
bash test/test_agent_compliance.sh claude-agent-acp
bash test/test_agent_compliance.sh python3 examples/echo-agent.pyCovers: initialize, session/new, session/prompt (notifications + result), ping. See AGENT_SPEC.md for the full specification.
ACP_TOKEN=<token> bash test/test.sh http://127.0.0.1:18010Run individual agent tests:
ACP_TOKEN=<token> bash test/test_codex.sh
ACP_TOKEN=<token> bash test/test_kiro.sh
ACP_TOKEN=<token> bash test/test_claude.sh
ACP_TOKEN=<token> bash test/test_qwen.shOr filter from the main runner:
ACP_TOKEN=<token> bash test/test.sh http://127.0.0.1:18010 --only codexCovers: agent listing, sync/streaming calls, multi-turn conversation, Claude, Codex, async jobs, error handling.
- Each
(agent, session_id)pair maps to an independent CLI ACP subprocess - Same session reuses subprocess across turns, context is automatically retained
- Crashed subprocesses are rebuilt automatically (context lost, user is notified)
- Idle sessions are cleaned up after TTL expiry
session/request_permissionis auto-replied withallow_always(Claude compatibility)- LRU eviction when pool is full:
- Same-agent idle connection → reuse process (reset session, skip respawn)
- Any idle connection → evict least-recently-used
- All busy → return
pool_exhaustederror
- Health check every 60s: ping idle connections, kill unresponsive ones
- Ghost cleanup: kill orphaned agent processes from previous Bridge runs on startup
- IP allowlist + Bearer Token dual authentication
/healthis unauthenticated (for load balancer probes)- Token supports
${ENV_VAR}environment variable references - Webhook token is configured separately from Bridge auth token
| Symptom | Cause | Fix |
|---|---|---|
403 forbidden |
IP not in allowlist | Add IP to allowed_ips |
401 unauthorized |
Incorrect token | Check Bearer token |
pool_exhausted |
Concurrency limit reached | Increase max_processes |
| Claude hangs | Permission request not answered | Already handled (auto-allow) |
| Discord push fails | Wrong or missing account_id |
Use default, not agent name |
| Discord 500 | Bad target format | DM: user:<id>, channel: channel:<id> |
| Job stuck | Agent process anomaly | Auto-marked failed after 10min |
| Codex: not trusted dir | /tmp not a git repo |
Add --skip-git-repo-check to args |
| Codex: missing LITELLM_API_KEY | Env var not passed | Set litellm.env.LITELLM_API_KEY in config |
| Codex: unsupported params | Bedrock rejects Codex params | Set drop_params: true in LiteLLM config |
See CONTRIBUTING for more information.
This library is licensed under the MIT-0 License. See the LICENSE file.
┌─────────────────────────────────────────────────────────────────────────────────┐
│ ACP Bridge Multi-Agent Interaction Modes │
└─────────────────────────────────────────────────────────────────────────────────┘
┌─────────────────┐
│ User │
│ (Discord/IM) │
└────────┬────────┘
│
┌────────────────┬───────────────┼───────────────┬────────────────┐
│ │ │ │ │
▼ ▼ ▼ ▼ ▼
┌────────┐ ┌──────────┐ ┌──────────┐ ┌──────────┐ ┌──────────────┐
│ /cli │ │ /chat │ │ /jobs │ │/pipeline │ │ /run │
│ ──── │ │ ───── │ │ ───── │ │ ──────── │ │ ──── │
│Single │ │ Session │ │ Async │ │ Multi- │ │ (OpenClaw │
│ shot │ │ Mode │ │ Task │ │ Agent │ │ native) │
└────┬───┘ └────┬─────┘ └────┬─────┘ └────┬─────┘ └──────┬───────┘
│ │ │ │ │
└─────────────┴───────────────┴───────────────┴─────────────────┘
│
▼
┌─────────────────────────────────────────────────────────────────────────────────┐
│ ACP Bridge │
│ ┌─────────┐ ┌─────────┐ ┌─────────┐ ┌─────────┐ ┌──────────┐ │
│ │ kiro │ │ claude │ │ codex │ │ qwen │ │ opencode │ │
│ └─────────┘ └─────────┘ └─────────┘ └─────────┘ └──────────┘ │
└─────────────────────────────────────────────────────────────────────────────────┘
═══════════════════════════════════════════════════════════════════════════════════
5 Interaction Modes
═══════════════════════════════════════════════════════════════════════════════════
1. /cli — Single-shot (同步单次)
/cli ko "task" → agent 执行 → 结果返回
特点:一问一答,无状态
2. /chat — Session Mode (对话模式)
/chat ko → 进入对话 → 后续消息自动透传 → /chat end 退出
特点:保持上下文,适合多轮开发
3. /jobs — Async (异步后台)
POST /jobs { agent, prompt, target } → 立即返回 → 完成后自动推送
特点:非阻塞,适合长任务
4. /pipeline — Multi-Agent Orchestration (多 Agent 编排)
mode: "sequence" — 串行接力
┌──────────────────────────────────────────────────────────────┐
│ kiro ──► claude ──► codex ──► qwen ──► opencode │
│ │ │ │ │ │ │
│ 输出A 输出B 输出C 输出D 输出E │
│ └────────┴──────────┴─────────┴───────────┘ │
│ 前一个的输出作为后一个的上下文 │
└──────────────────────────────────────────────────────────────┘
mode: "parallel" — 并行执行
┌──────────────────────────────────────────────────────────────┐
│ ┌──► kiro ────► 输出A ──┐ │
│ │ │ │
│ prompt ─┼──► claude ──► 输出B ──┼──► 汇总所有结果 │
│ │ │ │
│ ├──► codex ───► 输出C ──┤ │
│ │ │ │
│ └──► qwen ────► 输出D ──┘ │
└──────────────────────────────────────────────────────────────┘
mode: "race" — 竞速,最快者胜
┌──────────────────────────────────────────────────────────────┐
│ ┌──► kiro ────► ✗ (running) │
│ prompt ─┼──► claude ──► ✗ (running) │
│ ├──► codex ───► ✓ WINNER! → 返回,取消其他 │
│ └──► qwen ────► ✗ (running) │
└──────────────────────────────────────────────────────────────┘
mode: "random" — 随机选一个执行
┌──────────────────────────────────────────────────────────────┐
│ ┌── kiro ──── (skipped) │
│ prompt ─┼── claude ── (skipped) │
│ ├──► codex ───► ✓ CHOSEN! → 执行并返回 │
│ └── qwen ──── (skipped) │
└──────────────────────────────────────────────────────────────┘
5. /run (sessions_spawn) — OpenClaw Native Integration
sessions_spawn(runtime="acp", agentId="kiro", task="...")
特点:OpenClaw 原生 API,支持 thread 绑定、streaming
═══════════════════════════════════════════════════════════════════════════════════
Summary
═══════════════════════════════════════════════════════════════════════════════════
Mode │ Blocking │ Context │ Multi-Agent │ Use Case
───────────┼──────────┼─────────┼─────────────┼────────────────────────────────
/cli │ Yes │ No │ No │ Quick one-off tasks
/chat │ Yes │ Yes │ No │ Multi-turn development
/jobs │ No │ No │ No │ Long-running background work
/pipeline │ Varies │ Varies │ Yes ✓ │ Agent orchestration
sequence│ Yes │ Chained │ │ 串行接力
parallel│ Yes │ No │ │ 并行 / 多视角
race │ Yes │ No │ │ 竞速取优
random │ Yes │ No │ │ 随机选一
convers.│ Yes │ Per-agent│ │ 多轮对话协作
/run │ No │ Yes │ No │ OpenClaw native spawn