Summary
This is an acceptance gate layer for AI coding agents, built MCP-first for Goose with Codex local/IDE support coming. It gives you seven tools that open a run, select a validation profile, record agent output, run deterministic checks, apply a quality gate, and render evidence folders with task metadata, validation reports, and accept/needs-review/block decisions. The validation profiles run actual commands like tests and linters, check for required artifacts, and enforce changed-file policies. You'd reach for this when you want auditable proof that an agent run should merge, not just the agent saying "done". It also ships a PR gate workflow that reads the resulting evidence and blocks PRs missing acceptance artifacts.
Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.
One time payment $9 →
Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →
On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
AI Workbench MCP
Acceptance gates for AI coding-agent runs.
AI agents can produce code. AI Workbench MCP helps decide whether that work is accepted by recording evidence, running deterministic validation, applying a quality gate, and rendering auditable outcomes.
Works with Goose today. Designed as a host-agnostic acceptance layer for MCP-compatible agent workflows. Codex local/IDE is the first second-host target through explicit execution_host="codex" and response_source="codex" evidence metadata.
Current source metadata targets unpublished ai-workbench-mcp==0.7.0a0 for the next release-candidate pass. ai-workbench-mcp==0.6.0a0 remains the latest published PyPI and MCP Registry package, and the external PR-gate workflow stays pinned to that published version until a future release is explicitly approved.
Before
The agent says: "Done."
After
AI Workbench shows:
- what task was requested
- what agent/model/runtime was used
- what output was produced
- what validation ran
- whether the quality gate accepted, rejected, or requested review
- where the evidence lives
runs/example/
task_metadata.json
final_prompt.md
model_selection.json
model_output.md
validation_report.json
revision_decision.json
run_log.jsonl
AI Workbench turns agent output into evidence-backed accepted runs.
5-Minute Quickstart
Start with the package-only demo. It is the fastest way to see the Workbench gate because it does not require Goose, provider credentials, a target repository, or committed runs/ evidence.
python -m pip install -e .
ai-workbench-demo --target ./workbench-first-run
Module fallback:
python -m ai_workbench_mcp.tools.demo --target ./workbench-first-run
Expected outputs:
./workbench-first-run/ai-workbench-demo/accepted/pr_decision.json -> accept
./workbench-first-run/ai-workbench-demo/needs-review/pr_decision.json -> needs_review
./workbench-first-run/ai-workbench-demo/blocked/pr_decision.json -> block
Open the matching pr_comment.md files to see the reviewer-facing explanation for each outcome. The demo uses synthetic fixture evidence to show the PR-gate renderer. It is not a real target-repo acceptance run and is not a shortcut around validation or the quality gate. For a short recording script, see the package demo walkthrough.
What This Catches That CI Does Not
CI answers whether configured commands passed. AI Workbench also checks whether the run produced the evidence needed to justify acceptance.
Workbench catches missing or scaffold-only acceptance evidence, absent validation reports, missing quality-gate decisions, changed-file policy failures, and cases where an AI run should be reviewed or blocked even though a narrow test command passed.
It does not replace CI, code review, security review, or human judgment. It adds an auditable acceptance layer that turns agent output into accept, needs_review, or block with a required next action.
CI vs AI Reviewer vs Workbench
| Question | CI | AI reviewer | Workbench |
|---|---|---|---|
| Did configured commands pass? | Yes | Usually no | Records command-backed validation |
| Is required acceptance evidence present? | No | Can mention it | Enforces required artifacts |
| Did changed files fit policy? | Only if custom checks exist | Can flag concerns | Applies validation profile and policy checks |
| Is this accepted, needs review, or blocked? | No | Usually prose | Writes machine-readable gate output |
| Is there an auditable next action? | Logs only | Prose comment | pr_decision.json and PR comment |
To add the published 0.6.0a0 PR gate assets to a repository:
python -m pip install ai-workbench-mcp==0.6.0a0
ai-workbench-bootstrap --target .
That command writes starter configs, prompts, recipes, .github/workflows/ai-workbench-pr-gate.yml, docs/ai-workbench-pr-gate.md, and keeps runs/ ignored. See Use AI Workbench PR Gate in your repo in 10 minutes.
What MCP Does And Does Not Do
MCP is the connection protocol.
AI Workbench MCP is the tool server. MCP lets Goose, Codex local/IDE, or another compatible host call Workbench tools, but the protocol itself does not verify correctness, inspect code quality, or decide whether a run is accepted.
Acceptance is decided by the selected validation profile and quality gate. The agent performs. Workbench accepts. MCP connects them. See how acceptance works.
Prompt DoD vs Acceptance Gate
A prompt definition-of-done tells the agent what to attempt and what evidence to report. Prompt instructions are not enforcement.
An acceptance gate checks the resulting evidence after the agent acts. It uses explicit validation profiles, command-backed checks, required artifacts, changed-file policies, and quality-gate rules. The same agent saying "done" is never enough for acceptance.
What Decides Acceptance
The validation profile runs deterministic checks such as tests, build or lint commands, artifact existence checks, and changed-file policy. The quality gate then accepts the run, requests review, requests revision, or leaves the run failed based on that evidence and the configured risk policy.
For a PR gate to report accept, the referenced run must include acceptance-supporting validation_report.json and revision_decision.json. Scaffold-only evidence is visibility evidence, not semantic acceptance evidence, and blocks with pr_gate.acceptance_evidence_missing.
Seven MCP Tools
workbench_open_run
-> creates the run folder, task metadata, final prompt, context packet, and initial run log
workbench_select_policy_pack
-> recommends an advisory policy pack and matching validation profile from task metadata
workbench_select_model
-> recommends a model/runtime tier and writes model_selection.json
workbench_record_execution
-> captures Goose/Codex/model output into model_output.md and records response_source
workbench_validate_run
-> runs deterministic validation and writes validation_report.json
workbench_quality_gate
-> accepts, rejects, or requests review and writes revision_decision.json
workbench_analyze_runs
-> summarizes accepted-run metrics and writes run_dashboard.html for local scanning
Workflow
Goose recipe
-> workbench_open_run
-> workbench_select_model
-> Goose performs the task
-> workbench_record_execution
-> workbench_validate_run
-> workbench_quality_gate
-> workbench_analyze_runs
A run is accepted only when deterministic validation and the quality gate support acceptance.
Goose And Codex
Goose remains the default execution surface. Register the MCP server with goose configure, choose a command-line extension, and use ai-workbench-mcp as the command. Start with recipes/workbench-mcp-tool-smoke.yaml, then use recipes/workbench-engineering-acceptance.yaml or a focused recipe such as recipes/workbench-docs-only-acceptance.yaml, recipes/workbench-python-package-maintenance.yaml, or recipes/workbench-test-fix-acceptance.yaml.
Codex local/IDE uses the same ai-workbench-mcp server, not a separate Codex server. Read Codex setup, Codex acceptance workflow, Codex AGENTS.md snippet, Codex cloud limitations, Codex live-test handoff, and the Codex acceptance demo walkthrough. The handoff helper checks the resulting Codex evidence folders.
Policy Packs
The five first-class policy packs are docs_only, low_risk_bug_fix, test_fix, api_contract_change, and security_privacy_sensitive. Their catalog metadata lives in configs/policy_packs.yaml, maps each pack to a validation profile, and is documented in docs/policy-packs/.
Other useful starter profiles include python_package_maintenance, fixture_repair_proof, and low_risk_coding. For copy-ready commands, see examples/focused-workflows.
Examples And Demos
- Tiny Python fix: deliberately broken one-function fixture.
- Goose tool smoke: slow-local-model two-tool smoke.
- Goose recipe smoke: low-risk Goose acceptance run.
- Codex tool smoke and Codex acceptance smoke: local/IDE host proof.
- Sample accepted run, sample Codex accepted run, sample docs-only accepted run, and sample needs-review run: sanitized committed evidence.
- PR gate outcome demos: sanitized fixtures for
accept,needs_review, andblock. - Fresh Gemini fixture proof and Fresh Codex fixture proof: live proof summaries using
fixture_repair_proof. - Package demo walkthrough: 90-second package-only script for
ai-workbench-demoand the three PR-gate outcomes. - Goose acceptance demo walkthrough: recording-ready 3-5 minute public demo runbook.
Docs Map
Start with docs/README.md for the public documentation map.
Frequently used docs:
- Acceptance model
- PR gate renderer and copy-paste workflow template
- External repo setup and external sample repo proof
- Acceptance analytics, evidence dashboard, and event ledger
- v0.2 contract baseline
- Golden-case harness
- Model registry configuration
- PyPI publishing prep
- Repository topics, launch issue creation record, and launch issue seeds
Historical/internal proof and planning material is intentionally not the first path for new users. It remains available under docs/proof/ and docs/dogfooding/, including Phase 5 dogfooding protocol and v0.4 policy-pack validation report.
Approved Prompt Catalog
Approved prompts live in prompts/approved/. The catalog includes bug_root_cause_investigation.md, code_review_patch_risk_audit.md, data_acquisition_surface_audit.md, documentation_accuracy_audit.md, implement_request_change_request.md, navigation_page_title_ia_audit.md, performance_latency_hotspot_audit.md, prompt_failure_improvement_log.md, repository_context_index_audit.md, security_privacy_risk_review.md, test_case_development_meaningful_coverage.md, and ux_visual_accessibility_audit.md.
Development
python -m pip install -e ".[dev]"
python -m pytest -q -p no:cacheprovider
python -m ruff check . --no-cache
python -m mypy --no-sqlite-cache --no-incremental
python -m ai_workbench_mcp.tools.validate_run --project ai_workbench_mcp --profile scaffold --out-dir runs/scaffold-smoke
Do not commit runs/. It is the local evidence ledger. The root tools/ scripts remain backward-compatible shims; new package-oriented docs should prefer python -m ai_workbench_mcp.tools.<name> or a console script when one exists.
Roadmap
v0.1.0-alpha: first public Goose MCP acceptance workflow.v0.2.0-alpha: focused recipe library and validation policy profiles.- Phase 5 complete: accepted-artifact analytics, Codex local/IDE proof, PyPI/MCP Registry publication, and 31 complete dogfood evidence runs.
- Current: v0.7 version-boundary reset and release-candidate prep on top of the published v0.6 external PR-gate adoption package.
- Next after v0.7: stable contract fixture hardening, then Checks API integration, fork-comment strategy, and cost/time evidence.
v1.0: stable MCP contracts and recipe API.
License
Apache-2.0. See LICENSE.
Featured
Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.
One time payment $9 →Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →Categories
Registryactive
Packageai-workbench-mcp
TransportSTDIO
UpdatedMay 19, 2026
