An end-to-end harness for running real coding agents at scale across
(agent × model × corpus) and publishing every interaction as a
Hugging Face dataset. Drives
the agent through a corpus of prompts, captures every chat-completion
request/response from the wire (request bodies as parsed JSON;
streamed responses as raw SSE bytes), and pushes the result to the
Hub — so consumers can render, analyse, or re-issue what the agent
actually sent and got back, without reconstructing it from a log.
The pipeline:
corpus ──► sandboxed agent run ──► capture ──► export ──► publish ──► inspect
Repeat for each (agent, model) you want compared — the corpus
stays the same.
Three-level picker chain over an HF dataset of captures
(hf://datasets/<owner>/<name>): parquet → request → message,
with live preview and Esc walk-back. See
docs/inspect.md for the rest.
curl -fsSL https://raw.githubusercontent.com/huggingface/agentcap/main/scripts/install.sh | shscripts/install.sh detects your platform, downloads the
matching binary, and installs it to ~/.local/bin — append -b <dir> or
-v <tag> (after sh -s --) to change the dir or pin a version. Binaries are
also on GitHub Releases
(agentcap-x86_64-linux, agentcap-arm64-apple-darwin); to compile instead, see
Building from source.
Two tools are each needed only for the command that uses them — podman for the
sandbox agentcap run drives, and trufflehog for the secret scan agentcap export runs before pushing (skip with --no-scan):
brew install podman trufflehog # macOS (+ one-time `podman machine` setup, see docs/capture.md)
sudo apt install -y podman # Linux (trufflehog via its own installer if you'll export)Capture an agent run against Hugging Face Inference Providers — set HF_TOKEN
(or run hf auth login), then point --upstream at the router:
agentcap run \
--agent hermes \
--model zai-org/GLM-4.6 \
--upstream https://router.huggingface.co \
--tasks examples/transformers-coding-session/tasks.txt \
--turns 4 --followup synthesizedEach run lands in a fresh subdir under .agentcap/ (in $AGENTCAP_WORKSPACE,
else the cwd). Browse it, then publish to the Hub:
agentcap ls # list runs (-l adds upstream + counts)
agentcap export --all --push my-org/my-captures # parquet + traces -> paired HF datasets
agentcap inspect my-org/my-captures-captures # browse the published capturesPrefer a local model server to the router? See
docs/capture.md for llama.cpp / transformers serve setups
and the backend trade-offs.
The three sub-commands have a dedicated walkthrough each — flags, flows, and a recorded demo:
| command | docs page |
|---|---|
agentcap run |
docs/capture.md — sandboxes, multi-turn, follow-ups, backends |
agentcap inspect |
docs/inspect.md — workspace / parquet / HF dataset pickers |
agentcap export |
docs/export.md — push captures + traces as a HF Collection |
See docs/tested-models-and-agents.md for which model + agent combinations have been validated end-to-end.
These terms appear throughout the CLI, on-disk layout, and docs:
| term | meaning |
|---|---|
| task | One corpus entry — the initial user prompt fed to the agent. |
| turn | One user-prompt cycle: either the initial prompt or one follow-up. Set by agentcap run --turns N. |
| call | One /v1/chat/completions request the agent makes to the model = one captured <rid>. A single turn contains many calls (the agent's tool-use loop). |
| session | An agent's stateful conversation. One task = one session, kept across all its turns via the agent's own session_id. |
| capture | One persisted <rid>.request.json + <rid>.response.json pair — one call's wire bytes on disk. |
| trace | The agent's own native session log for one task (per-agent format: opencode's SQLite, pi's JSONL, hermes' SQLite, …). |
| run | One agentcap run invocation: many tasks × many turns producing many calls, all under .agentcap/<agent>-<provider>-<utc>/. |
So a run contains N tasks; each task is one session and runs over T turns; each turn produces C calls, each call is one capture, and each task produces one trace.
┌─────────────────────────── runner ───────────────────────────────────┐
│ │
│ corpus ──► [agent CLI inside sandbox] ──HTTP──► [capture proxy] ──┐ │
│ ▲ │ │ │ ▼│
│ │ ▼ ▼ ▼ [model│
│ │ final response text <run>/traces/ <run>/captures/ server]
│ │ │ (native log) *.{req,resp}.json ▲ │
│ │ ▼ │ │
│ └── [follow-up synthesizer] ─────── HTTP (bypasses proxy)────┘ │
│ (multi-turn, optional) │
└───────────────────────────────────────────────────────────────────────┘
▼
agentcap export
│
┌────────────┴────────────┐
▼ ▼
<base>-captures dataset <base>-<agent>-traces dataset
└────────────┬────────────┘
▼
Hub Collection
The synthesizer talks to the model server directly, around the capture proxy, so the capture stays a clean record of agent ↔ model interaction; the synthesizer's own LLM calls are an orchestration detail and never land in the dataset.
Capture and export are deliberately dumb: persist the wire content,
ship it as parquet, stamp a few constant provider columns. Anything
token-level (chat-template rendering, per-message ranges) is
consumer-side — the request body is preserved as parsed JSON with
no agentcap-side normalisation of keys or values, so re-rendering
through the model's chat template is a few lines via
transformers.AutoTokenizer.apply_chat_template.
A Rust toolchain is all you need — no system libraries. The version is pinned in rust-toolchain.toml (rustup fetches it automatically).
cargo build --release # binary at target/release/agentcap
cargo install --path . # …or install it onto your PATH (~/.cargo/bin)cargo test # unit + loopback proxy integration (hermetic; no podman)The live tier drives the real agentcap run binary through a model
server for each agent inside podman, so it's #[ignore]d by default. With
a server reachable — AGENTCAP_TEST_LLM_URL=http://host:port, or one
already on :8000 / :8080:
cargo test --test live -- --ignoredEach live test skips (passes) if no server is reachable; override the model
id with AGENTCAP_TEST_MODEL. The per-agent sandbox image is built lazily
on first use (same lifecycle as agentcap run), so the first run pays a
multi-minute cold build per agent. CI runs this as the Test - Live
workflow against a pinned llama.cpp + Qwen3-1.7B GGUF.
Apache 2.0 — see LICENSE.