See It in Action
A quick demo of Gokin CLI in action.
Open source CLI for AI-assisted development. 7 providers, 5 agent types, 54 tools. Free to start.
go install github.com/ginkida/gokin/cmd/gokin@latestEverything you need for AI-assisted development, directly in the terminal.
7 AI providers — Gemini, Claude, DeepSeek, GLM, MiniMax, Kimi, Ollama. Switch instantly or use locally with Ollama.
5 agent types with parallel execution and delegation. Orchestrate complex tasks across specialized agents.
Beam Search, MCTS, and A* planning algorithms. Explore multiple solution paths and pick the best one.
File operations, git, search, code analysis, shell commands, and more — all available out of the box.
Session, project, and global memory. Gokin learns from your projects and remembers context across sessions.
3-level permission system, bash sandbox, and audit logging. Full control over what the AI can access.
A quick demo of Gokin CLI in action.
No middle servers. No Vercel. No telemetry proxies. Your API key, your code, your conversation — direct.
Some CLI tools route requests through their own proxy servers (Vercel Edge, custom gateways) for telemetry, analytics, or API key management. Gokin does none of this. Every API call goes directly from your machine to the provider's endpoint. You can verify this — it's open source.
LLM tool calls can accidentally expose secrets found in your codebase. Gokin automatically redacts them before they reach the model or your terminal.
| Category | Examples |
|---|---|
| API keys | AKIA..., ghp_..., sk_live_..., AIza... |
| Tokens | Bearer tokens, JWT (eyJ...), Slack / Discord |
| Credentials | DB URIs (postgres://user:pass@...), Redis, Mongo |
| Crypto | PEM private keys, SSH keys |
41 regex patterns, applied to every tool result. Custom patterns supported via API.
Multiple layers of protection — every boundary is validated.
| Layer | What it does |
|---|---|
| TLS 1.2+ | No weak ciphers, certificate verification always on |
| Sandbox | Bash runs in isolated namespace, safe env whitelist (~35 vars) |
| Command validation | 50+ blocked patterns: fork bombs, reverse shells, credential theft |
| SSH validation | Host allowlist, loopback blocked, injection prevention |
| Path validation | Symlink resolution, directory traversal & TOCTOU prevention |
| SSRF protection | Private IPs, loopback, link-local blocked; DNS results checked |
| Audit trail | Every tool call logged with sanitized args |
~/.config/gokin/config.yaml)sk-12****cdef)Open source, multi-provider, and free to start.
| Feature | Gokin | Claude Code | Cursor |
|---|---|---|---|
| Open Source | ✓ Yes | ✗ No | ✗ No |
| Providers | 7 | 1 | 1 |
| Local Models | ✓ Ollama | ✗ No | ✗ No |
| Free Tier | ✓ Gemini / Ollama | ✗ No | Limited |
| Multi-Agent | 5 types + custom | Limited | ✗ No |
| Tree Planning | ✓ Beam / MCTS / A* | ✗ No | ✗ No |
| Semantic Search | ✓ Yes | ✗ No | ✓ Yes |
| MCP Support | ✓ Yes | ✓ Yes | ✗ No |
| Interface | Terminal (TUI) | Terminal | IDE |
Most coding agents are TypeScript wrappers around an API call. Gokin is a compiled Go binary built for throughput.
go build → one file. No Node.js runtime, no node_modules, no npm install. Copy it and run.
Goroutines for parallel agents, concurrent tool calls, and streaming — not Promise.all chains on a single thread.
Cold start in milliseconds. No JIT warmup, no module resolution. Ready before your terminal prompt redraws.
~30 MB baseline. TypeScript agents regularly consume 200 MB+ just from their dependency tree and V8 heap.
GOOS=linux go build — ship to any OS and architecture. No platform-specific native module headaches.
Go modules with vendoring. Reproducible builds, no phantom dependencies, no left-pad incidents.