Terminal

CLI

Run Airlock from the terminal. Preflight checks, risk analysis, or the full web UI. One binary, zero dependencies beyond Rust.

Install

# Clone and build
git clone https://github.com/thierrydamiba/onboard
cd onboard
cargo install --path .

# Set your API key
export ANTHROPIC_API_KEY="your-key"
        

Three Modes

Interactive Mode (default)

Launch the web UI at localhost:4321. Configure policies, view preflight results, and manage overrides.

airlock
# Opens http://localhost:4321
                

Preflight Check

Run a risk analysis on a specific repo and PR. Output goes to stdout as structured markdown. Pipe it, redirect it, or feed it to another tool.

airlock --repo myorg/api --pr 142

# Control analysis depth
airlock --repo myorg/api --pr 142 --depth deep

# Scope to a specific path
airlock --repo ./my-project --path src/auth
                

MCP Server Mode

Run as a Model Context Protocol server. Claude Code, Cursor, and other MCP clients can call Airlock tools directly.

airlock --mcp
# Listens on stdio transport
                

Depth Levels

Depth controls how much history Opus 4.6 ingests and how thoroughly it analyzes risk.

Brief

Quick scan. 2K commits, 100 PRs. Low effort. Good for fast triage.

Standard

Full analysis. 10K commits, 400 PRs. High effort. The default for most repos.

Deep

Maximum depth. 50K commits, 2K PRs. Max effort. Complete risk picture.

Environment Variables

# Required
ANTHROPIC_API_KEY="sk-ant-..."

# Optional: GitHub token for private repos and higher rate limits
GITHUB_TOKEN="ghp_..."

# Optional: custom port (default: 4321)
AIRLOCK_PORT="4321"
        