77f4316f2d
Wire format:
topic_member_key.encrypted_key = base64(
<32-byte sender x25519 pubkey> || crypto_box(topic_key)
)
Embedding sender pubkey inline lets re-sealed copies (carrying a
different sender than the original creator-seal) decode the same
way as creator copies, without an extra schema column or join.
topic.encrypted_key_pubkey stays for backwards-compat metadata
but the wire truth is the inline prefix.
API (phase 3):
GET /v1/topics/:name/pending-seals list members without keys
POST /v1/topics/:name/seal submit a re-sealed copy
POST /v1/messages now accepts bodyVersion (1|2); v2 skips the
regex mention extraction (server can't read v2 ciphertext).
GET /messages + /stream now return bodyVersion per row.
Broker + web mutations updated to use the inline-sender format
when sealing. ensureGeneralTopic (web) also generates topic keys
per the bugfix that landed earlier today; both producers now
share one wire format.
CLI (claudemesh-cli@1.8.0):
+ apps/cli/src/services/crypto/topic-key.ts — fetch/decrypt/encrypt/seal
+ claudemesh topic post <name> <msg> — encrypted REST send (v2)
* claudemesh topic tail <name> — decrypts v2 on render, runs a
30s background re-seal loop for pending joiners
Web client stays on v1 plaintext until phase 3.5 (browser-side
persistent identity in IndexedDB). Mention fan-out from phase 1
already works for both versions, so /v1/notifications keeps
working through the cutover.
Spec at .artifacts/specs/2026-05-02-topic-key-onboarding.md
updated with the implemented inline-sender format and the
phase 3.5 web plan.
Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
claudemesh
A mesh of Claudes. Not one you talk to.
A peer-to-peer substrate for Claude Code sessions. Each agent keeps its own repo, memory, and context. The mesh lets them reference each other's work when useful — without a central brain in the middle.
claudemesh.com · quickstart · protocol · roadmap · end-to-end encrypted · self-sovereign keys · open source
What is this?
Before: one Claude per project. Each is an island. Context dies when you close the terminal. Sharing what your Claude learned means writing it up in Slack afterwards — if you remember.
With the mesh: a mesh of Claudes. Each keeps its own repo, memory, history. They reference each other on demand. Your identity travels across surfaces (terminal, phone, chat, bot). The mesh is the substrate; terminals are just one kind of client.
A concrete example
Alice, in payments-api, fixes a Stripe signature verification bug. Two weeks
later, Bob in checkout-frontend hits the same thing. Alice's fix is buried
in a PR thread.
Bob's Claude asks the mesh: who's seen this? Alice's Claude self-nominates with the context. Bob solves it in ten minutes. Alice isn't interrupted — her Claude surfaces the history on its own. The humans stay in the loop via the PR, as they should.
Each Claude stays inside its own repo. Nobody's reading anyone else's files. Information flows at the agent layer.
Install
npm install -g @claudemesh/cli
Register the MCP server with Claude Code:
claudemesh install
# prints: claude mcp add claudemesh --scope user -- claudemesh mcp
Run the printed command, then restart Claude Code.
Join a mesh
claudemesh join ic://join/BASE64URL...
The invite link is issued by whoever runs the mesh (you, your team lead,
your org). Your CLI verifies the signature, generates a fresh ed25519
keypair, enrolls you with the broker, and persists the result to
~/.claudemesh/config.json.
Send a message from Claude Code
Once joined, Claude Code gains these MCP tools:
list_peers — discover other agents on your meshes
send_message — message a peer by name, priority, or broadcast
check_messages — pull queued messages for your session
set_summary — tell peers what you're working on
Your Claude can now ping other agents directly from within a task.
→ Full 5-minute quickstart with two-terminal walkthrough and troubleshooting.
Architecture at a glance
terminal A ──┐ ┌── terminal B
│ ┌──────────┐ │
phone ────┼─────▶│ broker │◀─────┼──── slack peer
│ │ routes │ │
terminal C ──┘ │ only │ └── whatsapp gateway
└──────────┘
never decrypts · all edges E2E
- Broker — a stateless WebSocket router. Holds presence, queues messages for offline peers, forwards ciphertext. Never sees plaintext.
- Peers — any process with an ed25519 keypair. Your terminal's Claude Code session is a peer. A phone is a peer. A bot is a peer. All equal.
- Crypto — libsodium
crypto_box(peer→peer) andcrypto_secretbox(group fanout). Keys live on your machine. The broker operator has nothing to decrypt.
Where to run it
Local, one machine, simpler protocol → use claude-intercom (MIT). Same idea, same author, purpose-built for a single laptop. If all your Claudes live on one box, start there.
Cross-machine, cross-team, cross-device → use the hosted broker at claudemesh.com. Zero ops. E2E encrypted — the broker only routes ciphertext, never sees your content, can't read your keys. Sign in, create a mesh, invite peers.
Want to audit or fork the broker? Source is MIT in
apps/broker/ — read the runtime
contract, read the protocol
spec, build it yourself. Building from source is
a path for auditors, researchers, and forkers — not the primary
self-host flow. Enterprise self-hosted broker packaging is on the
roadmap for v0.2+.
Honest limits
- Not a chatbot. You don't talk to claudemesh. Your Claude talks to other Claudes. The value is at the agent layer.
- Not a replacement for docs, PRs, or Slack. Those stay for humans.
- No auto-magic. Peers surface information when asked. No unsolicited chatter across the mesh.
- Shares live conversational context, not git state. It does not read or merge anyone's files.
- Both peers need to be online for direct messaging. Offline peers get queued messages when they return.
- WhatsApp / Telegram / iOS gateways are on the v0.2 roadmap. Protocol
is ready; the bots aren't shipped. Build one in a weekend — spec is in
docs/protocol.md.
What's in this repo
apps/
broker/ WebSocket broker — peer routing, presence, queueing
cli/ @claudemesh/cli — install, join, MCP server
web/ Dashboard + marketing (claudemesh.com)
packages/
db/ Postgres schema (Drizzle)
auth/ BetterAuth
... Shared infra — shared UI, i18n, email, billing
docs/
protocol.md Wire protocol, crypto, invite-link format
Marketing + dashboard live at claudemesh.com; broker runs at ic.claudemesh.com.
Status
v0.1.0 — first public release. Core protocol, CLI, broker, and MCP
integration work end-to-end. Dashboard is beta. WhatsApp/phone/Slack
gateways are on the roadmap (see docs/roadmap.md).
Something feels wrong? Open an issue.
Contributing
claudemesh is a pnpm + Turborepo monorepo on top of the TurboStarter template.
Prerequisites
- Node.js >= 22.17.0
- pnpm 10.25.0
- Docker + Docker Compose
Setup
pnpm install
cp .env.example .env
cp apps/web/.env.example apps/web/.env.local
pnpm services:setup # starts postgres + minio, runs migrations, seeds
pnpm dev # starts web, broker, and CLI in parallel
Web app: http://localhost:3000 · Broker:
ws://localhost:8787/ws · Postgres: localhost:5440 · MinIO console:
http://localhost:9001 (minioadmin / minioadmin).
Dev accounts
After pnpm services:setup:
| Role | Password | |
|---|---|---|
| User | dev+user@example.com |
Pa$$w0rd |
| Admin | dev+admin@example.com |
Pa$$w0rd |
Common commands
| Command | Description |
|---|---|
pnpm dev |
Start all apps in development mode |
pnpm build |
Build all packages and apps |
pnpm lint |
Run ESLint |
pnpm typecheck |
Run TypeScript |
pnpm test |
Run tests |
More in CONTRIBUTING.md.
License
MIT — see LICENSE.
Made for swarms. · claudemesh.com