carboncode

Name: carboncode
Author: Yapie0

by Yapie0

Issues

Chinese-first DeepSeek-powered terminal coding agent

105stars

8forks

TypeScript

Added 6/8/2026

View on GitHub Download ZIP Scan for vulnerabilities

AI Agentsai-agentcarboncodeclicoding-agentdeepseek

Installation

# Add to your Claude Code skills
git clone https://github.com/Yapie0/carboncode

Getting Started

Guides for using ai agents skills like carboncode.

Caveman: Cut Claude Token Use by 65%
How agent-side prompt compression works, when to use it, and when not to.
What is an AI Skills Marketplace?
Definitions, how marketplaces work, and how to choose between them in 2026.
Getting Started with AI Skills

Security ReportIssues

Last scanned: 6/8/2026

{
  "issues": [
    {
      "type": "npm-audit",
      "message": "@vitest/coverage-v8: Vulnerability found",
      "severity": "critical"
    },
    {
      "type": "npm-audit",
      "message": "@vitest/mocker: Vulnerability found",
      "severity": "medium"
    },
    {
      "type": "npm-audit",
      "message": "brace-expansion: brace-expansion: Large numeric range defeats documented `max` DoS protection",
      "severity": "medium"
    },
    {
      "type": "npm-audit",
      "message": "esbuild: esbuild enables any website to send any requests to the development server and read the response",
      "severity": "medium"
    },
    {
      "type": "npm-audit",
      "message": "qs: qs has a remotely triggerable DoS: qs.stringify crashes with TypeError on null/undefined entries in comma-format arrays when encodeValuesOnly is set",
      "severity": "medium"
    },
    {
      "type": "npm-audit",
      "message": "typed-rest-client: Vulnerability found",
      "severity": "medium"
    },
    {
      "type": "npm-audit",
      "message": "vite: Vite Vulnerable to Path Traversal in Optimized Deps `.map` Handling",
      "severity": "medium"
    },
    {
      "type": "npm-audit",
      "message": "vite-node: Vulnerability found",
      "severity": "medium"
    },
    {
      "type": "npm-audit",
      "message": "vitest: Vulnerability found",
      "severity": "critical"
    }
  ],
  "status": "FAILED",
  "scannedAt": "2026-06-08T08:55:43.279Z",
  "npmAuditRan": true,
  "pipAuditRan": true
}

README.md

Agentic AI for Beginners

Build your first AI agent from scratch - tool use, ReAct pattern, memory, deployment

41 minBeginner

Comments (0)

to leave a comment.

No comments yet. Be the first to share your thoughts!

Related Skills

ECC

by affaan-m

The agent harness performance optimization system. Skills, instincts, memory, security, and research-first development for Claude Code, Codex, Opencode, Cursor and beyond.

210,143

boss-skill claude-cowork-linux

Carbon Code

Chinese-first, DeepSeek-powered terminal coding agent for personal developer workflows.

Carbon Code is aimed at personal developer workflows: open a repository, let the agent read and search the codebase, review planned edits, approve shell commands, run validation, and keep a concise session trail.

Simplified Chinese documentation: README.zh-CN.md

Install

Requires Node.js 22 or newer.

npm install -g @carboncode/cli
cd path/to/project
carboncode

On Windows PowerShell, if npm fails with a script execution policy error, use npm.cmd instead:

npm.cmd install -g @carboncode/cli

Short command:

ccode

One-off usage without a global install:

npx @carboncode/cli

Commands

Command	Purpose
`carboncode` / `carboncode code [dir]`	Coding agent rooted at the current project.
`carboncode chat`	Chat without filesystem or shell tools.
`carboncode run "task"`	Non-interactive one-shot task.
`carboncode doctor`	Local health check.
`carboncode update`	Check and install the latest CLI package.

Carbon Code also installs ccode. It intentionally does not install cc, because that name commonly points to the system C compiler.

Configuration

Carbon Code stores user configuration in:

~/.carboncode/config.json

Set a DeepSeek API key with the first-run setup wizard, or export it directly:

export DEEPSEEK_API_KEY=sk-...

Project rules should live in AGENTS.md or CARBON.md in the repository.

Model presets use the current DeepSeek V4 API IDs: flash maps to deepseek-v4-flash, pro maps to deepseek-v4-pro, and auto starts on Flash with one-turn Pro escalation for harder turns.

Release

npm publishing is tag-driven through GitHub Actions after the package is configured for Trusted Publishing on npmjs.com. In the npm package settings, add a GitHub Actions trusted publisher with repository Yapie0/carboncode, workflow file publish.yml, and environment npm.

To release, update package.json, commit the release, then push a matching semver tag:

git tag v0.1.0
git push origin main --tags

The Publish npm package workflow verifies the package, checks that the tag matches package.json, and runs npm publish --access public --provenance. If the exact version already exists with the same gitHead, the workflow treats the tag as an idempotent release marker and skips the publish step.

Current Scope

Carbon Code is currently early-stage and focused on the personal CLI workflow: package identity, command names, Carbon config paths, update/install commands, Chinese-first CLI copy, npm publishing, and license compliance.

License And Attribution

Carbon Code is MIT licensed.

Third-party MIT notices are preserved in:

THIRD_PARTY_NOTICES.md
LICENSES/