@m8i-51/shoal
v0.1.22
Published
Multi-agent web exploration framework — finds bugs, UX issues, and missing features by running AI agents against your app
Downloads
1,474
Readme
AI agents that experience your app — and help it grow.
shoal drops a swarm of AI agents onto a web app. Each agent has a distinct persona and explores the app as a real user would — navigating pages, taking actions, noticing friction. They surface bugs, usability issues, missing features, and gaps between what the app does and what it's meant to achieve.
No test scripts. No test data. No prior knowledge of the app required. Just a URL.
How it works
Target App (any URL)
│
▼ autonomously learns what the app does + its goals
Product Discovery
│
▼ generates a user persona team for that app
Org Design
│
▼ creates and maintains the agent roster
HR Agent
│
├──────────────────────────────────┐
▼ ▼
API Agents ×N Browser Agents ×N
explore via API browse the real UI
│ │
└──────────────┬───────────────────┘
▼ deduplicates and files issue tickets
Triage AgentEach agent carries a distinct perspective — accessibility, security, business logic, UI design, new user experience, and more. They operate on a shared understanding of the app's purpose and goals. Coverage is tracked across runs, so each session naturally focuses on areas that haven't been explored yet.
What it finds
At the end of each run:
- Bugs — broken flows, errors, inconsistent data
- UX issues — confusing interactions, dead ends, unclear states
- Feature suggestions — things that would add real value
- Goal gaps — where the app falls short of what it's trying to achieve
Findings are filed as issue tickets (GitHub Issues, Jira, Notion, Backlog, or Asana) or saved as a self-contained HTML report. A web dashboard lets you start runs, watch live progress, review findings by category, and track estimated LLM cost per run.
Quick Start
Install globally:
npm install -g @m8i-51/shoal
npx playwright install chromiumMove to the project you want to explore, then run:
cd your-project
shoal init # creates .env with all available optionsOpen .env and set at minimum:
ANTHROPIC_API_KEY=sk-ant-...
BASE_URL=http://localhost:3000 # URL of the app to exploreThen run:
shoal serve # open web dashboard at http://localhost:4000
shoal # or run agents directly from the terminal
shoal config # update settings in existing .env (e.g. issue trackers)Or clone and develop locally:
git clone https://github.com/m8i-51/shoal
cd shoal
npm install && npx playwright install chromium
cp .env.example .env # set ANTHROPIC_API_KEY and BASE_URL
npm startWeb dashboard
shoal serve # global install
# or
npm run serve # from cloned repoOpens at http://localhost:4000. From there you can:
- Start a run — configure agent count, target URL, and custom instructions
- Watch agents swim live — the Swarm tab shows an animated real-time view of agents as they explore. When a finding is discovered, the agent's chip flashes with the finding title.
- Review past runs — findings by category, agent count, duration, and estimated cost
- Generate an Agent Diary — after a run completes, one LLM call turns the raw log into a story-style narrative of the exploration, readable by anyone on the team
- Hall of Issues — browse all findings across every run with full-text search and category filter. Export as JSON to share, or paste a community findings URL to import findings from other projects.
- Edit app goals — guide the goal-gap detector by defining what the app should achieve
- Schedule a weekly run — pick a day and time directly in the dashboard for automatic recurring runs (the
shoal serveprocess must stay running; for a serverless alternative see Scheduled runs below)
Cross-run intelligence
shoal gets smarter with each run.
Diff exploration — after every browser navigation, shoal hashes the page content (SHA-256 of innerText). On the next run, agents that land on an unchanged page are nudged to move on: "page content unchanged since last run — consider exploring a different area." The hashes accumulate in cache/page-hashes/ and steer future agents toward parts of the app that have actually changed.
Finding hotspots — the persona designer has access to a get_finding_hotspots tool that aggregates findings by URL area across all past runs. It uses this to recruit agents toward under-investigated parts of the app, or to send specialists into zones where problems keep clustering.
Both signals work passively — no configuration needed. They improve automatically as runs accumulate.
Configuration
| Variable | Default | Description |
|---|---|---|
| TARGET | none | Target config name (example | none | your custom name) |
| BASE_URL | http://localhost:3000 | Target app URL |
| MAX_EXPLORERS | 4 | API explorer agent count (0 to disable) |
| MAX_BROWSERS | 2 | Browser agent count |
| ANTHROPIC_API_KEY | — | Required |
| ISSUE_TRACKERS | — | Comma-separated list of active trackers: github, jira, notion, backlog, asana |
| REFRESH_SPEC | — | Set to 1 to re-run product discovery |
Issue tracker variables (set only what you need):
| Tracker | Variables |
|---|---|
| GitHub Issues | GITHUB_TOKEN, GITHUB_REPO (owner/repo) |
| Jira | JIRA_BASE_URL, JIRA_EMAIL, JIRA_API_TOKEN, JIRA_PROJECT_KEY |
| Notion | NOTION_API_KEY, NOTION_DATABASE_ID ¹ |
| Backlog | BACKLOG_SPACE, BACKLOG_API_KEY, BACKLOG_PROJECT_ID |
| Asana | ASANA_ACCESS_TOKEN, ASANA_PROJECT_ID |
¹ The Notion database must have Name (title), Labels (multi_select), and Status (select) properties.
Multiple trackers can be active at the same time — findings are posted to all of them. If ISSUE_TRACKERS is not set but GITHUB_TOKEN and GITHUB_REPO are present, GitHub is used automatically (backward compatible).
Adding a target
shoal loads shoal.config.ts from the current working directory at startup. Two common setups:
Option A — config in your project directory (recommended)
# Copy the example from the repo (or create from scratch)
curl -O https://raw.githubusercontent.com/m8i-51/shoal/main/shoal.config.example.ts
mv shoal.config.example.ts shoal.config.ts
# Edit shoal.config.ts, then:
shoalOption B — config inside the cloned repo (simplest for development)
cp shoal.config.example.ts shoal.config.ts
# edit shoal.config.ts, then:
npm startshoal.config.ts must export a target object with two fields:
// shoal.config.ts
export const target = {
appTools: [
{ name: "list_items", description: "Get all items.", input_schema: { type: "object", properties: {}, required: [] } },
],
async execute(toolName: string, input: Record<string, unknown>) {
if (toolName === "list_items") {
return fetch(`${process.env.BASE_URL}/api/items`).then(r => r.json());
}
},
};Alternatively, copy targets/example.ts, register it in targets/index.ts, and set TARGET=my-app.
Scheduled runs
To run shoal weekly against a staging environment, add a GitHub Actions workflow to your repo.
Run shoal init — it will offer to generate .github/workflows/shoal-weekly.yml automatically. Or copy the example from this repo:
curl -O https://raw.githubusercontent.com/m8i-51/shoal/main/.github/workflows/shoal-weekly.example.yml
mv shoal-weekly.example.yml .github/workflows/shoal-weekly.ymlThen add ANTHROPIC_API_KEY to your repo's Actions secrets (Settings → Secrets and variables → Actions).
The workflow runs every Monday at 09:00 UTC and can also be triggered manually from the Actions tab. Findings are filed as GitHub Issues using the built-in GITHUB_TOKEN.
Account Manager
For apps that require login, shoal includes an Account Manager agent that autonomously discovers and tests authentication. It finds login pages, tests credentials from test-accounts/ (gitignored), and injects session state into explorer agents so they can reach authenticated routes.
Create test-accounts/accounts.json with your test credentials:
[
{ "email": "[email protected]", "password": "testpassword", "role": "user" },
{ "email": "[email protected]", "password": "adminpassword", "role": "admin" }
]LLM providers
shoal defaults to Anthropic Claude. To use a different provider, set these variables in .env:
| Provider | Variables |
|---|---|
| Anthropic (default) | ANTHROPIC_API_KEY |
| Amazon Bedrock | LLM_PROVIDER=bedrock, AWS_ACCESS_KEY_ID, AWS_SECRET_ACCESS_KEY, AWS_REGION |
| OpenAI | LLM_PROVIDER=openai, LLM_API_KEY, LLM_MODEL |
| OpenRouter | LLM_PROVIDER=openrouter, LLM_API_KEY, LLM_MODEL |
| Groq | LLM_PROVIDER=groq, LLM_API_KEY, LLM_MODEL |
| Gemini | LLM_PROVIDER=gemini, LLM_API_KEY, LLM_MODEL |
| Codex (ChatGPT subscription) | run npm run auth:codex once, then LLM_PROVIDER=codex |
| Ollama | LLM_BASE_URL=http://localhost:11434/v1, LLM_MODEL |
| LM Studio | LLM_BASE_URL=http://localhost:1234/v1, LLM_MODEL |
For Bedrock, set LLM_MODEL to a Bedrock model ID such as anthropic.claude-3-5-sonnet-20241022-v2:0. Cross-region inference profiles (e.g. us.anthropic.claude-3-5-sonnet-20241022-v2:0) are also supported.
See .env.example for full examples.
