Uneven AI runs entirely on your machine — no cloud, no API keys, no subscriptions required. It watches your terminal, fixes errors in real time, audits security continuously and logs everything. Rust-powered for maximum performance.
npm install uneven-ai Uneven AI spawns alongside your dev process, reading stdout and stderr in real time. The moment an error appears, it diagnoses the cause, applies a surgical fix and writes a detailed entry to .uneven-ai/log.md — with file, line, column, diff and recommendation.
Every power works locally, in real time, configured via a single TypeScript object.
Parses stack traces with file, line and column precision. Semantic search retrieves relevant context from your KB. The Rust engine applies a surgical diff via the `similar` crate — no full rewrites.
similar · surgical diffSpawns alongside any running process — npm, cargo, python, node, any command. Reads stdout and stderr in real time via Tokio async runtime. Zero CPU overhead when idle.
tokio::processStatic and active security scanning with built-in Ethical Guardrails. Proactively blocks malware generation and exploit creation while enforcing strict authorization scopes for active testing.
ethical guardrails · owaspLLaMA 3.2 via Candle (Rust) with full GPU/CUDA acceleration. Pluggable brain: swap to OpenAI, Claude, Gemini or Ollama via a single config line while keeping all other powers locally.
gpu accelerated · candleAdvanced Document Intelligence: PDF, Excel (.xlsx), Word (.docx) and CSV Pro. Indexes structured and unstructured business logic from your files into a semantic usearch vector store.
doc-ai · usearchEvery event is written to .uneven/log.md with timestamps, file paths, line/column precision, and surgical diffs. Fully searchable and auditable activity history.
.uneven/log.mdDetects reverse shells, obfuscation, crypto mining, and supply chain attacks. The Master Series protection now audits code suggestions generated by AI for maximum safety.
uneven scanNatural language → Insights. Connect to databases or query directly from local CSV and Excel files. 3-layer security ensures sensitive data never reaches the LLM.
file-analyst · sqlHeadless pipeline: TypeScript typecheck → malware scan → test suite. Exit code 0 = pass, 1 = fail. Writes step summary to GitHub Actions via $GITHUB_STEP_SUMMARY.
uneven ciUneven runs a local LLM by default — zero cloud, zero API key. The brain is pluggable. Swap to any provider via a single config line without changing anything else.
Embedded LLM via Candle (Rust). Now with GPU Acceleration. Runs LLaMA 3.2 fully on-device. 100% offline, no API key, no subscriptions. Recommended for privacy.
provider: 'local'Gemini 2.0 Flash & Pro. The best cloud-value brain. Superior performance with minimal cost. Recommended as the primary cloud fallback.
provider: 'gemini'Delegates inference to a local Ollama daemon. Supports any model in the Ollama library. Requires Ollama installed on your machine.
provider: 'ollama'GPT-4o and O1 models. Industry standard intelligence. Connect your OpenAI account while keeping your project data local and safe.
provider: 'openai'Claude 3.5 Sonnet and Opus. Exceptional coding reasoning. Best for complex architectural tasks when cloud usage is preferred.
provider: 'claude'1import { UnevenConfig } from 'uneven-ai' 2 3const config: UnevenConfig = { 4 5 // brain engine 6 brain: { 7 provider: 'local', // or 'openai' | 'claude' | 'gemini' 8 model: 'llama3.2', 9 temperature: 0.3, 10 }, 11 12 // knowledge sources 13 knowledge: { 14 dirs: ['./src', './docs'], 15 files: ['./README.md'], 16 db: { url: process.env.DATABASE_URL }, 17 urls: ['https://docs.example.com'], 18 }, 19 20 // terminal watcher 21 watch: { 22 terminal: 'npm run dev', 23 autoFix: true, 24 confirmBeforeFix: false, 25 }, 26 27 // security analysis 28 pentester: { 29 enabled: true, 30 mode: 'active', 31 target: 'http://localhost:3000', 32 static: { owasp: true, secrets: true, deps: true }, 33 bruteforce: { enabled: true, detectRateLimit: true }, 34 }, 35 36 // log 37 log: { 38 path: './.uneven-ai/log.md', 39 includeDiff: true, 40 }, 41 42} 43 44export default config
Install Uneven AI globally or as a dev dependency. The Rust core compiles automatically on first install via napi-rs.
npm install uneven-aiScaffolds uneven-ai.config.ts, creates .uneven-ai/ folder and downloads the default LLM model (~1.5GB, one time only).
npx uneven-ai initIndexes your knowledge base, spawns alongside your dev process and starts watching. The full agent in one command.
npx uneven-ai startUneven's Master Series now features active Ethical Guardrails. It doesn't just find vulnerabilities; it refuses to create them. Every AI suggestion is audited against a defensive constitution to ensure malware and exploits never reach your source code.
⚠ Active mode should only be used on systems you own or have explicit authorization to test.
Scaffolds uneven-ai.config.ts in your project, creates .uneven-ai/ folder and downloads the default LLM model (~1.5GB, one time only).
Indexes all configured knowledge sources — local files, database tables and external URLs — into the local vector store.
Starts the full agent: terminal watcher, file watcher, knowledge base and pentester if configured. The primary entry point.
Starts only the terminal watcher. Reads stdout/stderr of your dev process in real time. Pass --cmd to specify the process.
Queries the knowledge base directly from the terminal. The agent searches your indexed project, DB and docs to answer.
Runs the security analysis engine manually. Performs static and/or active testing based on your pentester config.
Displays the current .uneven-ai/log.md formatted in the terminal. Shows all errors, fixes and security findings.
Clears the vector store (vectors.usearch) and re-indexes everything from scratch. Use when knowledge base is stale.
Scans for malware and compromised dependencies. Detects reverse shells, obfuscation, supply chain attacks and typosquatting. Exit code 1 on critical/high findings (CI-compatible).
AI data analyst interactive REPL. Natural language → SQL → execute → Excel/dashboard. Pass --db <url> for PostgreSQL, MySQL, SQLite or MongoDB. --package-exe exports as a portable .exe.
Headless CI pipeline: TypeScript typecheck → malware scan → test suite. Exits 0 on pass, 1 on fail. Use --github to write step summaries to GitHub Actions.
import { Uneven } from 'uneven-ai' const ai = new Uneven(config) await ai.init() // index + setup await ai.watch() // start agent await ai.pentest() // run security await ai.ask('...') // query KB await ai.stop() // cleanup // Events ai.on('error-detected', fn) ai.on('fix-applied', fn) ai.on('pentest-finding', fn) ai.on('indexed', fn)