Git push guardrails
for AI agents.

A self-hosted gateway that checks every push the same way every time: blocks unsafe pushes, forwards safe ones, and records every decision.

See Live Demo View on GitHub

Source-available, free for non-commercial use, PolyForm Noncommercial, self-host with Docker or bare-metal.

The gate

Checked at push time, the same way, every time.

Every push your agent makes is checked against the rules you turned on. Leaked credentials, force-pushes to main, schema drifting from code: held at the gateway, never landing in your real repo's history. Clean pushes forward to your upstream in under a second, byte-for-byte unchanged.

  • Blocks unsafe pushes, forwards clean ones in <1s
  • Same answer every push, deterministic, no AI-reviewer drift
  • Sits between your agent and your real git host
Your agentgit push
checks your rules
nimblegateblock, forward, record
clean pushes only
Your upstreamGitHub, Gitea, GitLab
Auto-PR

Agents fix their own rejections.

A rejected push posts its findings as a structured comment on the PR and fires a webhook, so your agent (Claude Code, Cursor, Copilot) reads what failed and pushes a fix. The sticky comment tracks attempt N/M and @-mentions the agent; when a push finally passes, the loop closes itself.

  • Structured PR comment + webhook on every rejection
  • @bot mention with multi-bot rotation and loop guardrails
  • Self-closes on a clean push, no babysitting
nimblegate on PR #128Rejected
2 findings, attempt 2/3
  • security/no-hardcoded-secrets
  • git-safety/no-force-push-main
@claude-bot, push a fix
agent reads it and pushes a fix
nimblegate on PR #128 Resolved
all findings cleared, loop closed
Insights

See what your agents are actually doing.

Reporting built into the gate: every push becomes a report, what was caught, what changed, which rules fire most, how clean each repo is. On the dashboard, and as a read-only MCP + REST API your agent can query. The gate even estimates the review time it saved.

  • One-click reports, pick a repo and a window, no query language
  • Ask the gate over MCP: “what did you block this week?”
  • Time-saved + recurring-finding stats, per repo and per stack
nimblegate Reports dashboard: a Decisions report listing accepted and rejected pushes with the rule that fired and its severity.

Free for your own work. A small license for commercial use.

Same full app either way, no feature gating, no time limit. The license is how a for-profit team stays legit and keeps a solo dev building.

Non-commercial
Free

Personal projects, learning, research, non-profits, and trying it out.

  • The full app, no feature gating, no time limit
  • 45 built-in frames + your own regex rules
  • Auto-PR fix-loop: PR comments + webhooks
  • Dashboard, time-saved stats, MCP / REST analytics
  • Self-hosted; nothing phones home
  • Under PolyForm Noncommercial, today and for good
Get started
Commercial
$99 / year

For-profit use, per company, including gating code that ships paid product.

  • Everything in the non-commercial version
  • The legal right to use it commercially
  • One license per company, all your developers
  • Best-effort email support
  • Updates published during your licensed year
  • Proper invoice / receipt (tax handled)
Get a commercial license

Larger organisations needing an SLA, signed terms, or bespoke features: contact@nimblegate.com.