Bonsai agents are Claude Code agents equipped with a structured instruction layer — identity, memory, protocols, skills, workflows, and sensors. Think of each agent as a new hire who arrives with full onboarding materials:
| What a new hire needs | Bonsai equivalent |
|---|---|
| Role description | Identity — job title, mindset, relationships |
| Company handbook | Protocols — security policy, scope boundaries |
| Playbooks | Workflows — how to plan, review, report |
| Domain training | Skills — coding standards, API patterns |
| Automated guardrails | Sensors — catch mistakes in real time |
| Maintenance duties | Routines — periodic audits on a schedule |
When an agent starts a session, it reads its identity, checks its memory, follows its startup protocol, and gets context injected by sensors — all before you ask it anything.
Tech Lead
Architects, plans, reviews — never writes application code.
The orchestrator. It reads requirements, writes implementation plans, dispatches work to code agents via worktrees, and reviews their output. Every project starts with a Tech Lead.
Default skills: planning-template, issue-classification, dispatch, review-checklist.
Backend
API, database, server-side logic.
Executes backend implementation plans. Knows coding standards, testing conventions, and database patterns. Focused on server-side code.
Default skills: coding-standards, testing, database-conventions.
Frontend
UI components, state management, styling.
Executes frontend plans. Equipped with coding standards, testing, and UI/UX design knowledge. Focused on client-side code.
Default skills: coding-standards, testing, design-guide.
Full-Stack
End-to-end — UI, API, database, auth, tests.
A generalist code agent that handles the full stack. Carries the broadest set of default skills — coding standards, testing, design, databases, API design, and auth patterns.
Default skills: coding-standards, testing, design-guide, database-conventions, api-design-standards, auth-patterns.
DevOps
Infrastructure-as-code, CI/CD, containers, deployment.
Manages infrastructure. Comes with IaC and container standards, plus the iac-safety-guard sensor that blocks dangerous commands like terraform destroy.
Default skills: coding-standards, iac-conventions, container-standards.
Security
Vulnerability audits, auth review, dependency scanning.
Audits code for security issues. Equipped with auth patterns, review checklists, and the security-audit workflow. The api-security-check sensor auto-detects common vulnerabilities in code changes.
Default skills: coding-standards, testing, auth-patterns, review-checklist.
The Tech Lead is the central agent in every Bonsai project. It operates fundamentally differently from code agents:
You (human) └── Tech Lead (station/) plans, reviews, orchestrates, runs routines ├── Backend (backend/) API, database, server logic ├── Frontend (frontend/) UI, components, styling ├── DevOps (devops/) infrastructure, CI/CD └── Security (security/) audits, scanning| Tech Lead does | Code agents do |
|---|---|
| Writes implementation plans | Executes plans step-by-step |
| Dispatches work via worktrees | Implements in isolated branches |
| Reviews code agent output | Writes completion reports |
| Runs routines (maintenance) | Focuses on implementation |
| Manages scaffolding (status, roadmap, plans) | References scaffolding for context |
Start with the Tech Lead (always installed via bonsai init), then add code agents based on your project:
| Your situation | Add these agents | Why |
|---|---|---|
| Solo developer, any stack | fullstack | One agent handles everything — UI, API, database, tests |
| Separated frontend and backend | backend + frontend | Domain-specific skills and conventions for each layer |
| Infrastructure work | + devops | IaC conventions, container standards, iac-safety-guard sensor |
| Security-sensitive project | + security | Vulnerability scanning, dependency audits, security-audit workflow |
| Full team | backend + frontend + devops + security | Maximum specialization and coverage |
The simplest setup. One Tech Lead, one Full-Stack agent:
You └── Tech Lead (station/) └── Full-Stack (fullstack/)The Tech Lead plans features and reviews work. The Full-Stack agent implements everything. Good for small-to-medium projects where you don’t need domain specialization.
Split code agents by domain for larger projects:
You └── Tech Lead (station/) ├── Backend (backend/) └── Frontend (frontend/)Each agent has domain-specific skills and conventions. The Tech Lead coordinates across both — planning features that span frontend and backend, reviewing each agent’s output, maintaining shared standards.
Maximum specialization with infrastructure and security coverage:
You └── Tech Lead (station/) ├── Backend (backend/) ├── Frontend (frontend/) ├── DevOps (devops/) └── Security (security/)The DevOps agent adds iac-safety-guard (blocks dangerous infrastructure commands) and infrastructure routines. The Security agent adds api-security-check (detects vulnerabilities in code), scope-guard-commands (blocks execution), and the security-audit workflow.
bonsai init. It lives in the station directory alongside scaffolding.bonsai add. Each gets its own workspace directory (e.g., backend/, frontend/). The interactive picker lets you select agent type and customize abilities.Each agent gets:
CLAUDE.md navigation file with cross-linked referencesagent/ directory with Core (identity, memory), Protocols, Workflows, Skills, and Sensors.claude/settings.json for all installed sensors.bonsai.yaml tracking all installed componentsSee Your First Workspace for a step-by-step walkthrough.