CLI Automation: Running OpenCode in Scripts
📝 Course Notes
Key takeaways from this lesson:
What You'll Be Able to Do
- Call OpenCode from scripts without manual intervention
- Start remote servers for team members to share the same AI session
- Embed OpenCode in CI/CD pipelines for automated code review
- One-click pull PRs and launch corresponding OpenCode sessions
Your Current Pain Points
- Manually opening TUI and typing commands every time - too much repetitive work
- Want to run OpenCode on a server but there's no GUI
- Want AI to automatically check code in CI/CD but don't know how to integrate
- Want team members to connect to the same OpenCode instance for collaboration
When to Use This Technique
- Script Automation: Batch processing multiple projects, scheduled tasks
- CI/CD Integration: Code review, auto-fix, documentation generation
- Remote Development: Run on server, connect from local terminal
- Team Collaboration: Share OpenCode instance, collaborative editing
🎒 Prerequisites
- [ ] Completed 5.1a Configuration Basics
- [ ] Can run
opencodein terminal to start TUI - [ ] Understand basic Shell commands (
cd,echo, pipes)
Core Concept
OpenCode provides two usage modes:
┌─────────────────────────────────────────────────────────────────────────┐
│ OpenCode Usage Modes │
├─────────────────────────────────────────────────────────────────────────┤
│ │
│ ┌─────────────────┐ ┌─────────────────┐ │
│ │ Interactive TUI │ │ Non-interactive │ │
│ │ │ │ CLI │ │
│ │ opencode │ │ opencode run │ │
│ │ │ │ │ │
│ │ • Daily dev │ │ • Scripts │ │
│ │ • Real-time │ │ • CI/CD │ │
│ │ • Human choice │ │ • Automation │ │
│ └─────────────────┘ └─────────────────┘ │
│ │
│ ┌─────────────────────────────────────────────────────────────────┐ │
│ │ Server Mode │ │
│ │ │ │
│ │ opencode serve → Start headless server (API only) │ │
│ │ opencode web → Start Web UI server │ │
│ │ opencode attach → Connect to remote server │ │
│ │ │ │
│ └─────────────────────────────────────────────────────────────────┘ │
│ │
└─────────────────────────────────────────────────────────────────────────┘Key Differences:
| Mode | Command | Characteristics |
|---|---|---|
| TUI | opencode | Interactive, for manual operations |
| Run | opencode run | Non-interactive, exits after completion |
| Serve | opencode serve | Headless server, API only |
| Web | opencode web | Server with Web interface |
Part 1: Non-Interactive Mode with opencode run
1.1 Basic Usage
opencode run is the most commonly used CLI command. It executes a task and automatically exits.
bash
# Simplest usage
opencode run "List all TypeScript files in this project"
# You'll see:
# > opencode · anthropic/claude-sonnet-4-5
#
# ✱ Glob "**/*.ts" in . · 12 matches
#
# There are 12 TypeScript files in this project:
# - src/index.ts
# - src/utils.ts
# ...1.2 Common Options
| Option | Description | Example |
|---|---|---|
-m, --model | Specify model | -m anthropic/claude-opus-4-5 |
--agent | Specify Agent | --agent code-reviewer |
-f, --file | Attach files | -f src/main.ts -f package.json |
-c, --continue | Continue last session | -c |
-s, --session | Specify session ID | -s session_abc123 |
--format json | JSON output format | --format json |
--share | Auto-share session | --share |
--title | Set session title | --title "Fix Login Bug" |
1.3 Practical Examples
Example 1: Code Review Script
bash
#!/bin/bash
# code-review.sh - Auto-review changes in current branch
# Get list of changed files
CHANGED_FILES=$(git diff --name-only main)
# Exit if no changes
if [ -z "$CHANGED_FILES" ]; then
echo "No changes found"
exit 0
fi
# Review each file
for file in $CHANGED_FILES; do
echo "Reviewing: $file"
opencode run -f "$file" "Please review the code quality of this file, focusing on: 1) Potential bugs 2) Performance issues 3) Code style"
doneExample 2: Read from stdin
bash
# Pipe input
cat error.log | opencode run "Analyze this error log and find the root cause"
# Combine with git diff
git diff main | opencode run "Check if these changes have any issues"Example 3: JSON Format Output (for script parsing)
bash
# Get JSON format output
opencode run --format json "List all TODO comments" > todos.json
# JSON output format example:
# {"type":"text","timestamp":1705316400000,"sessionID":"xxx","part":{"text":"Found 5 TODOs..."}}Part 2: Server Mode
2.1 Starting a Remote Server
🤔 When do you need a remote server?
- Shared Sessions: Team members connect to the same OpenCode instance
- Server Development: Run on remote server, connect from local terminal
- Avoid Cold Start: Keep MCP servers running,
opencode run --attachconnects directly
opencode serve (Headless Mode)
bash
# Start headless server (API only, no UI)
opencode serve
# You'll see:
# Warning: OPENCODE_SERVER_PASSWORD is not set; server is unsecured.
# opencode server listening on http://localhost:4096⚠️ Security Warning
By default, opencode serve has no authentication.
But it only listens on 127.0.0.1 (localhost) by default, so external networks cannot directly access it. Security risks only exist when you:
- Use
--hostname 0.0.0.0to open all network interfaces - Server has a public IP and firewall allows the port
...then you'll face security risks.
You must set a password when exposing to public network:
bash
# Set server password
export OPENCODE_SERVER_PASSWORD=your-secure-password
# Then start
opencode serve
# Now access requires authenticationopencode web (Web UI Mode)
bash
# Start server with Web UI
opencode web
# You'll see:
# Warning: OPENCODE_SERVER_PASSWORD is not set; server is unsecured.
#
# Local access: http://localhost:4096
# Network access: http://192.168.1.100:40962.2 Server Options
| Option | Description | Default |
|---|---|---|
--port | Listen port | Auto (prefers 4096) |
--hostname | Listen address | 127.0.0.1 |
--mdns | Enable mDNS discovery | false |
--mdns-domain | mDNS domain | opencode.local |
--cors | CORS whitelist domains | - |
bash
# Listen on all network interfaces (allow LAN access)
opencode serve --hostname 0.0.0.0
# Specify port
opencode serve --port 8080
# Enable mDNS discovery (accessible via opencode.local in LAN)
opencode serve --hostname 0.0.0.0 --mdns2.3 Security Configuration
Environment Variables:
| Variable | Description |
|---|---|
OPENCODE_SERVER_PASSWORD | Server password |
OPENCODE_SERVER_USERNAME | Username (default: opencode) |
bash
# Set username and password
export OPENCODE_SERVER_USERNAME=admin
export OPENCODE_SERVER_PASSWORD=MySecurePassword123!
opencode serve --hostname 0.0.0.0💡 Why only environment variables?
Password-related configurations cannot be placed in opencode.json config file, they can only be set via environment variables.
This is for security - to prevent passwords from being accidentally committed to Git repositories.
Global config file ~/.config/opencode/opencode.json only supports these server options:
json
{
"server": {
"port": 4096,
"hostname": "0.0.0.0",
"mdns": true,
"mdnsDomain": "opencode.local",
"cors": ["http://example.com"]
}
}2.4 Connecting to Remote Server
Using attach
bash
# Connect to remote server from local
opencode attach http://192.168.1.100:4096
# Specify working directory
opencode attach http://192.168.1.100:4096 --dir /projects/myappUsing run
bash
# First start on server
opencode serve --hostname 0.0.0.0
# Connect and execute from another machine
opencode run --attach http://192.168.1.100:4096 "Analyze this project's architecture"Part 3: CI/CD Integration
3.1 GitHub Actions Example
yaml
# .github/workflows/ai-review.yml
name: AI Code Review
on:
pull_request:
types: [opened, synchronize]
jobs:
review:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Setup OpenCode
run: |
curl -fsSL https://raw.githubusercontent.com/anomalyco/opencode/main/install | bash
echo "$HOME/.opencode/bin" >> $GITHUB_PATH
- name: AI Review
env:
ANTHROPIC_API_KEY: ${{ secrets.ANTHROPIC_API_KEY }}
run: |
# Get changed files
FILES=$(git diff --name-only origin/main...HEAD | head -10)
for file in $FILES; do
echo "Reviewing: $file"
opencode run -f "$file" --title "AI Review: $file" \
"As a code reviewer, review the changes in this file. Focus on:
1. Potential bugs or security issues
2. Code readability and maintainability
3. Best practices compliance
Output format:
- 🟢 Pass
- 🟡 Suggestions for improvement
- 🔴 Must fix"
done3.2 GitLab CI Example
yaml
# .gitlab-ci.yml
ai-review:
stage: test
image: node:20
script:
- curl -fsSL https://raw.githubusercontent.com/anomalyco/opencode/main/install | bash
- export PATH="$HOME/.opencode/bin:$PATH"
- |
git diff --name-only origin/main...$CI_COMMIT_SHA | while read file; do
opencode run -f "$file" "Review code: $file"
done
only:
- merge_requests3.3 Automation Script Template
bash
#!/bin/bash
# auto-fix.sh - Auto-fix code style issues
set -e
# Check for uncommitted changes
if ! git diff --quiet; then
echo "Error: You have uncommitted changes, please commit or stash first"
exit 1
fi
# Get all files to check
FILES=$(find src -name "*.ts" -o -name "*.tsx")
for file in $FILES; do
echo "Processing: $file"
opencode run -f "$file" \
"Please fix code style issues in this file without changing the functionality. Focus on:
1. Variable naming conventions
2. Code indentation and formatting
3. Remove unused imports
4. Add necessary comments"
done
echo "All files processed"Part 4: opencode pr Command
4.1 Feature Overview
opencode pr is a dedicated command for handling GitHub PRs. It:
- Fetches the specified PR to local
- Automatically creates branch
pr/<PR-number> - If PR description contains OpenCode session link, imports it automatically
bash
# Fetch PR and start OpenCode
opencode pr 123
# You'll see:
# Fetching and checking out PR #123...
# Successfully checked out PR #123 as branch 'pr/123'
#
# Starting opencode...4.2 Use Cases
| Scenario | Description |
|---|---|
| Review others' PRs | One-click fetch, review directly in OpenCode |
| Continue previous session | PR author shared session link, you can restore context |
| Handle Fork PRs | Auto-adds Fork remote, correctly sets upstream |
4.3 Prerequisites
bash
# Ensure gh CLI is installed
gh --version
# Ensure authenticated
gh auth statusHow to install gh CLI
bash
# macOS
brew install gh
# Ubuntu/Debian
sudo apt install gh
# Windows
winget install GitHub.cliPart 5: Session Management CLI
5.1 List Sessions
bash
# List all sessions
opencode session list
# You'll see:
# Session ID Title Updated
# ─────────────────────────────────────────────────────────────
# session_abc123 Fix login bug Today 14:30
# session_def456 Add user profile Yesterday
# Limit count
opencode session list -n 10
# JSON format (for scripts)
opencode session list --format json5.2 Export Sessions
bash
# Export specific session
opencode export session_abc123 > backup.json
# Interactive selection if no ID specified
opencode export > backup.json5.3 Import Sessions
bash
# Import from file
opencode import backup.json
# Import from share link
opencode import https://opncd.ai/share/abc123Part 6: Other Useful Commands
6.1 opencode models
bash
# List all available models
opencode models
# List models from specific provider
opencode models anthropic
# Show detailed info (including pricing)
opencode models --verbose
# Refresh model cache
opencode models --refresh6.2 opencode stats
bash
# View usage statistics
opencode stats
# View last 7 days
opencode stats --days 7
# View model usage breakdown
opencode stats --models
# Only current project
opencode stats --project ""6.3 opencode upgrade / uninstall
bash
# Upgrade to latest version
opencode upgrade
# Upgrade to specific version
opencode upgrade 0.1.50
# Use specific installation method
opencode upgrade --method npm
# Uninstall (keep config)
opencode uninstall --keep-config
# Preview what will be deleted
opencode uninstall --dry-runChecklist ✅
- [ ] Can use
opencode runfor one-off tasks - [ ] Can use
opencode serveto start remote server with password - [ ] Can use
opencode attachto connect to remote server - [ ] Can use
opencode prto fetch and handle GitHub PRs - [ ] Can use
opencode session listto view session history - [ ] Can use
opencode export/importto backup and restore sessions
Common Pitfalls
| Symptom | Cause | Solution |
|---|---|---|
opencode serve error "address already in use" | Port occupied | Use different port: --port 8080 |
| Remote connection refused | Firewall or hostname setting | Confirm --hostname 0.0.0.0, check firewall |
opencode pr error "gh CLI not found" | GitHub CLI not installed | Install gh first and authenticate |
opencode run keeps waiting | AI executing long task | Add timeout in script: timeout 60 opencode run ... |
| JSON output parsing failed | Output contains multiple JSON lines | Split by newline, each line is a JSON object |
| Server no auth warning | Password not set | export OPENCODE_SERVER_PASSWORD=xxx |
Lesson Summary
You learned:
- Non-Interactive Mode: Use
opencode runto call OpenCode in scripts - Server Mode: Use
opencode serve/webto start remote services - Security Configuration: Set
OPENCODE_SERVER_PASSWORDto protect server - CI/CD Integration: Embed OpenCode in automated workflows
- PR Handling: Use
opencode prfor one-click PR fetch and processing - Session Management: Use CLI commands to list, export, and import sessions
Next Steps
This is the final lesson in the advanced section. Next you can:
- Review CLI command reference in the Cheat Sheet
- Try CI/CD integration examples in Practical Scenarios
- Learn SDK Development to build your own integrations
Appendix: Source Code Reference
Click to expand source code locations
Last updated: 2026-02-14
| Feature | File Path | Lines |
|---|---|---|
opencode run command implementation | src/cli/cmd/run.ts | 215-614 |
opencode serve command implementation | src/cli/cmd/serve.ts | 6-20 |
opencode web command implementation | src/cli/cmd/web.ts | Full file |
opencode pr command implementation | src/cli/cmd/pr.ts | 6-112 |
| Server security check | src/flag/flag.ts | 31-32 |
| Server authentication logic | src/server/server.ts | 84-87 |
Key Environment Variables:
OPENCODE_SERVER_PASSWORD: Server passwordOPENCODE_SERVER_USERNAME: Server username (default: opencode)