Open-source PaaS where AI agents deploy apps with a single CLI command.

No web UI — just a CLI and a JSON API. Self-hostable.

• Auto-build — detects project type (Node.js, Python, Go, Rust, Static) and generates a Dockerfile
• One-line deploy — vex deploy ./my-app
• JSON API — every response is JSON, ready for AI agents to parse
• Self-host — single binary + PostgreSQL + Docker
• Built-in proxy — host-based reverse proxy included (no Nginx/Traefik needed)
• Auto TLS — per-app certificates via Let's Encrypt HTTP-01 (no DNS provider required)

# macOS (Apple Silicon)
curl -fsSL https://github.com/jbj338033/vex/releases/latest/download/vex-darwin-arm64 -o vex
chmod +x vex && sudo mv vex /usr/local/bin/

# macOS (Intel)
curl -fsSL https://github.com/jbj338033/vex/releases/latest/download/vex-darwin-amd64 -o vex
chmod +x vex && sudo mv vex /usr/local/bin/

# Linux (amd64)
curl -fsSL https://github.com/jbj338033/vex/releases/latest/download/vex-linux-amd64 -o vex
chmod +x vex && sudo mv vex /usr/local/bin/

# Linux (arm64)
curl -fsSL https://github.com/jbj338033/vex/releases/latest/download/vex-linux-arm64 -o vex
chmod +x vex && sudo mv vex /usr/local/bin/

cargo install --git https://github.com/jbj338033/vex vex-cli

docker compose up -d

vex login --url http://localhost:3000

Opens GitHub browser auth; an API key is issued automatically.

vex deploy ./my-app --name my-app

vex status my-app

vex login [--url <server-url>]                 GitHub login
vex deploy <path> [--name <name>]              Deploy a directory
vex deploy --git <url> --name <name>           Deploy from Git URL
vex logs <app> [-f] [-n 100]                   View logs (-f: stream)
vex env list <app>                             List env vars
vex env set <app> KEY=VALUE [KEY2=VALUE2...]    Set env vars
vex env unset <app> KEY [KEY2...]              Unset env vars
vex status <app>                               App status
vex destroy <app> --force                      Delete app

All commands support --format json (default) or --format text.

Base URL: http://localhost:3000/v1

Auth: Authorization: Bearer vex_xxx

{"ok": true, "data": {...}}
{"ok": false, "error": {"code": "app_not_found", "message": "..."}}

If a Dockerfile exists, auto-detection is skipped.

• Docker
• PostgreSQL 15+
• Wildcard DNS (e.g. *.vex.dev → server IP)
• GitHub App with Device Flow enabled

1. Create a new GitHub App at Developer Settings
2. Enable "Device Flow"
3. Set GITHUB_CLIENT_ID and GITHUB_CLIENT_SECRET env vars

Enable automatic per-app TLS certificates via Let's Encrypt HTTP-01:

VEX_TLS_ENABLED=true
VEX_ACME_EMAIL=admin@example.com
VEX_CERT_DIR=/var/lib/vex/certs

Ports when TLS is enabled:

• 443 — HTTPS proxy (main traffic)
• 80 — ACME challenge + HTTP→HTTPS redirect

When TLS is disabled (default), the proxy listens on a single HTTP port (default 8080).

docker compose up -d

export DATABASE_URL=postgres://vex:vex@localhost:5432/vex
export VEX_DOMAIN=vex.dev
vex-server

vex/
├── crates/
│   ├── vex-core/       # Shared types, DB models, errors, schemas
│   ├── vex-builder/    # Project detection + Dockerfile generation
│   ├── vex-server/     # axum API server + reverse proxy + TLS
│   └── vex-cli/        # clap CLI
├── migrations/         # PostgreSQL migrations
├── compose.yaml
└── Dockerfile.server

cargo build                      # Build
cargo test                       # Test
cargo clippy -- -D warnings      # Lint
cargo fmt --check                # Format check

MIT