Open Source โ€ข AGPL-3.0

Autonomous Issue
Resolution

Security scanners find problems. Dependabot opens issues. Sugar reads the issue, writes the fix, runs the tests, and opens the PR.

Get Started View on GitHub
sugar run --watch-github
# GitHub issue detected: CVE-2024-38816 in spring-webmvc
โ†’ Issue #142 assigned to Sugar [dependabot, security]
# Reading issue and analyzing codebase...
โ†’ Fix identified: bump spring-webmvc 6.1.12 โ†’ 6.1.14
# Running test suite...
โ†’ 847 tests passed, 0 failed
# Opening pull request...
โ†’ PR #143 opened: "Fix CVE-2024-38816 - bump spring-webmvc"
Closes #142 | Ready for review

The Problem

Your tools are great at finding problems. Nobody closes the loop.

๐Ÿ”

Scanners Find, Humans Fix

Snyk, Dependabot, and GitHub's Copilot CLI are all excellent at surfacing issues - and terrible at resolving them. Every finding lands in a backlog someone has to manually work through.

๐Ÿ“ฌ

Issue Overload

GitHub Copilot CLI just launched bulk security scanning - opening dozens of issues at once. More discovery tooling means more backlog, not fewer vulnerabilities in production.

โณ

Weeks Between Find and Fix

The average time from vulnerability discovery to patch is measured in weeks. The bottleneck is never detection - it's the human time required to read, understand, fix, test, and ship.

๐Ÿ”

Repetitive, Low-Value Work

Dependency bumps, CVE patches, and routine bug fixes follow the same pattern every time: read issue, update code, run tests, open PR. This is exactly what automation is for.

More scanning without more resolution just grows the backlog.

The Solution

Sugar is the resolution layer.

Every other tool stops at the issue. Sugar reads it, fixes it, verifies it, and ships it.

How it compares

Tool What it does Where it stops
Copilot CLI Scans code, opens issues At the issue
Snyk Finds vulnerabilities, opens issues At the issue
Dependabot Detects outdated deps, opens issues At the issue
Sugar Reads issue, writes fix, runs tests, opens PR At the merged PR
Without Sugar
Snyk: Issue #87 opened (CVE-2024-1234)
Dev: Adds to backlog...
Week 2: Still in backlog
Week 4: Maybe gets to it
[vulnerability sits open for weeks...]
With Sugar
Snyk: Issue #87 opened (CVE-2024-1234)
Sugar: Reading issue...
Sugar: Fix implemented, tests pass
Sugar: PR #88 opened, closes #87
[resolved in minutes, not weeks]

What Sugar Does

End-to-end autonomous issue resolution - from GitHub issue to merged PR.

๐Ÿ”ญ

Discovers

Watches GitHub repos for labeled issues. Configure which labels Sugar acts on - security, bug, dependabot, or your own.

๐Ÿ”ง

Resolves

Reads each issue and implements a fix using Claude. Understands your codebase, your conventions, and what the issue is actually asking for.

๐Ÿงช

Verifies

Runs your test suite and quality gates before committing. If tests fail, Sugar iterates until they pass - not "done" until it actually works.

๐Ÿš€

Ships

Opens a PR referencing the original issue. Your team reviews and merges. Sugar handles the mechanical work - you handle the judgment calls.

๐Ÿง 

Persistent Memory

Sugar remembers your decisions, patterns, and preferences across every session. No re-explaining your stack or conventions when the next issue arrives.

  • โ€ข decision - architecture and design choices
  • โ€ข preference - how you like things done
  • โ€ข error_pattern - bugs and their fixes
  • โ€ข guideline - rules that apply everywhere
๐ŸŒ

Global Knowledge

Cross-project memory at ~/.sugar/memory.db. Standards and best practices follow Sugar into every project automatically.

  • โ€ข Store once with --global flag
  • โ€ข Available in every repo without setup
  • โ€ข Team standards, not just personal prefs
  • โ€ข Knowledge compounds across projects
๐Ÿ”Œ

MCP Integration

Works with Claude Code, Goose, OpenCode, and any MCP-compatible client. Use Sugar's memory tools from inside your AI assistant of choice.

  • โ€ข sugar opencode setup - one command
  • โ€ข 11 slash commands including /sugar-remember
  • โ€ข Memory server works outside Sugar projects
  • โ€ข Any MCP client can access your memory
๐Ÿท๏ธ

Label Filtering

Configure exactly which GitHub issue labels Sugar acts on per repository.

๐Ÿ”’

Tool Restrictions

Task-type security controls which tools are available per task.

๐Ÿ”

Self-Correction

Ralph Wiggum mode iterates until tests pass. Never marks "done" when tests are still failing.

๐Ÿช

Task Hooks

Pre/post execution hooks with variable substitution for custom automation pipelines.

How It Works

From open issue to merged PR - with no human in the loop for the mechanical parts.

๐Ÿ”ญ
Issue Detected label matches config
โ†’
๐Ÿ”ง
Fix Written Claude implements
โ†’
๐Ÿงช
Tests Pass or iterates until they do
โ†’
๐Ÿš€
PR Opened closes original issue

Each issue resolved autonomously - your team reviews and merges

1

Connect your repos

Configure which GitHub repositories Sugar watches and which issue labels trigger resolution. Point Sugar at a repo and tell it what to act on.

sugar github connect --repo your-org/your-repo
2

Issues get resolved automatically

When a matching issue appears, Sugar reads it, implements the fix using Claude, and runs your full test suite. If tests fail, it iterates until they pass.

sugar run --watch-github
3

Review and merge

Sugar opens a PR referencing the original issue. Your team does what humans are good at - reviewing judgment calls. Sugar handles the mechanical work.

4

Memory compounds over time

Outcomes feed back into Sugar's memory. What worked, what failed, your conventions and standards - captured and available for every future issue in every repo.

New in v3.1

Ralph Wiggum: Self-Correcting AI

Complex tasks need iteration. Ralph keeps going until tests actually pass.

โœ—

Without Ralph

1. Task: "Implement rate limiting"
2. Claude attempts once...
3. Tests: 2 pass, 3 fail
4. Task marked "done" anyway

80% right isn't shipped code.

โœ“

With Ralph

1. Iteration 1: Creates class, 2/5 tests pass
2. Iteration 2: Fixes bugs, 4/5 tests pass
3. Iteration 3: Handles edge case, 5/5 pass
4. <promise>DONE</promise> - Actually complete

Iterates until it actually works.

The Iteration Loop

๐Ÿ“
Same Prompt
โ†’
๐Ÿ”ง
Execute
โ†’
๐Ÿงช
Test
โ†’
๐Ÿ‘๏ธ
See Results

โ†ป Repeats until <promise>DONE</promise> or max iterations

When to Use Ralph

๐Ÿ›

Complex Bugs

Iterates through debugging until the fix actually works

๐Ÿ”„

Refactoring

Self-corrects when changes break existing tests

โœ…

TDD Features

Keeps implementing until all tests go green

Terminal 
# Enable iterative execution
sugar add "Implement rate limiting" --ralph --max-iterations 10

# Sugar iterates until tests pass
# Iteration 1: implement โ†’ test โ†’ 2/5 pass
# Iteration 2: fix โ†’ test โ†’ 4/5 pass
# Iteration 3: fix edge case โ†’ test โ†’ 5/5 pass
# Output: <promise>DONE</promise>
โœ“ Task completed after 3 iterations
New in v3.3

Intelligent Triage

Not sure if your task needs Ralph? Let Sugar decide.

Terminal 
# Let Sugar analyze complexity and decide
sugar add "Refactor auth to use repository pattern" --triage

# Sugar analyzes:
# - Task complexity (keywords, scope, risk)
# - Codebase capabilities (pytest, eslint, etc.)
# - Generates completion criteria automatically

๐Ÿ” Triage: Ralph recommended (78% confidence)
   Completion: "All tests pass, no lint errors"
โœ“ Task added with Ralph mode enabled

Triage auto-enables Ralph when confidence is 60%+. Simple tasks run single-pass.

Who It's For

Any team that generates more issues than they can manually close.

๐Ÿ‘จโ€๐Ÿ’ป

Solo Developers

Security advisories and Dependabot alerts don't pile up waiting for your attention. Sugar resolves routine issues in the background while you work on what matters.

๐Ÿ‘ฅ

Small Teams

Stop burning engineering time on dependency bumps and CVE patches. Sugar handles the mechanical resolution - your team handles the architecture decisions.

๐Ÿข

Enterprises

At scale, the gap between issue discovery and resolution is a compliance risk. Sugar closes that gap systematically, across every repo, without adding headcount.

Stop Managing the Backlog. Close It.

Install Sugar in 30 seconds. Point it at a repo. Watch issues become pull requests.

pip install sugarai
View Quick Start Guide Star on GitHub