Skip to content
/ clancy Public

HTTP/HTTPS proxy with real-time monitoring for Agent traffic. Designed for debugging and monitoring Claude Code, Anthropic API calls, and other AI agent communications.

2 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

bazumo/clancy

BranchesTags

Repository files navigation

Clancy

HTTP/HTTPS proxy with real-time monitoring for Agent traffic. Designed for debugging and monitoring Claude Code, Anthropic API calls, and other AI agent communications.

Screenshot

Features

  • Real-time monitoring - WebSocket-based live updates as requests flow through
  • HTTP/HTTPS proxy - Full support for both protocols with TLS interception
  • TLS fingerprinting - Spoof browser TLS fingerprints using uTLS
  • SSE parsing - Automatic parsing and display of Server-Sent Events
  • Request/Response inspection - View headers, bodies, timing, and more
  • Enhanced view for agent traffic - View tools, system prompt, messages etc. inside LLM API calls

It has been tested with:

  • Claude code
  • Claude code (Bedrock)
  • OpenCode (Bedrock)

Quick Start (npx)

Run it with npx:

npx clancy-proxy

Global Installation

Install globally to use the clancy command anywhere:

npm install -g clancy-proxy

Then run:

clancy

Quick Start (from source)

# Install dependencies
npm install

# Build and start the server
npm start

The server will start on http://localhost:9090 with the web dashboard.

Usage

node.js/bun based app (claude,opencode)

HTTP_PROXY=http://localhost:9090 \
HTTPS_PROXY=http://localhost:9090 \
NODE_TLS_REJECT_UNAUTHORIZED=0 \
claude

electron based app (e.g. Claude Desktop)

/Applications/Claude.app/Contents/MacOS/Claude --proxy-server="http://localhost:9090" --ignore-certificate-errors

Other applications might work as well.

With curl

curl -x http://localhost:9090 -k https://api.anthropic.com/v1/messages

CLI Options

Options:
  -p, --port <port>                Port to listen on (default: "9090")
  -H, --host <host>                Host to bind to (default: "localhost")
  -t, --tls-provider <provider>    TLS provider: 'utls' (Go fingerprinting) or 'native' (Node.js TLS) (default: "native")
  -f, --tls-fingerprint <fp>       TLS fingerprint for utls (default: "electron")
  -h, --help                       Display help

TLS Fingerprints (with uTLS)

When using --tls-provider utls, you can specify a browser fingerprint:

  • chrome120, chrome102, chrome100
  • firefox120, firefox105, firefox102
  • safari16
  • edge106, edge85
  • ios14
  • android11
  • electron
  • randomized
  • golanghttp2

Example:

clancy --tls-provider utls --tls-fingerprint chrome120

Development

# Run frontend dev server (hot reload)
npm run dev

# Run just the proxy server (watches for changes)
npm run dev:server

# Run tests
npm test

# Run tests once
npm run test:run

# Lint code
npm run lint

Troubleshooting

Certificate errors

If you see certificate errors, ensure you're setting NODE_TLS_REJECT_UNAUTHORIZED=0 or trust the CA certificate generated in certs/.

Port already in use

Change the port with -p:

clancy -p 8080

TLS fingerprint detection

Some services detect and block Node.js TLS fingerprints. Use the uTLS provider:

clancy --tls-provider utls --tls-fingerprint chrome120

⚠️ Warning: Only use this proxy in trusted networks!
Disabling cert checking exposes you to man-in-the-middle (MITM) attacks between the application and the proxy, which in case of agents means RCE on your machine. Only proxy over a trusted network or don't disable cert checking and trust the cert generated in certs.

About

HTTP/HTTPS proxy with real-time monitoring for Agent traffic. Designed for debugging and monitoring Claude Code, Anthropic API calls, and other AI agent communications.

Topics

proxy reverse-engineering agents

Resources

Readme
Activity

Stars

2 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages