Delv
CodingAbandoned· 8moby Plandex4.2

Plandex

Open-source terminal-based AI coding agent for large projects with a cumulative diff review sandbox and 2M token context.

Try it Source Also in Tools: AI Code & Dev
B
Safety & Trust

Delv Safety Grade: B

Score 71/100 · assessed 2026-04-18

Maintainer55
Permissions40
Supply chain75
Transparency85
Incidents100

Plandex is an open-source terminal-based AI coding agent maintained by a small team (Plandex Inc). The project shows active development with good documentation and transparency through GitHub. However, as an autonomous coding agent, it requires extensive permissions including filesystem write access, shell execution capabilities, and network access to external LLMs. The freemium model includes a cloud service component which adds supply chain considerations. The codebase is fully open source with clear licensing, but the maintainer is a smaller organisation rather than an established vendor. No security incidents are documented. The tool's power to autonomously modify code across large projects means careful review of its changes is essential, though it does include a diff review sandbox feature.

Green flags

  • Fully open source with active GitHub development and issue tracking
  • Includes diff review sandbox for change inspection before applying
  • Clear documentation and transparent about capabilities
  • Standard Go installation via package managers available
  • No known security incidents or malicious behaviour

Red flags

  • Autonomous code modification across entire projects without human approval
  • Requires shell execution and broad filesystem write permissions
  • Small maintainer team with limited bus factor
  • Cloud service component introduces additional trust dependencies

Permissions requested

Read filesWrite filesShell executeOutbound networkExternal LLM callRepo readRepo write
Assessed by Delv Editorial using public metadata. Grades are advisory and update as the ecosystem changes. They do not replace your own review of permissions and code before granting an agent access to sensitive systems.

Pricing

FREEMIUMFree OSS, paid cloud

Platforms

cli

Review

Plandex is a terminal-based coding agent that actually remembers what it's doing across hundreds of files. The autonomy here is cumulative: you describe a feature or refactor, it generates changes across your codebase, then you review them in a sandbox diff before applying. That review step is the whole point. Unlike Cursor or Aider, which apply changes immediately, Plandex builds a changeset you can inspect, reject parts of, and iterate on without polluting your working directory. I used it to migrate a legacy Express API to Fastify across 40 route files. Gave it the migration plan in plain English, pointed it at the codebase, and it proposed changes to every route handler, middleware registration, and error boundary. The 2 million token context window meant it cross-referenced how I'd handled similar patterns elsewhere. The sandbox let me reject its overly cautious error handling in three files and approve the rest. That workflow - describe, review, apply - beats the usual AI chat loop where you're manually copying diffs into your editor. Failure modes: it occasionally misses implicit dependencies. In the Fastify migration, it updated route signatures but forgot to change a shared validation helper that expected Express's `req` shape. The diff caught it, but only because I knew to look. It also struggles with ambiguous instructions. 'Make this faster' produces vague changes; 'replace this O(n²) loop with a hash map' works better. Compared to Aider, Plandex is slower but safer. Aider applies changes instantly, which is faster for small edits but riskier for multi-file refactors. Compared to GitHub Copilot Workspace, Plandex runs locally and costs nothing if you self-host. The cloud tier adds collaboration features and faster models, but the open-source version is fully functional. The terminal UI takes getting used to. No syntax highlighting in diffs, just plain text. But for large refactors where you need to audit every change before committing, that cumulative review sandbox is worth the friction.
Verdict

Pay for the cloud tier if you're refactoring codebases with a team and want shared context. Stick with the free self-hosted version if you're solo and comfortable running your own infrastructure. Skip it if you prefer instant feedback over batch review.

Good at

  • 2M token context window handles large codebases without forgetting earlier decisions
  • Cumulative diff sandbox lets you review and reject changes before applying them
  • Open-source and self-hostable, no vendor lock-in
  • Works across hundreds of files in a single plan
  • Terminal-based, integrates cleanly into existing CLI workflows

Watch out

  • Terminal UI lacks syntax highlighting and modern diff visualisation
  • Occasionally misses implicit dependencies between files
  • Requires precise instructions; vague prompts produce vague changes
  • Slower iteration loop than instant-apply tools like Aider
  • Cloud tier pricing unclear for team use

Use cases

  • large refactors
  • multi-file tasks
  • autonomous debugging