CLI reference
Complete reference for Moat CLI commands.
Global flags
These flags apply to all commands:
| Flag | Description |
|---|---|
-v, --verbose | Enable verbose output (debug logs) |
--dry-run | Show what would happen without executing |
--json | Output in JSON format |
--profile NAME | Credential profile to use (env: MOAT_PROFILE) |
-h, --help | Show help for command |
Run identification
Commands that operate on a run (stop, destroy, attach, logs, trace, audit, snapshot) accept a run ID or a run name:
moat stop run_a1b2c3d4e5f6 # by full ID
moat stop run_a1b2 # by ID prefix
moat stop my-agent # by nameResolution priority: exact ID > ID prefix > exact name.
If a name matches multiple runs, batch commands (stop, destroy) prompt for confirmation while single-target commands (logs, attach) list the matches and ask you to specify a run ID.
Common agent flags
The agent commands (moat claude, moat codex, moat gemini) share the following flags. These flags work identically across moat claude, moat codex, and moat gemini.
| Flag | Description |
|---|---|
-g, --grant PROVIDER | Inject credential (repeatable). See Grants reference for available providers. |
-e KEY=VALUE | Set environment variable (repeatable) |
-n, --name NAME | Run name (default: from agent.yaml or random) |
-d, --detach | Run in background |
--rebuild | Force rebuild of container image |
--allow-host HOST | Additional hosts to allow network access to (repeatable) |
--runtime RUNTIME | Container runtime to use (apple, docker) |
--keep | Keep container after run completes |
--no-sandbox | Disable gVisor sandbox (Docker only) |
--worktree BRANCH | Run in a git worktree for this branch (alias: --wt) |
Each agent command also accepts -p/--prompt for non-interactive mode, plus command-specific flags documented in their own sections.
All agent commands support passing an initial prompt after --. Unlike -p, which runs non-interactively and exits when done, arguments after -- start an interactive session with the prompt pre-filled:
moat claude -- "is this thing on?"
moat codex -- "explain this codebase"moat run
Run an agent in a container.
moat run [flags] [path] [-- command]Arguments
| Argument | Description |
|---|---|
path | Workspace directory (default: current directory) |
command | Command to run (overrides agent.yaml) |
Flags
| Flag | Description |
|---|---|
--name NAME | Set run name (used for hostname routing) |
--grant PROVIDER | Inject credential (repeatable) |
-e KEY=VALUE | Set environment variable (repeatable) |
-d, --detach | Run in background |
-i, --interactive | Enable interactive mode (stdin + TTY) |
--rebuild | Force rebuild of container image |
--runtime RUNTIME | Container runtime to use (apple, docker) |
--keep | Keep container after run completes |
--mount SRC:DST:MODE | Additional mount (repeatable). Format: SRC:DST[:MODE] where SRC is the host path, DST is the container path, and MODE is ro (read-only) or rw (read-write, default). See Mount syntax for full details. |
--no-snapshots | Disable snapshots for this run |
--no-sandbox | Disable gVisor sandboxing (Docker only) |
Examples
# Run in current directory
moat run
# Run in specific directory
moat run ./my-project
# Run with credentials
moat run --grant github ./my-project
# Run with custom command
moat run -- npm test
# Run shell command
moat run -- sh -c "npm install && npm test"
# Interactive shell
moat run -i -- bash
# Background run
moat run -d ./my-project
# Multiple credentials
moat run --grant github --grant anthropic ./my-project
# Environment variable
moat run -e DEBUG=true ./my-project
# Named run for hostname routing
moat run --name my-feature ./my-project
# Mount a host directory read-only
moat run --mount /host/data:/data:ro ./my-project
# Disable gVisor sandbox (when needed for compatibility)
moat run --no-sandbox ./my-project—no-sandbox
Disables gVisor sandboxing for Docker containers. By default, Moat runs Docker containers with gVisor (runsc) for additional isolation. This flag disables gVisor and uses the standard Docker runtime (runc).
When to use: Some workloads use syscalls that gVisor doesn’t support. If your agent fails with syscall-related errors, try --no-sandbox.
Note: This flag only affects Docker containers. Apple containers use macOS virtualization and are unaffected.
moat run --no-sandbox ./my-projectmoat claude
Run Claude Code in a container.
moat claude [workspace] [flags] [-- initial-prompt]In addition to the command-specific flags below, moat claude accepts all common agent flags.
Arguments
| Argument | Description |
|---|---|
workspace | Workspace directory (default: current directory) |
initial-prompt | Text after -- is passed to Claude as an initial prompt (interactive mode) |
Command-specific flags
| Flag | Description |
|---|---|
-p, --prompt TEXT | Run non-interactive with prompt |
-c, --continue | Continue the most recent conversation |
-r, --resume RUN|UUID | Resume a specific session by moat run name/ID or raw Claude session UUID |
--noyolo | Restore Claude Code’s per-operation confirmation prompts. By default, moat claude runs with --dangerously-skip-permissions because the container provides isolation. Use --noyolo to re-enable permission prompts. |
Examples
# Interactive Claude Code
moat claude
# In specific directory
moat claude ./my-project
# Interactive with initial prompt (Claude stays open)
moat claude -- "is this thing on?"
moat claude ./my-project -- "explain this codebase"
# Non-interactive with prompt (exits when done)
moat claude -p "fix the failing tests"
# Continue the most recent conversation
moat claude --continue
moat claude -c
# Resume a specific session by run name
moat claude --resume my-feature
# Resume by raw Claude session UUID
moat claude --resume ae150251-d90a-4f85-a9da-2281e8e0518d
# With GitHub access
moat claude --grant github
# Named run
moat claude --name feature-auth ./my-project
# Run in a git worktree
moat claude --worktree=dark-mode --prompt "implement dark mode" --detach
# Background run
moat claude -d ./my-project
# Require manual approval for each tool use
moat claude --noyolomoat claude plugins list
List configured plugins for a workspace.
moat claude plugins list [path]moat codex
Run OpenAI Codex CLI in a container.
moat codex [workspace] [flags] [-- initial-prompt]In addition to the command-specific flags below, moat codex accepts all common agent flags.
Arguments
| Argument | Description |
|---|---|
workspace | Workspace directory (default: current directory) |
initial-prompt | Text after -- is passed to Codex as an initial prompt (interactive mode) |
Command-specific flags
| Flag | Description |
|---|---|
-p, --prompt TEXT | Run non-interactive with prompt |
--full-auto | Enable full-auto mode (auto-approve tool use). Default: true. Set --full-auto=false to require manual approval for each action. This is analogous to --noyolo on moat claude — the container provides isolation, so auto-approval is the default. |
Examples
# Interactive Codex CLI
moat codex
# In specific directory
moat codex ./my-project
# Interactive with initial prompt (Codex stays open)
moat codex -- "testing"
moat codex ./my-project -- "explain this codebase"
# Non-interactive with prompt (exits when done)
moat codex -p "explain this codebase"
moat codex -p "fix the bug in main.py"
# With GitHub access
moat codex --grant github
# Named run
moat codex --name my-feature
# Run in a git worktree
moat codex --worktree=dark-mode --prompt "implement dark mode" --detach
# Run in background
moat codex -d
# Force rebuild
moat codex --rebuild
# Disable full-auto mode (require manual approval)
moat codex --full-auto=falsemoat gemini
Run Google Gemini CLI in a container.
moat gemini [workspace] [flags]In addition to the command-specific flags below, moat gemini accepts all common agent flags.
Arguments
| Argument | Description |
|---|---|
workspace | Workspace directory (default: current directory) |
Command-specific flags
| Flag | Description |
|---|---|
-p, --prompt TEXT | Run non-interactive with prompt |
Gemini does not have a --noyolo or --full-auto equivalent. The Gemini CLI does not expose a flag to skip confirmation prompts.
Examples
# Interactive Gemini CLI
moat gemini
# In specific directory
moat gemini ./my-project
# Non-interactive with prompt
moat gemini -p "explain this codebase"
moat gemini -p "fix the bug in main.py"
# With GitHub access
moat gemini --grant github
# Named run
moat gemini --name my-feature
# Run in a git worktree
moat gemini --worktree=dark-mode --prompt "implement dark mode" --detach
# Run in background
moat gemini -d
# Force rebuild
moat gemini --rebuildmoat wt
Create or reuse a git worktree for a branch and start a run in it.
moat wt <branch> [-- command]The branch is created from HEAD if it doesn’t exist. The worktree is created at ~/.moat/worktrees/<repo-id>/<branch>.
Configuration is read from agent.yaml in the repository root. If a run is already active in the worktree, returns an error with instructions to attach or stop it.
Arguments
| Argument | Description |
|---|---|
branch | Branch name to create or reuse a worktree for |
command | Command to run (overrides agent.yaml) |
Flags
| Flag | Description |
|---|---|
-d, --detach | Run in background |
-n, --name NAME | Override auto-generated run name |
-g, --grant PROVIDER | Inject credential (repeatable) |
-e KEY=VALUE | Set environment variable (repeatable) |
--rebuild | Force image rebuild |
--keep | Keep container after completion |
--runtime | Container runtime to use (apple, docker) |
--no-sandbox | Disable gVisor sandbox (Docker only) |
--tty-trace FILE | Capture terminal I/O to file for debugging |
Run naming
The run name is {name}-{branch} when agent.yaml has a name field, otherwise just {branch}.
Worktree base path
Override the default worktree base path (~/.moat/worktrees/) with the MOAT_WORKTREE_BASE environment variable.
Examples
# Start a run in a worktree for the dark-mode branch
moat wt dark-mode
# Run in background
moat wt dark-mode -d
# Run a specific command in the worktree
moat wt dark-mode -- make test
# List worktree-based runs
moat wt list
# Clean all stopped worktrees
moat wt clean
# Clean a specific worktree
moat wt clean dark-modeSubcommands
moat wt list
List worktree-based runs for the current repository. Equivalent to moat list filtered to worktree runs in the current repo.
moat wt listmoat wt clean
Remove worktree directories for stopped runs. Without arguments, cleans all stopped worktrees for the current repository. Never deletes branches.
moat clean also removes worktree directories as part of its broader cleanup. Use moat wt clean to target a specific branch or limit cleanup to worktrees.
moat wt clean [branch]Examples:
# Clean all stopped worktrees for the current repo
moat wt clean
# Clean a specific worktree
moat wt clean dark-modemoat attach
Attach to a running container.
moat attach [flags] <run>Arguments
| Argument | Description |
|---|---|
run | Run ID or name |
Flags
| Flag | Description |
|---|---|
-i, --interactive | Force interactive mode |
-i=false | Force output-only mode |
By default, uses the run’s original mode (interactive or not).
On attach, Moat sends a TTY resize signal to the container to force a screen repaint. This ensures the terminal displays the current state immediately, rather than waiting for new output.
Examples
# Attach by name
moat attach my-agent
# Attach by ID
moat attach run_a1b2c3d4e5f6
# Force interactive
moat attach -i run_a1b2c3d4e5f6
# Force output-only
moat attach -i=false run_a1b2c3d4e5f6Detach sequences
Non-interactive mode:
Ctrl+C— Detach (run continues)Ctrl+C Ctrl+C(within 500ms) — Stop the run
Interactive mode:
Ctrl-/ d— Detach (run continues)Ctrl-/ k— Stop the run
moat grant
Store credentials for injection into runs. See Grants reference for details on each provider, host matching rules, and credential sources.
moat grant <provider>[:<scopes>]Providers
| Provider | Description |
|---|---|
github | GitHub (gh CLI, env var, or PAT) |
claude | Claude Code OAuth token |
anthropic | Anthropic API key |
openai | OpenAI (API key) |
gemini | Google Gemini (Gemini CLI OAuth or API key) |
npm | npm registries (.npmrc, NPM_TOKEN, or manual) |
aws | AWS (IAM role assumption) |
moat grant github
GitHub credentials are obtained from multiple sources, in order of preference:
- gh CLI — Uses token from
gh auth tokenif available - Environment variable — Falls back to
GITHUB_TOKENorGH_TOKEN - Personal Access Token — Interactive prompt for manual entry
moat grant githubmoat grant claude
Stores a Claude Code OAuth token. Presents a menu of OAuth token sources (setup-token, paste existing, or import from local Claude Code).
OAuth tokens are stored as claude.enc. See Grants reference for details.
moat grant claudemoat grant anthropic
Stores an Anthropic API key. Reads from ANTHROPIC_API_KEY environment variable, or prompts interactively.
API keys are stored as anthropic.enc. Both credentials can coexist with claude.
moat grant anthropicmoat grant openai
Stores an OpenAI API key. Reads from the OPENAI_API_KEY environment variable, or prompts interactively.
moat grant openaimoat grant gemini
Stores a Google Gemini credential. Supports two authentication methods:
- Gemini CLI OAuth (recommended) — Imports OAuth tokens from your local Gemini CLI installation (
gemini). Refresh tokens are stored for automatic access token renewal. If Gemini CLI credentials are detected, you are prompted to choose between OAuth import and API key. - API key — Uses an API key from
aistudio.google.com/apikey. Reads fromGEMINI_API_KEYenvironment variable, or prompts interactively.
If no Gemini CLI credentials are found, falls directly to the API key prompt.
# Import from Gemini CLI or enter API key
moat grant geminimoat grant npm
Grant npm registry credentials. Auto-discovers registries from ~/.npmrc and NPM_TOKEN environment variable.
moat grant npm [flags]Flags
| Flag | Description |
|---|---|
--host HOSTNAME | Specific registry host (e.g., npm.company.com) |
Examples
# Auto-discover registries from .npmrc
moat grant npm
# Add a specific registry
moat grant npm --host=npm.company.commoat grant mcp <name>
Store a credential for an MCP server.
moat grant mcp context7The credential is stored as mcp-<name> (e.g., mcp-context7) and can be referenced in agent.yaml.
Interactive prompts:
- Credential (hidden input)
Storage:
~/.moat/credentials/mcp-<name>.enc
moat grant ssh
Grant SSH access to a specific host.
moat grant ssh --host <hostname>Flags
| Flag | Description |
|---|---|
--host HOSTNAME | Host to grant access to (required) |
Examples
moat grant ssh --host github.com
moat grant ssh --host gitlab.commoat grant aws
Grant AWS credentials via IAM role assumption.
moat grant aws --role=<ARN> [flags]Flags
| Flag | Description | Default |
|---|---|---|
--role ARN | IAM role ARN to assume (required) | — |
--region REGION | AWS region for API calls | From AWS config |
--session-duration DURATION | Session duration (e.g., 1h, 30m, 15m) | 15m |
--external-id ID | External ID for cross-account role assumption | — |
Examples
# Basic role assumption
moat grant aws --role arn:aws:iam::123456789012:role/AgentRole
# With explicit region
moat grant aws --role arn:aws:iam::123456789012:role/AgentRole --region us-west-2
# With custom session duration
moat grant aws --role arn:aws:iam::123456789012:role/AgentRole --session-duration 2h
# Cross-account with external ID
moat grant aws --role arn:aws:iam::987654321098:role/CrossAccountRole --external-id abc123
# Full example
moat grant aws \
--role arn:aws:iam::123456789012:role/AgentRole \
--region eu-west-1 \
--session-duration 30mmoat grant list
List stored credentials. Shows credentials from the active profile, or the default store if no profile is set.
moat grant listExamples
moat grant list
moat grant list --json
moat grant list --profile workmoat grant providers
List all available credential providers.
moat grant providers # List all providers
moat grant providers --json # Output as JSONOutput columns:
| Column | Description |
|---|---|
| PROVIDER | Provider name (used with moat grant <name>) |
| DESCRIPTION | Brief description |
| TYPE | builtin or custom |
moat revoke
Remove stored credentials. Operates on the active profile, or the default store if no profile is set.
moat revoke <provider>Examples
moat revoke github
moat revoke claude # revokes OAuth token
moat revoke anthropic # revokes API key
moat revoke npm
moat revoke ssh:github.com
# Revoke from a specific profile
moat revoke github --profile workmoat logs
View container logs.
moat logs [flags] [run]Arguments
| Argument | Description |
|---|---|
run | Run ID or name (default: most recent) |
Flags
| Flag | Description |
|---|---|
-n, --lines N | Show last N lines (default: 100) |
-f, --follow | Stream new log lines as they are written (exit with Ctrl+C) |
Examples
# Most recent run
moat logs
# By name
moat logs my-agent
# By ID
moat logs run_a1b2c3d4e5f6
# Last 50 lines
moat logs -n 50
# Follow logs from a running container
moat logs -f my-agent
# Show last 20 lines, then follow
moat logs -n 20 -f my-agentmoat trace
View execution traces and network requests.
moat trace [flags] [run]Arguments
| Argument | Description |
|---|---|
run | Run ID or name (default: most recent) |
Flags
| Flag | Description |
|---|---|
--network | Show network requests instead of spans |
-v, --verbose | Show headers and bodies (requires --network) |
Examples
# Execution spans
moat trace
# Network requests
moat trace --network
# Network with details
moat trace --network -v
# By name or ID
moat trace --network my-agent
moat trace --network run_a1b2c3d4e5f6moat audit
Verify audit log integrity.
moat audit [flags] <run>Arguments
| Argument | Description |
|---|---|
run | Run ID or name |
Flags
| Flag | Description |
|---|---|
-e, --export FILE | Export proof bundle |
Examples
# Verify by name or ID
moat audit my-agent
moat audit run_a1b2c3d4e5f6
# Export proof bundle
moat audit run_a1b2c3d4e5f6 --export proof.jsonmoat audit verify
Verify an exported proof bundle.
moat audit verify <file>Examples
moat audit verify proof.jsonmoat list
List all runs.
moat listOutput columns
| Column | Description |
|---|---|
| NAME | Run name |
| RUN ID | Unique identifier |
| STATE | running, stopped, failed |
| AGE | Time since run was created |
| WORKTREE | Branch name (appears when any run has a worktree) |
| ENDPOINTS | Exposed services (from ports) |
The WORKTREE column appears when any run has a worktree branch. To show only worktree runs for the current repository, use moat wt list.
moat status
Show high-level system status summary.
moat statusOutput sections
- Runtime: Docker or Apple containers
- Active Runs: Currently running containers with age, disk usage, and endpoints
- Summary: Counts and disk usage for stopped runs and cached images
- Health: Warnings about stopped runs and orphaned containers
For detailed information about all runs, use moat list.
For image details, use moat system images
moat stop
Stop a running container.
moat stop [run]Arguments
| Argument | Description |
|---|---|
run | Run ID or name (default: most recent running) |
If a name matches multiple runs, you’ll be prompted to confirm stopping all of them.
Flags
| Flag | Description |
|---|---|
--all | Stop all running containers |
Examples
# Stop most recent
moat stop
# Stop by name
moat stop my-agent
# Stop by ID
moat stop run_a1b2c3d4e5f6
# Stop all
moat stop --allmoat destroy
Remove a stopped run and its artifacts.
moat destroy [run]Arguments
| Argument | Description |
|---|---|
run | Run ID or name (default: most recent stopped) |
If a name matches multiple runs, you’ll be prompted to confirm destroying all of them.
Examples
# Destroy by name
moat destroy my-agent
# Destroy by ID
moat destroy run_a1b2c3d4e5f6moat clean
Clean up stopped runs, unused images, and worktree directories.
moat clean [flags]Removes stopped runs, unused moat images, orphaned networks, and worktree directories for stopped runs. Worktree cleanup requires running from inside a git repository.
Flags
| Flag | Description |
|---|---|
-f, --force | Skip confirmation prompt |
--dry-run | Show what would be removed |
Examples
# Interactive cleanup
moat clean
# Force cleanup
moat clean -f
# Preview cleanup
moat clean --dry-runTo clean a single branch’s worktree, use moat wt clean <branch>.
moat volumes
Manage persistent volumes.
Volumes store data at ~/.moat/volumes/<agent-name>/<volume-name>/ and persist across runs for the same agent name. They are created automatically when agent.yaml specifies a volumes: section.
moat volumes ls
List managed volumes.
moat volumes lsmoat volumes rm
Remove all volumes for an agent.
moat volumes rm <agent-name> [flags]Flags
| Flag | Description |
|---|---|
-f, --force | Skip confirmation prompt |
Examples
moat volumes rm my-agent
moat volumes rm my-agent --forcemoat volumes prune
Remove all managed volumes.
moat volumes prune [flags]Flags
| Flag | Description |
|---|---|
-f, --force | Skip confirmation prompt |
Examples
moat volumes prune
moat volumes prune --forcemoat snapshot
Create and manage workspace snapshots.
When called with a run argument, creates a manual snapshot. Use subcommands to list, prune, or restore snapshots. All snapshot commands accept a run ID or name.
moat snapshot <run> [flags]Flags
| Flag | Description |
|---|---|
--label TEXT | Optional label for the snapshot |
Examples
moat snapshot my-agent
moat snapshot run_a1b2c3d4e5f6
moat snapshot run_a1b2c3d4e5f6 --label "before refactor"moat snapshot list
List snapshots for a run.
moat snapshot list <run>Examples
moat snapshot list my-agent
moat snapshot list run_a1b2c3d4e5f6 --jsonmoat snapshot prune
Remove old snapshots, keeping the newest N. The pre-run snapshot is always preserved.
moat snapshot prune <run> [flags]Flags
| Flag | Description |
|---|---|
--keep N | Keep N most recent (default: 5) |
--dry-run | Preview what would be deleted |
Examples
moat snapshot prune my-agent --keep 3
moat snapshot prune run_a1b2c3d4e5f6 --dry-runmoat snapshot restore
Restore workspace from a snapshot. If no snapshot ID is given, restores the most recent. A safety snapshot is created before in-place restores.
moat snapshot restore <run> [snapshot-id] [flags]Flags
| Flag | Description |
|---|---|
--to DIR | Extract to a different directory instead of restoring in-place |
Examples
moat snapshot restore my-agent
moat snapshot restore run_a1b2c3d4e5f6 snap_abc123
moat snapshot restore run_a1b2c3d4e5f6 --to /tmp/recoverymoat proxy
Manage the hostname routing proxy. When called without a subcommand, shows the current proxy status.
moat proxy start
Start the routing proxy.
moat proxy start [flags]Flags
| Flag | Description |
|---|---|
-p, --port N | Listen port (default: 8080) |
Examples
moat proxy start
moat proxy start --port 9000moat proxy stop
Stop the routing proxy.
moat proxy stopmoat proxy status
Show proxy status and registered agents.
moat proxy statusmoat deps
Manage dependencies. See Dependencies for details on the dependency system.
moat deps list
List available dependencies from the registry.
moat deps list [flags]Flags
| Flag | Description |
|---|---|
--type TYPE | Filter by dependency type (runtime, npm, apt, github-binary, go-install, uv-tool, custom, meta) |
moat deps info
Show detailed information about a dependency.
moat deps info <name>Examples
# List all dependencies
moat deps list
# List only runtimes
moat deps list --type runtime
# List npm packages
moat deps list --type npm
# Show details for node
moat deps info node
# Show details for a meta dependency
moat deps info go-extrasmoat system
Low-level system commands.
moat system images
List moat-managed container images.
moat system imagesmoat system containers
List moat containers.
moat system containersmoat system clean-temp
Clean up orphaned temporary directories.
moat system clean-temp [flags]Moat creates temporary directories in /tmp for AWS credentials, Claude configuration, and Codex configuration. These are normally cleaned up when a run completes, but may accumulate if moat crashes.
This command scans for and removes temporary directories matching these patterns:
agentops-aws-*- AWS credential helper directoriesmoat-claude-staging-*- Claude configuration staging directoriesmoat-codex-staging-*- Codex configuration staging directoriesmoat-npm-*- npm credential configuration directoriesmoat-gemini-staging-*- Gemini configuration staging directories
Only directories older than --min-age are removed.
Flags
| Flag | Description |
|---|---|
--min-age DURATION | Minimum age of temp directories to clean (default: 1h) |
--dry-run | Show what would be cleaned without removing anything |
-f, --force | Skip confirmation prompt |
Examples
# Show orphaned temp directories (dry run)
moat system clean-temp --dry-run
# Clean directories older than 24 hours
moat system clean-temp --min-age=24h
# Clean with automatic confirmation
moat system clean-temp --force
# Clean directories older than 1 week
moat system clean-temp --min-age=168hmoat doctor
Diagnostic information about the Moat environment.
moat doctor [flags]Shows version, container runtime status, credential status, Claude Code configuration, and recent runs. All sensitive information is automatically redacted.
Flags
| Flag | Description |
|---|---|
-v, --verbose | Show verbose output including JWT claims |
Examples
moat doctor
moat doctor --verboseSubcommands
moat doctor claude
Diagnose Claude Code authentication and configuration issues in moat containers.
moat doctor claude [flags]Compares your host Claude Code configuration against what’s available in moat containers to identify authentication problems. Checks host ~/.claude.json fields, credential status (OAuth vs API key, expiration), and field mapping via the host config allowlist.
With --test-container, runs three progressive validation levels that short-circuit on failure:
- Direct API call — verifies the stored token is valid by calling the Anthropic API from the host
- Proxy injection — spins up a TLS-intercepting proxy and verifies it replaces placeholder credentials with real ones
- Container test — launches a real moat container for full end-to-end verification
If level 1 fails (bad token), levels 2 and 3 are skipped. If level 2 fails (proxy issue), level 3 is skipped. This tells you exactly which layer is broken.
Flags:
| Flag | Description |
|---|---|
--verbose | Show full configuration diff and all checked fields |
--json | Output results as JSON for scripting |
--test-container | Run progressive token validation and container auth test (~$0.0001 per level) |
Exit codes:
| Code | Meaning |
|---|---|
| 0 | All checks passed |
| 1 | Configuration issues detected |
| 2 | Token validation or container authentication test failed (--test-container only) |
Examples:
# Basic diagnostics
moat doctor claude
# Full field-level diff
moat doctor claude --verbose
# JSON output for scripting
moat doctor claude --json
# End-to-end container auth test
moat doctor claude --test-container
# Combine flags
moat doctor claude --test-container --verbose