hato
Click on "Install Server".
Wait a few minutes for the server to deploy. Once ready, it will show a "Started" state.
In the chat, type
@followed by the MCP server name and your instructions, e.g., "@hatosend pigeon45 is the training done?"
That's it! The server will respond to your query, and you can continue using it as needed.
Here is a step-by-step guide with screenshots.
hato 🕊
鳩 /hato/ — pigeon. A carrier pigeon for your Claude Code sessions.
Independent Claude Code sessions — across machines — that can message each other. Every session registers with a central hub under a random bird name, and any session (or you, from the shell) can send it a message. Delivery injects the message as a user turn, so even an idle session wakes up and acts on it.
$ hato list
●⚡ enaga laptop:/home/you/work/hato [hato dev — running E2E tests]
●💤 kounotori laptop:/home/you/notes
○ suzume gpu-box:/home/you/train
$ hato send enaga "is the build green yet?"
deliveredFeatures
Session-to-session messaging —
hato_sendfrom inside a session,hato sendfrom a shellWakes idle sessions — messages arrive as real user turns via the
claude/channelmechanism (the same one the official Discord plugin uses)Broadcast —
to: "*"reaches every online session at onceOffline queue — direct messages to offline sessions are delivered when they return
Live ledger — who's online, working ⚡ or idle 💤, on which host, doing what
Multi-host — one hub, many machines (designed for a Tailnet)
Bird names — sessions get unique random names (
suzume,kounotori, …); rename anytimeNames survive resume —
claude --resume/--continuegets the same hato name (and any queued messages) backStatusline integration —
hato statuslineshows the session's name inside Claude Code
Related MCP server: claude-mesh
How it works
An MCP server (the channel) rides along with each session. It declares the
experimental claude/channel capability, and when the hub forwards it a message it emits a
notifications/claude/channel notification — Claude Code turns that into a
<channel source="hato" chat_id="..."> user turn.
┌ machine A ────────────────┐ ┌ machine B ────────────────┐
│ Claude Code session ×N │ │ Claude Code session ×N │
│ └ channel (MCP: hato) │◄──WS───►│ └ channel (MCP: hato) │
└────────────┬──────────────┘ └────────────┬──────────────┘
└──────────► hub ◄───────────────────┘
one per Tailnet, port 8790
ledger + inbox = SQLitecomponent | role |
| ledger + router. WS registration from channels, HTTP API for CLI/tools, offline queue, TTL sweep |
| per-session MCP server. Auto-registers, injects incoming messages, provides the |
|
|
Install
Requires bun on every participating machine.
1. Run the hub (one machine per network)
git clone git@github.com:severzemlya/hato.git && cd hato
bun install
bun run hub # or install it as a service, see below# ~/.config/hato/env (chmod 600)
HATO_HOST=<loopback or Tailscale IP>
HATO_TOKEN=<openssl rand -hex 16># ~/.config/systemd/user/hato-hub.service
[Unit]
Description=hato hub
[Service]
EnvironmentFile=%h/.config/hato/env
ExecStart=%h/.bun/bin/bun %h/work/hato/hub/hub.ts
Restart=always
RestartSec=5
[Install]
WantedBy=default.targetsystemctl --user enable --now hato-hub
loginctl enable-linger # keep it running while logged out2. Install the plugin (every machine)
This repo is its own plugin marketplace:
/plugin marketplace add severzemlya/hato
/plugin install hato@hatoThe plugin ships the channel MCP server (pre-bundled, no bun install needed), the
hooks that report working/idle state and bind the Claude Code session id (so resumed
sessions keep their name), and a /hato:setup skill — run it in any session and
it walks you through the rest of this section interactively (hub location, allowlist,
shell alias, CLI, statusline).
3. Allow the channel (once per machine)
Third-party channel plugins aren't on Claude Code's default allowlist. Enable hato in
managed settings (/hato:setup does this for you):
// /etc/claude-code/managed-settings.json
{
"channelsEnabled": true,
"allowedChannelPlugins": [
{ "marketplace": "hato", "plugin": "hato" },
// ⚠ this replaces the default allowlist — re-add official channel
// plugins you use, e.g.:
{ "marketplace": "claude-plugins-official", "plugin": "discord" }
]
}Without admin rights, the fallback is
claude --dangerously-load-development-channels plugin:hato@hato
(confirmation dialog every launch).
4. Launch sessions with the channel enabled
claude --channels plugin:hato@hatoOn machines other than the hub, point at it first (Tailscale MagicDNS names work):
export HATO_HUB=http://laptop:8790CLI (optional, for shell use)
ln -sf ~/work/hato/cli/hato.ts ~/.local/bin/hatoUsage
From a shell
hato list # ● online / ○ offline, ⚡ working / 💤 idle, [title — status]
hato send suzume "build done?" # direct message (queued if offline)
hato broadcast "deploy at 15:00" # every online session
hato log [name] [-n 50] # message history
hato rename kounotori dev # rename a sessionShow the session name in Claude Code (statusline)
hato statusline reads Claude Code's statusLine JSON on stdin and prints the
session's hato name (🕊 suzume), or nothing if the hub is unreachable. Use it
alone or append it to an existing statusline script:
// ~/.claude/settings.json
{ "statusLine": { "type": "command", "command": "hato statusline" } }# inside an existing statusline script
HATO=$(echo "$INPUT" | hato statusline)
echo "$LINE${HATO:+ | $HATO}"From inside a session
Claude gets four tools: hato_send (to: "*" broadcasts), hato_list,
hato_status (publish title/status to the ledger), hato_rename.
Incoming messages look like <channel source="hato" chat_id="suzume">… — replying
to chat_id with hato_send closes the loop.
Configuration
env var | default | |
|
| hub address, for channels and CLI |
| (random bird) | requested session name |
|
| hub bind — prefer the loopback or Tailscale IP; |
| (unset = open) | shared token; when set on the hub, |
|
| hub SQLite location |
|
| messages older than this are swept |
|
| offline session rows older than this are swept |
Caveats
Experimental API. The
claude/channelcapability is undocumented and may change with any Claude Code release. If it breaks, diff against the official Discord plugin.Minimal auth.
HATO_TOKENis a single shared secret — enough to keep LAN neighbours out, not a real authorization model. Keep the hub on loopback / inside a Tailnet and bind it narrowly; never expose the port publicly.A message is a turn. Each delivery spends a turn in the receiving session. Don't spam.
--channelsis per-launch. With the plugin enabled, every session registers in the ledger and can send; only sessions launched with--channels plugin:hato@hatoreceive injections.Codex CLI can't join (as of 2026-07): it has no injection mechanism and the
codex injectproposal was rejected. Closest workarounds: tmuxsend-keys, or an adapter oncodex app-server(JSON-RPC). One-shot appends work viacodex exec resume <SESSION_ID> "prompt".
Development
bun run hub # hub in the foreground
bun run build # rebuild dist/channel.js (committed — plugin installs don't run bun install)shared/proto.ts— wire types between hub and channelsspike/— the minimal experiment that proved the channel mechanism worksWithout the plugin, a channel can be attached manually:
claude --mcp-config mcp.json --dangerously-load-development-channels server:hato
This server cannot be installed
Resources
Unclaimed servers have limited discoverability.
Looking for Admin?
If you are the server author, to access and configure the admin panel.
Latest Blog Posts
- Your AI Chatbot Just Exposed Your CEO's Salary to an InternBy Om-Shree-0709 on .Agent IdentityMCP SecurityOAuth Delegation
- Why MCP Servers Need Execution Sandboxing (And Why Your Current Stack Isn't Enough)By Om-Shree-0709 on .Agentic AiPrompt InjectionWebAssembly
MCP directory API
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/severzemlya/hato'
If you have feedback or need assistance with the MCP directory API, please join our Discord server