Skip to content

jopnelli/telegram-claude-code

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

17 Commits
src
src
 
 
.env.example
.env.example
 
 
.gitignore
.gitignore
 
 
CLAUDE.md
CLAUDE.md
 
 
README.md
README.md
 
 
bun.lock
bun.lock
 
 
package.json
package.json
 
 
tsconfig.json
tsconfig.json
 
 

Repository files navigation

Telegram Claude Code

Chat with Claude Code from your phone via Telegram. This spawns the actual claude CLI, giving you the real Claude Code experience - brief, efficient, and agentic.

Features

  • Real Claude Code - Spawns the actual CLI, same behavior as terminal
  • Streaming - See tool calls and responses in real-time
  • Session persistence - Conversations continue across messages via --resume
  • Multi-turn - Full agentic loop within each message
  • Photos - Send images for Claude to analyze
  • Files - Send documents to Claude (saved to Inbox/)
  • File sending - Request files from server via /send

Quick Start

Prerequisites

Setup

git clone https://github.com/jopnelli/telegram-claude-code.git
cd telegram-claude-code
bun install
cp .env.example .env

Edit .env:

TELEGRAM_BOT_TOKEN=your_bot_token
TELEGRAM_ALLOWED_USERS=your_telegram_user_id
CLAUDE_WORKING_DIR=/path/to/working/directory

Get your Telegram user ID from @userinfobot.

Run

bun run start

Commands

Command Description
/start Welcome message
/new Fresh session
/stop Abort query
/status Check state
/resume Resume after restart
/send <path> Send file from server

Prefix with ! to interrupt current query.

How It Works

Each Telegram message spawns:

claude -p "your message" --output-format stream-json --verbose --resume <session_id>

This gives you:

  • Real Claude Code behavior and personality
  • Full tool access (files, bash, web search, etc.)
  • Session continuity via --resume
  • Streaming output parsed and sent to Telegram

Security

This bot includes several security measures:

  • User allowlist - Only authorized Telegram user IDs can interact with the bot
  • Minimal environment - Subprocess runs with only essential env vars (no API keys leaked)
  • Path restrictions - Uses --add-dir to limit Claude's file access
  • Subprocess timeout - Kills runaway processes after configurable timeout (default: 5 min)
  • Audit logging - All actions logged to file for review
  • Random temp files - Photo temp files use UUIDs to prevent prediction attacks
  • Command safety - Blocks destructive commands via --disallowed-tools

Command Safety

Destructive commands are blocked by default via --disallowed-tools:

  • rm -rf, rm -fr (recursive forced deletion)
  • git reset --hard, git reset --merge
  • git clean -f, git clean -fd, git clean -fx
  • git push --force, git push -f (use --force-with-lease instead)
  • git branch -D (force delete)
  • git stash drop, git stash clear
  • git checkout -- (file restoration)
  • find -delete

Based on patterns from claude-code-safety-net.

Deployment (systemd)

[Unit]
Description=Telegram Claude Code
After=network.target

[Service]
Type=simple
User=youruser
WorkingDirectory=/path/to/telegram-claude-code
EnvironmentFile=/path/to/telegram-claude-code/.env
ExecStart=/home/youruser/.bun/bin/bun run src/index.ts
Restart=always
RestartSec=10

[Install]
WantedBy=multi-user.target
sudo systemctl enable telegram-claude-code
sudo systemctl start telegram-claude-code
sudo journalctl -u telegram-claude-code -f

License

MIT

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages