LLM Providers
CodeDecay is deterministic by default. The default configuration does not call an LLM, does not require API keys, and does not use a hosted CodeDecay model.
Future or opt-in red-team commands can use user-owned providers for edge-case reasoning. Model output must be treated as untrusted suggestions, not commands to execute.
Disabled By Default
llm:
provider: disabled
timeoutMs: 30000This is the default when no config file exists.
Local Ollama
Ollama support is designed for local models running on the user's machine.
llm:
provider: ollama
model: qwen2.5-coder
endpoint: http://127.0.0.1:11434
timeoutMs: 30000CodeDecay should only call this provider from commands that explicitly opt into LLM assistance. The current deterministic codedecay analyze command does not call an LLM.
LiteLLM / OpenAI-Compatible BYOK
CodeDecay can construct a LiteLLM/OpenAI-compatible provider for local or BYOK setups. It does not default to a hosted endpoint; you must provide the endpoint and model explicitly.
llm:
provider: litellm
model: gpt-4.1-mini
endpoint: http://127.0.0.1:4000/v1
apiKeyEnv: LITELLM_API_KEY
timeoutMs: 30000apiKeyEnv is the name of an environment variable. Do not put literal API keys in config files.
The provider uses an OpenAI-compatible /chat/completions request. Responses are parsed into untrusted suggestions when possible. CodeDecay must not execute commands from model output.
Future Providers
The provider interface leaves room for additional adapters later. Those adapters should remain optional and must not change the default local-first behavior.