Multi-turn agent benchmarking with ACP — run any agent, any model, any provider.
Project description
BenchFlow
Multi-turn agent benchmarking — Scene-based lifecycle for any ACP agent
What
BenchFlow runs AI agents against benchmark tasks in sandboxed environments. Single-agent, multi-agent, and multi-round patterns share one Scene-based lifecycle.
- Any ACP agent — Gemini CLI, Claude Code, Codex, OpenCode, OpenHands, OpenClaw, Pi, or your own
- Single + multi + progressive — single-agent / multi-agent (coder + reviewer, simulated user) / multi-round with a Python
BaseUsercallback - Sandbox backends — Docker locally, Daytona for parallel cloud runs, Modal for serverless/GPU-backed task environments
- Hardened verifier — defaults block BenchJack/Meerkat-style reward-hacking; tasks opt out per-feature
Install
uv tool install benchflow
Requires Python 3.12+ and uv. Set DAYTONA_API_KEY for Daytona runs or configure Modal auth for Modal runs; export the relevant agent API key (GEMINI_API_KEY, ANTHROPIC_API_KEY, etc.) or run claude login / codex --login for subscription auth.
Documentation
Start with Getting started, then Concepts for the mental model. Then by goal:
| If you want to… | Read |
|---|---|
| Run an eval on an existing task | Getting started |
| Understand Trial / Scene / Role / Verifier | Concepts |
| Author a new task | Task authoring |
| Multi-agent: coder + reviewer, simulated user, BYOS, stateful envs | Use cases |
| Multi-round single-agent (progressive disclosure, oracle access) | Progressive disclosure |
| Skill evaluation (when the artifact is a skill, not a workspace) | Skill eval |
| Understand the security model | Sandbox hardening |
| CLI flags + commands | CLI reference |
| Python API surface | Python API reference |
Notebooks and runnable example scripts live under docs/examples/ so examples stay versioned with the docs that explain them.
Benchmark task sources
Benchmark datasets live in external Git repos and are referenced with two fields:
# benchmarks/skillsbench-claude-glm51.yaml
source:
repo: benchflow-ai/skillsbench # GitHub org/repo
path: tasks # optional subpath within repo
ref: main # optional branch/tag
agent: claude-agent-acp
model: claude-sonnet-4-6
Run any benchmark via the CLI:
# From a YAML config
bench eval create -f benchmarks/skillsbench-claude-glm51.yaml
# Inline — mirrors the YAML source fields
bench eval create \
--source-repo benchflow-ai/skillsbench --source-path tasks \
-a gemini -m gemini-3.1-flash-lite-preview -e daytona -c 64
Repos are cloned and cached locally under .cache/datasets/ on first use.
SkillsBench itself sources BenchFlow from GitHub main in its
pyproject.toml.
After a BenchFlow change lands, run uv lock --upgrade-package benchflow in
SkillsBench when you need its lockfile to point at the newest BenchFlow commit.
Featured
- Progressive disclosure on SWE-bench Pro — the
BaseUserabstraction drives a multi-round trial: terse round-0 prompt → failing-test hints → full spec. 5/5 oracle on Daytona, runnable demo atdocs/examples/swebench_pro_progressive_disclosure.ipynb. Also benchflow's Harbor #1316 parity answer for the no-second-LLM case. See Progressive disclosure.
Research artifacts
Two runnable labs validate the security story:
labs/benchjack-sandbox-hardening/— end-to-end demo that 0.2.1+ blocks three BenchJack exploits that flip 0.2.0's reward from 0.0 to 1.0.labs/reward-hack-matrix/— full reward-hack sweep across real benchmarks comparing 0.2.0 vs 0.2.2.
Audience
- Eval researchers / paper writers → Getting started → Concepts → Use cases
- Task authors → Task authoring → Sandbox hardening
- Agent builders integrating with benchflow → Concepts → Python API reference →
benchflow.agents.registry - Existing Harbor users migrating → Use cases — migration section → Progressive disclosure
Contributing
PRs welcome. Open against main. CI runs ruff + tests on every PR; please run ruff check . and pytest tests/ locally first.
For a release: bump pyproject.toml to the next stable version, tag v<version> on main, push the tag — CI publishes to PyPI. Then bump main to the next .dev0.
License
Apache-2.0.
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file benchflow-0.3.3.tar.gz.
File metadata
- Download URL: benchflow-0.3.3.tar.gz
- Upload date:
- Size: 293.4 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.12.8
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
284d54d5adf7c1474b04a4bdd720f6687875bf784a715d09fbdaf9702c4bcc9c
|
|
| MD5 |
94b447ffdf0858dfff0d2dfcec85ab4a
|
|
| BLAKE2b-256 |
9decd415696baa1eac1d7d72b51cdb21d05fb97ca7b44a2b9808ee4c28128319
|
File details
Details for the file benchflow-0.3.3-py3-none-any.whl.
File metadata
- Download URL: benchflow-0.3.3-py3-none-any.whl
- Upload date:
- Size: 200.8 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.12.8
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
57f01dea2a14600895292727b72202599789d1f6842992cc84fd6a4dfcd6ea7b
|
|
| MD5 |
08d426e4915a29c46a0b5e30f366d8bf
|
|
| BLAKE2b-256 |
0b8df2735cf3ecf18a8e3cf17bb503f0dd7e554eb89bf879f569f664771cae63
|
