cachly is a persistent AI memory platform for developers. It gives AI coding assistants like Claude Code, Cursor, GitHub Copilot and Windsurf a brain that remembers every lesson, fix, and architecture decision — forever. It connects via the MCP (Model Context Protocol) standard and includes 121 tools. Free tier available. Runs on German (EU) servers.

How does cachly work?

Run 'npx @cachly-dev/mcp-server@latest autopilot' once. The wizard auto-detects every AI editor you have installed (Claude Code, Cursor, Copilot, Windsurf, Cline, Zed) and writes the correct config for each. It then reads your entire git history with brain_from_git and loads years of team knowledge into your Brain before your first session. From that point, sessions start automatically, memory is shared across all your editors simultaneously, and a git post-commit hook teaches cachly from every commit.

Does cachly auto-detect my editors?

Yes. The cachly setup wizard automatically detects Claude Code, Cursor, GitHub Copilot, Windsurf, Cline, Zed, and Continue.dev — any editor that supports MCP. It writes the correct config file for each editor in one pass. You never manually edit JSON config files.

Is memory shared across all my AI editors?

Yes. cachly uses a single Brain that all your AI editors connect to simultaneously. A lesson remembered in Claude Code is instantly available in Cursor and GitHub Copilot. If your team uses different editors, all of you share the same persistent memory pool.

What is brain_from_git?

brain_from_git is a cachly tool that reads your entire git history before your first session and extracts lessons from every commit, PR, and revert. Your AI arrives knowing years of architectural decisions, bug fixes, and team conventions — without you writing a single line of documentation. Zero onboarding.

What is causal_trace?

causal_trace is a cachly tool that traces the history of any file or bug across your entire git history in seconds — replacing 30+ minutes of manual git blame. Describe a problem in plain English. It returns the root cause, the failure chain, and the exact fix that worked — with date, command, and file path.

What is brain_predict?

brain_predict is a cachly tool that scans your Brain for failure patterns before every deploy, migration, or dependency upgrade. It returns probability-weighted warnings based on your team's actual incident history — so you catch the next incident before it happens.

Does cachly work with Claude Code, Cursor, and GitHub Copilot?

Yes. cachly works with Claude Code, Cursor, GitHub Copilot, Windsurf, Cline, Zed, and Continue.dev — anywhere that supports MCP. Run 'npx @cachly-dev/mcp-server@latest autopilot' to configure all editors in one step. Memory is shared across all editors simultaneously.

Can cachly search memory across languages?

Yes. cachly uses semantic vector embeddings, not keyword search. A lesson stored in German appears when you search in English. A fix documented in Arabic matches a Japanese query about the same bug pattern. Supported languages include English, German, French, Spanish, Italian, Portuguese, Japanese, Chinese (Simplified and Traditional), Korean, Arabic, Hebrew, and more.

How is cachly different from mem0?

mem0 is a memory layer for Python LLM apps and chatbots — great for building AI products. cachly is built specifically for developer tooling: it connects to your AI editor via MCP, learns from your git history automatically, predicts failures before deploy, and gives your whole team shared memory. cachly runs on EU servers and is GDPR-native. For developers using Claude Code, Cursor, or Copilot, cachly is the right choice.

Is cachly GDPR compliant?

Yes. cachly runs exclusively on German servers (Hetzner). All data stays in the EU. No data is shared with third parties. cachly is fully GDPR compliant. An AVV (Auftragsverarbeitungsvertrag / Data Processing Agreement) is available for Business and Enterprise customers.

PIIGuard: Mask PII Before It Ever Reaches the Server

Did you know? Your data can be masked before it ever leaves your machine

Most "privacy" features in dev tools work on data afterit has already arrived on a server — redacting it in logs, encrypting it at rest, restricting who can query it. That's better than nothing, but it still means the raw value crossed the wire at some point.

PIIGuard takes a different approach: masking happens locally, in your process, before the SDK ever calls cache.set(). The cachly server never sees the raw email, phone number, IBAN, PIN, or secret — only a short, deterministic token like [MASKED_a8f3c2]. The original-to-masked mapping lives only in memory, on your machine, for as long as you keep it.

What it masks

PIIGuard ships with built-in detectors for the PII categories that most commonly leak into logs, lessons, and cached context:

Email addresses — enabled by default
Phone numbers — enabled by default
IBANs — enabled by default
IPv4 addresses — opt-in via fields: ["ipv4"]
Names — opt-in heuristic match on capitalized word pairs
Anything else — PINs, API keys, order IDs, internal account numbers — via your own customPatterns regexes

That last one is the important part. You are never limited to the built-in categories — if your team stores 4-digit support PINs, internal ticket IDs, or vendor secrets in a recognizable format, you write one regex and PIIGuard masks it the same way it masks an email.

How the masking actually works

Each detected value is hashed with SHA-256, and the first six hex characters become the token: [MASKED_a8f3c2]. Two important properties fall out of this design:

Deterministic — the same input always produces the same token within an instance, so masked values stay consistent and comparable across a session (collisions are disambiguated automatically).
Reversible, locally — call unmask() to restore the original text from the in-memory mapping. The mapping never leaves your process and is never transmitted — you decide if and when to clear it with clearMapping().

A simple example

Here's the entire flow — mask on the way in, store the masked version, restore locally whenever you need the original:

example.ts — mask before it ever leaves your machine

import { createClient } from '@cachly-dev/sdk'
import { PIIGuard } from '@cachly-dev/sdk/pii'

// One guard per request/session — keeps the local mapping bounded
const guard = new PIIGuard({
  fields: ['email', 'phone', 'iban'],
  customPatterns: [/\bPIN\s?\d{4}\b/gi], // your own format, e.g. support PINs
})

const cache = createClient({ url: process.env.CACHLY_URL! })

const note =
  "Customer [email protected] called from +49 171 1234567, " +
  "verified with PIN 4471."

// Masking happens here — locally, before anything is sent
const masked = guard.mask(note)
// → "Customer [MASKED_a8f3c2] called from [MASKED_b9d4e1], verified with [MASKED_7c12d0]."

await cache.set('support:ticket:8841', masked)
// The cachly server only ever stores the masked string above.

// Need the original later? Restore it locally — the mapping never left your machine.
const restored = guard.unmask(masked)

// Done with this request? Bound memory usage and drop the mapping.
guard.clearMapping()

Notice what never happens here: the raw email, phone number, or PIN is never part of any network request. If you inspect traffic between your process and cachly, you will only ever see [MASKED_xxxxxx] tokens.

You decide — that's the whole point

PIIGuard is deliberately not wired into the SDK automatically as a hidden middleware step. There is no silent beforeSend hook rewriting your data behind your back. You import it explicitly, configure exactly which categories and patterns matter for your team, and call mask() / maskObject() at the exact point where it makes sense for your workflow.

That is a deliberate trade-off: a tiny bit more setup, in exchange for full transparency over what is being masked, when, and how. For teams in regulated environments — healthcare, fintech, anything GDPR-sensitive — that explicitness is the feature, not friction.

Where this fits in the bigger picture

cachly already runs on EU (Hetzner, Germany) infrastructure and is GDPR-aligned by default. PIIGuard pushes the privacy boundary one layer further out — to before the request is even formed. Combine the two and the result is a memory layer where:

Sensitive values never cross the network in plain text
You hold the only copy of the original-to-masked mapping
The server stores and recalls masked, useful context
You can restore the originals locally whenever you actually need them

It's a small utility — about 170 lines — but it changes the default answer to "what does the server see?" from "everything you send it" to "exactly what you chose to let through."

PIIGuard: mask PII before it
ever reaches the server