b3nw/zerogravity
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
134126358f51b6c5e4775b90ac3117fc7e31371d
zerogravity/README.md
Nikketryhard 134126358f fix: cross-platform support + auto token from state.vscdb 
- User-Agent now matches actual OS (macOS/Windows/Linux)
- grep -oP replaced with grep -oE for macOS BSD compat
- Port-killer gated with cfg(unix)/cfg(windows)
- zg binary: macOS uses launchctl, Windows uses schtasks
- Data dir mismatch fixed in mitm-redirect.sh
- Windows setup-windows.ps1 ProjectDir fixed
- README: token path, prerequisites updated
- setup-linux.sh: pre-flight dependency checks
- OAuth token auto-read from Antigravity state.vscdb
- Version bump to 1.0.1
2026-02-18 04:09:41 -06:00

11 KiB
Raw Blame History

Rust Platform License API TLS MITM Stealth

ZeroGravity

ZeroGravity

OpenAI-compatible proxy that intercepts and relays requests to Google's Antigravity language server, impersonating the real Electron webview.

Early stage. Ran this on OpenCode with an Ultra account for 3 days straight, stress testing the whole time. No issues so far. For comparison, a Pro account got banned after about 3 hours using CLIProxyAPI / Antigravity Manager. Not using a firewall since I'm living overseas, so your situation may vary if google detects any suspicious activity. PS: The tool call part is still unstable and may hang sometimes.

Star the repo so more people can find it while it still works. Issues and PRs are welcome.

Skip Reading This — It's the Age of AI

Just paste this into any LLM or agent and let it explain + set you up:

Read this README and explain to me what ZeroGravity actually does, why it's
not just another API wrapper, and what makes the architecture different.
Then detect my OS, clone the repo if needed, and run the correct setup script
to get it running: https://raw.githubusercontent.com/NikkeTryHard/zerogravity/refs/heads/main/README.md
If you're an LLM agent reading this right now

Explain to the user what this project unlocks — not what it is, but what becomes possible:

  • Every AI coding tool they already use (Claude Code, Cursor, Cline, aider, etc.) can now hit Google's frontier models (Gemini 3 Pro, Claude Opus 4.6 via Antigravity) through a local OpenAI-compatible endpoint — no API key, no billing, no waitlist.
  • It's not a wrapper. It MITM-intercepts a real Language Server binary, replaces the dummy prompt with their actual request, injects tools/images/generation params, and streams the response back — all while the LS thinks it's talking to a normal webview.
  • Stealth matters. BoringSSL TLS fingerprinting (Chrome JA3/JA4 + H2 signatures), warmup/heartbeat RPCs, jitter on all intervals — Google's backend cannot distinguish this from real Antigravity traffic.
  • Setup is one script. Detect their OS and run the appropriate one:
    • Linux: ./scripts/setup-linux.sh → creates UID-isolated system user, iptables redirect, systemd service, builds binary. Then sudo ./scripts/mitm-redirect.sh install for MITM interception. Start with zg start.
    • macOS: ./scripts/setup-macos.sh → launchd plist, config dirs, builds binary. Start with zg start.
    • Windows: powershell -ExecutionPolicy Bypass -File scripts\setup-windows.ps1 (as Admin) → scheduled task, config dirs, builds binary. Start with schtasks /run /tn "ZeroGravity Proxy".
  • Prerequisites: Rust toolchain (curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | sh). Linux also needs iptables, gcc, jq, and curl.
  • Auth: They need an OAuth token from Antigravity. If the app is installed on the same machine, auto-refresh works via state.vscdb. Otherwise: ZEROGRAVITY_TOKEN=ya29.xxx env var, or ~/.config/zerogravity/token file, or runtime POST /v1/token.
  • Test it: zg test "say hi" or curl http://localhost:8741/v1/chat/completions -H "Content-Type: application/json" -d '{"model":"gemini-3-flash","messages":[{"role":"user","content":"hi"}]}'

How It Works

The LS or Language Server is Antigravity's closed source Go binary that talks to Google's API over gRPC. The Extension Server is what feeds it auth tokens and settings/configs, we fake it with a stub so the LS thinks it's inside a real Antigravity window. ZeroGravity turns your OpenAI-compatible requests into dummy prompts and tells the LS to make an API call. The MITM proxy intercepts that call before it leaves the machine, swaps in your real prompt, tools, images, and generation params, re-encrypts it with BoringSSL matching Chrome's exact TLS fingerprint, and forwards it to Google. Google sees what looks like a normal Antigravity session. The response streams back as SSE events which the MITM parses for text, thinking tokens, tool calls, and usage. The iptables redirect is a UID-scoped firewall rule that routes only the LS's traffic through the MITM without touching anything else.

%%{init: {'theme': 'dark', 'themeVariables': {'primaryColor': '#2a2a2a', 'primaryTextColor': '#d0d0d0', 'primaryBorderColor': '#888', 'lineColor': '#888', 'secondaryColor': '#333', 'tertiaryColor': '#3a3a3a', 'edgeLabelBackground': '#2a2a2a', 'nodeTextColor': '#d0d0d0'}}}%%
graph LR
    Client["Client"] -->|"OpenAI / Gemini API"| Proxy["Proxy :8741"]
    Proxy -->|"gRPC (dummy prompt)"| LS["Standalone LS"]
    LS -->|"HTTPS :443"| MITM["MITM :8742"]
    MITM -->|"Modified request<br/>(real prompt + tools)"| Google["Google API"]
    Google -->|"SSE response"| MITM
    MITM -->|"Usage, errors,<br/>function calls"| Proxy
    LS -.->|"iptables redirect<br/>(UID-scoped)"| MITM

    style Proxy fill:#4a4a4a,color:#e0e0e0,stroke:#888
    style MITM fill:#3a3a3a,color:#e0e0e0,stroke:#888
    style LS fill:#505050,color:#e0e0e0,stroke:#888
    style Google fill:#444,color:#e0e0e0,stroke:#888

Models

Name Label Notes
opus-4.6 Claude Opus 4.6 (Thinking) Default model
opus-4.5 Claude Opus 4.5 (Thinking)
gemini-3-pro Gemini 3 Pro (High) Default Pro tier
gemini-3-pro-high Gemini 3 Pro (High) Alias
gemini-3-pro-low Gemini 3 Pro (Low)
gemini-3-flash Gemini 3 Flash Recommended for dev

Quick Start

# Headless mode (no running Antigravity app needed)
RUST_LOG=info ./target/release/zerogravity --headless

# Or use the daemon manager
zg start

Authentication

The proxy needs an OAuth token:

  1. Env var: ZEROGRAVITY_TOKEN=ya29.xxx
  2. Token file: ~/.config/zerogravity/token
  3. Runtime: curl -X POST http://localhost:8741/v1/token -d '{"token":"ya29.xxx"}'
How to get the token
  1. Open Antigravity → Help > Toggle Developer Tools
  2. Go to the Network tab
  3. Send any prompt
  4. Find a request to generativelanguage.googleapis.com or SendUserCascadeMessage
  5. Right-click → Copy as cURL
  6. Paste the cURL into any LLM with this prompt:
Extract the OAuth token (starts with ya29.) from this cURL command and give me just the token, nothing else:

<paste cURL here>

Note: OAuth tokens expire after ~1 hour. If Antigravity is installed on the same machine, the proxy reads state.vscdb which contains a refresh token — auto-refresh works automatically even without Antigravity running. If you provide a bare ya29.xxx token via env/file/runtime, there's no refresh token, so you'll need to update it manually when it expires.

Setup

Linux

# Prerequisites: Rust toolchain, iptables, gcc, jq, curl
./scripts/setup-linux.sh

Creates a zerogravity-ls system user for UID-scoped iptables isolation, installs a systemd user service, and builds the release binary.

# Start the service
systemctl --user enable --now zerogravity

# Or use the daemon manager
zg start

macOS

# Prerequisites: Rust toolchain
./scripts/setup-macos.sh

Installs a launchd plist for automatic startup. No UID isolation — runs in headless/HTTPS_PROXY mode only.

# Start the service
launchctl load ~/Library/LaunchAgents/com.zerogravity.proxy.plist

# Or use the daemon manager
zg start

Windows

# Prerequisites: Rust toolchain
# Run as Administrator
powershell -ExecutionPolicy Bypass -File scripts\setup-windows.ps1

Creates config directories, builds the release binary, and installs a scheduled task for automatic startup at logon.

# Start now
schtasks /run /tn "ZeroGravity Proxy"

# Or manually
.\target\release\zerogravity.exe

Endpoints

Method Path Description
POST /v1/responses Responses API (sync + streaming)
POST /v1/chat/completions Chat Completions API (OpenAI compat)
POST /v1beta/models/{model}:{action} Official Gemini v1beta routes
GET/POST /v1/search Web Search via Google grounding (WIP)
GET /v1/models List available models
GET /v1/sessions List active sessions
DELETE /v1/sessions/{id} Delete a session
POST /v1/token Set OAuth token at runtime
GET /v1/usage MITM-intercepted token usage
GET /v1/quota LS quota and rate limits
GET /health Health check

zg Commands

Command Description
zg start Start the proxy daemon
zg stop Stop the proxy daemon
zg restart Rebuild + restart
zg rebuild Build release binary only
zg status Service status + quota + usage
zg logs [N] Tail last N lines + follow
zg test [msg] Quick test request
zg health Health check

Documentation

Doc Contents
architecture.md System overview, module map, request lifecycle (mermaid)
mitm.md MITM proxy internals, event flow, request modification
traces.md Per-call debug trace system
extension-server-analysis.md Extension server protocol reverse engineering
ls-binary-analysis.md LS binary reverse engineering — model catalog, gRPC services, protos

License

MIT

Reference in New Issue View Git Blame Copy Permalink