Blog/Research
·Research

Coregit vs GitHub: April 2026 benchmarks

Alemzhan JakipovAlemzhan Jakipov

Performance matters for AI agents. An agent that commits code 50 times per session burns minutes on API latency alone — time it could spend reasoning. We ran a comprehensive benchmark comparing Coregit and GitHub across 9 common operations, then dug into the architecture to explain why the numbers look the way they do.

Methodology

All tests ran against private repositories with authentication, using the official CLI tools (cgt for Coregit, gh for GitHub). Each operation was measured 3 times; we report the median. Both services were tested from the same machine (US-West) on a stable network connection. Repos contained ~200 files of mixed content.

Results

OperationGitHubCoregitRatio
Commit 1 file2,217 ms2,148 ms~Parity
Commit 5 files4,829 ms3,456 msCoregit 1.4x
Commit 10 files8,387 ms4,183 msCoregit 2.0x
Commit 100 files72,064 ms19,769 msCoregit 3.6x
Read file (warm)735 ms800 msGitHub 1.1x
List tree797 ms752 msCoregit 1.1x
List commits829 ms474 msCoregit 1.7x
Diff branches738 ms752 ms~Parity
Write throughput38/hr15,000/hrCoregit 394x

The headline numbers — 3.6x on multi-file commits, 394x on throughput — are real, but the story behind them is more interesting than the ratios.

Why single-file commits are at parity

A single-file commit on Coregit takes one API call. On GitHub, it takes five sequential calls (get ref → create blob → create tree → create commit → update ref). So why is the latency nearly identical?

Network round-trip time dominates. A single Coregit API call still needs to: authenticate the request (hash the API key, check KV cache), resolve the branch ref from R2, flatten the current tree, build a new tree, create the commit object, update the ref with compare-and-swap, and return. That's ~2 seconds of server-side work.

GitHub's five calls are individually fast (~400ms each) because they do less work per call, and decades of infrastructure optimization means each one is served from hot caches.

The crossover happens at 5 files. At that point, GitHub's linear scaling (5 × ~400ms per additional file) starts losing to Coregit's sublinear scaling.

Why batch commits scale sublinearly

The 100-file commit is where the architecture difference becomes stark. GitHub: 72 seconds (105 sequential API calls). Coregit: 19.8 seconds (1 API call).

Here's what happens inside that single Coregit API call:

1. Tree flattening (cached). The current commit's tree is flattened into a Map<path, {sha, mode}>. This result is cached in KV, keyed by the commit SHA — since git commits are immutable, this cache never invalidates. On a second commit to the same branch, this step is a KV lookup (~5ms) instead of a tree traversal (~200ms).

2. Change application. All 100 file changes are applied to the in-memory tree map. Creates, edits, deletes, renames — all applied in a single pass.

3. Parallel subtree construction. Git trees are hierarchical: src/app.ts lives in a src/ subtree which lives in the root tree. Coregit builds these subtrees in parallel using Promise.all. If your 100 files span 10 directories, those 10 subtrees are built concurrently.

4. Parallel R2 writes. New blob objects are written to R2 in parallel batches of 20. The Durable Object hot layer (RepoHotDO) acknowledges writes in ~2ms and flushes to R2 asynchronously every 30 seconds.

5. Atomic ref update. The branch ref is updated via R2's onlyIf: { etagMatches } — a compare-and-swap operation that prevents concurrent commits from clobbering each other.

The result: Coregit's latency grows with the number of unique directory subtrees (logarithmic in the number of files), not the number of files themselves.

Fire-and-forget: why the response returns before the work is done

The 19.8-second number for 100 files is the time until the client gets a 201 response. But not all work is done at that point. Coregit separates what the client needs to wait for from what can happen after the response.

Synchronous (blocks the response):

  • Auth validation
  • Tree flattening and change application
  • Blob/tree/commit object creation (written to Durable Object in ~2ms each)
  • Branch ref update via CAS

Asynchronous (runs after the response is sent):

  • R2 durability writes. When RepoHotDO is active, every putObject() call writes to the Durable Object (awaited, ~2ms) and fires off an R2 write in parallel — but doesn't await it. The R2 write completes 200-500ms later, but the response is already on the wire.
  • Semantic indexing. Queue messages for Voyage AI embedding + Pinecone upsert are dispatched via ctx.waitUntil(). The Worker stays alive to send the messages, but the HTTP response is already returned.
  • Code graph indexing. Tree-sitter AST parsing and PostgreSQL node/edge insertion — also queued, not inline.
  • Usage tracking and billing. Database insert for usage_event + HTTP POST to the billing provider — both via ctx.waitUntil().
  • Cache warming. KV writes for flattened trees, Edge Cache writes for immutable objects, auth cache updates — all fire-and-forget with .catch(() => {}).

The Durable Object acts as a write-ahead buffer. RepoHotDO flushes accumulated objects to R2 every 30 seconds via a DO alarm. If the DO has more than 2,000 unflushed objects, it returns HTTP 507 and the caller falls back to direct R2 writes — a backpressure mechanism that prevents the buffer from growing unbounded.

With the Zero-Wait Protocol (X-Session-Id), writes are even more deferred: objects stay exclusively in SessionDO storage until the session is closed or times out after 30 minutes. No R2 writes at all during the session. This means a burst of 50 commits from an agent session can complete with near-zero R2 latency — all durability is batched into a single flush at session close.

The practical effect: an agent that commits, reads the result, and commits again pays ~2ms per object write instead of ~200ms. Over a 50-commit session, that's the difference between 10 seconds and 3+ minutes of cumulative write latency.

Why write throughput is 394x higher

This is the most misunderstood number, so let's break it down.

GitHub's constraint isn't a single rate limit — it's a combination of factors:

  • The primary rate limit is 5,000 requests/hour for authenticated users
  • But write operations (creating blobs, trees, commits) hit secondary rate limits that kick in much earlier
  • Creating a commit from 100 files consumes 105 of those requests
  • With exponential backoff on 403/429 responses, sustained throughput drops to ~38 commits/hour for bulk operations

Coregit's design point is different:

  • Rate limits are per-API-key: 600 requests/minute, 15,000 requests/hour
  • Per-organization: 2,000 requests/minute, 50,000 requests/hour
  • A 100-file commit is 1 request, not 105
  • Rate limiting runs on Durable Objects (sliding window, per-key), not on the database

Combined with the Zero-Wait Protocol (session-based auth that skips DB/KV lookups after the first call), sustained agent workloads hit the rate limit ceiling far less often.

Where GitHub wins (and why)

Single-file reads are slightly faster on GitHub (735ms vs 800ms). This is expected and not something we're trying to "fix."

GitHub has over a decade of caching investment. Their hot-path read infrastructure includes CDN edge caches, application-level caches, and highly optimized storage backends for popular repositories. A warm file read on GitHub is likely served from an edge cache without touching their storage layer at all.

Coregit's read path goes through a six-layer cache hierarchy:

LayerLatencyHit condition
In-memory (per-request)0msSame object read twice in one request
RepoHotDO~2msObject written in last 30 seconds
KV~5msObject read in last 60 seconds
Edge Cache<5msImmutable object cached at this colo (1-year TTL)
Hyperdrive~10msDatabase query cached
R250-200msCold read from object storage

For a warm read (Edge Cache hit), Coregit serves in <5ms. The 800ms benchmark number reflects a cold read — first access after repo creation, no cache priming. In sustained agent workloads where the same files are read repeatedly, Coregit's caching narrows the gap significantly.

The hidden cost: developer time

The numbers above measure API latency. But there's a cost that doesn't show up in benchmarks: developer time integrating the API.

Committing files via GitHub's API requires understanding Git's object model (blobs, trees, commits, refs) and orchestrating multiple sequential calls with proper error handling. The octokit SDK helps, but the complexity is inherent to the multi-step protocol.

Coregit's commit endpoint is one call with a JSON body. Error handling is one check. Retry logic is one retry. The cognitive overhead difference is significant, especially when you're building an agent that needs to handle commits as a routine operation.

What's next

We're working on three improvements that will shift these numbers:

Pack-based reads. Currently, large tree traversals read objects individually. A packfile-aware read path would batch these into fewer R2 requests, improving cold-read latency for deep directory trees.

Embedding-aware indexing. Semantic search indexing currently happens asynchronously after commits. We're exploring inline indexing for small commits (<10 files) to make search results immediately available.

Regional R2 placement. R2 is currently single-region. As Cloudflare rolls out regional R2, we'll place repo data closer to the agent's primary location.

Full methodology

See our detailed benchmark documentation for reproducible test scripts and raw data.