ai-core
AI 代理安全与规划的核心护栏
插件: boundary-arch-hardening complexity-loc-budgets deadcode-orphan-api paranoid-tool-policy plan-diff-scope spec-adr-gate surface-contract-guard
安装(原生,推荐)
直接使用已签名的注册表(无需克隆仓库)。
ai-dx-mcp plugins install --registry https://github.com/AmirTlinov/compas-plugin-registry/releases/latest/download/registry.manifest.v1.json --admin-lane --plugins <plugin-id> --repo-root /path/to/your/projectai-dx-mcp plugins install --registry https://github.com/AmirTlinov/compas-plugin-registry/releases/latest/download/registry.manifest.v1.json --admin-lane --packs <pack-id> --repo-root /path/to/your/projectPacks
ai-entropy
Entropy-control rails for long-lived typed AI-first repos; scans typed change memory, not legacy exec-plan or review JSON truth.
插件: context-budget docs-graph golden-principles-enforcer quality-summary-report stale-artifact-scanner
ai-proof-core
Flagship typed-change proof rails for AI-first repos, without legacy truth-surface shims.
插件: boundary-arch-hardening change-contract complexity-loc-budgets deadcode-orphan-api docs-graph lease-lock merge-truth-contract paranoid-tool-policy projection-integrity review-matrix structured-report-ingestion surface-contract-guard
ai-repo-quality
Quality-first non-authoring rails for code repositories; compas provides objective feedback without materializing repo truth surfaces.
插件: boundary-arch-hardening complexity-loc-budgets coverage-nonregression deadcode-orphan-api lint-unified-gate paranoid-tool-policy perf-regression-budget quality-summary-report reuse-report-gate surface-contract-guard tests-junit-gate worktree-isolation-guard
ai-runtime
Experimental runtime, observability, and UI harness rails for bootable AI-first repos.
插件: app-lifecycle-harness lease-lock observability-agent-gate ui-validation-gate worktree-isolation-guard
all
安装全部已注册插件(包括可选与高级检查)
插件: app-lifecycle-harness boundary-arch-hardening change-contract complexity-loc-budgets context-budget coverage-nonregression deadcode-orphan-api docs-graph docs-no-drift exceptions-ttl-guard golden-principles-enforcer lease-lock lint-unified-gate log-pii-guard merge-truth-contract observability-agent-gate paranoid-tool-policy perf-regression-budget plan-diff-scope projection-integrity provenance-attestation quality-summary-report release-readiness-gate reuse-report-gate review-matrix sast-semgrep-gate sbom-gate secrets-leak-guard spec-adr-gate stale-artifact-scanner structured-report-ingestion supply-chain-hygiene surface-contract-guard tests-junit-gate ui-validation-gate worktree-isolation-guard
quality
质量、测试、文档与非回退检查
插件: coverage-nonregression docs-no-drift exceptions-ttl-guard lint-unified-gate perf-regression-budget quality-summary-report release-readiness-gate reuse-report-gate structured-report-ingestion tests-junit-gate
security
安全、密钥泄露与供应链安全 gates
插件: log-pii-guard provenance-attestation sast-semgrep-gate sbom-gate secrets-leak-guard supply-chain-hygiene
starter-safe
推荐安全默认:仅社区稳定检查;不包含 experimental/deprecated 插件
插件: boundary-arch-hardening complexity-loc-budgets coverage-nonregression deadcode-orphan-api docs-no-drift exceptions-ttl-guard lint-unified-gate log-pii-guard paranoid-tool-policy plan-diff-scope provenance-attestation reuse-report-gate sast-semgrep-gate sbom-gate secrets-leak-guard spec-adr-gate supply-chain-hygiene surface-contract-guard tests-junit-gate
插件
显示 38 共 38.
没有符合筛选条件的插件。
app-lifecycle-harness
Run a repo-declared start-readiness-smoke-teardown runtime harness
为什么
Run a repo-declared start-readiness-smoke-teardown runtime harness
别名
p27
标签
harnesslifecycleruntime
维护者
amirtlinov
Packs
ai-runtimeall
experimental
boundary-arch-hardening
面向多语言项目的架构分层与边界策略加固(反“意大利面”)
为什么
Needed so the project does not turn into spaghetti: it keeps modules in their places and prevents chaotic coupling.
别名
p04
标签
archboundaryhardening
维护者
amirtlinov
Packs
ai-coreai-proof-coreai-repo-qualityallstarter-safe
community
change-contract
Validate typed change capsule frontmatter, required sections, and lease declarations
为什么
Validate typed change capsule frontmatter, required sections, and lease declarations
别名
p34
标签
changecontracttyped
维护者
amirtlinov
Packs
ai-proof-coreall
community
complexity-loc-budgets
为多语言仓库设置复杂度与代码行数(LOC)预算,防止 AI 生成“单体”
为什么
Needed to stop huge unreadable functions/files early, while changes are still cheap to fix.
别名
p06
标签
budgetscomplexityloc
维护者
amirtlinov
Packs
ai-coreai-proof-coreai-repo-qualityallstarter-safe
community
context-budget
Validate typed context-budget limits across active change capsules and projection manifests
为什么
Validate typed context-budget limits across active change capsules and projection manifests
别名
p35
标签
budgetcontexttyped
维护者
amirtlinov
Packs
ai-entropyall
community
coverage-nonregression
覆盖率非回退保护(防止 coverage 下降)
为什么
Needed so test coverage does not silently degrade from release to release.
别名
p15
标签
coveragenonregression
维护者
amirtlinov
Packs
ai-repo-qualityallqualitystarter-safe
community
deadcode-orphan-api
检测多语言 runtime 源码中的死私有符号与“孤儿”公共 API
为什么
Needed to clean dead code and unused public API, reducing maintenance cost and confusion.
别名
p07
标签
apideadcodeorphan
维护者
amirtlinov
Packs
ai-coreai-proof-coreai-repo-qualityallstarter-safe
community
docs-graph
Validate docs-router, change-capsule graph files, and stale capsule freshness windows
为什么
Validate docs-router, change-capsule graph files, and stale capsule freshness windows
别名
p36
标签
docsgraphtyped
维护者
amirtlinov
Packs
ai-entropyai-proof-coreall
community
docs-no-drift
文档同步的 no‑drift 检查:架构与文档契约一致性
为什么
Needed to keep docs aligned with real behavior, so users and contributors trust what they read.
别名
p17
标签
docsdriftno
维护者
amirtlinov
Packs
allqualitystarter-safe
community
example-minimal
用于社区上手的参考最小插件
为什么
Needed as a minimal reference plugin so teams can quickly understand structure and start safely.
别名
—
标签
exampleminimal
维护者
amirtlinov
Packs
—
certified
exceptions-ttl-guard
P16:对 allowlist 例外强制 TTL/过期/预算规则
为什么
Needed so temporary exceptions really stay temporary and do not become hidden permanent debt.
别名
p16
标签
exceptionsguardttl
维护者
amirtlinov
Packs
allqualitystarter-safe
community
golden-principles-enforcer
Validate a compact PHILOSOPHY.md golden-principles contract for AI-first repositories
为什么
Validate a compact PHILOSOPHY.md golden-principles contract for AI-first repositories
别名
p30
标签
ai-firstgovernanceprinciples
维护者
amirtlinov
Packs
ai-entropyall
community
lease-lock
Validate typed lease policy and detect conflicting active change leases
为什么
Validate typed lease policy and detect conflicting active change leases
别名
p37
标签
coordinationleaselocking
维护者
amirtlinov
Packs
ai-proof-coreai-runtimeall
community
lint-unified-gate
P19:为 Rust/Python/JS/TS 质量检查接入统一 lint gate
为什么
Needed to enforce one clear quality style across the repo, instead of many conflicting local rules.
别名
p19
标签
gatelintunified
维护者
amirtlinov
Packs
ai-repo-qualityallqualitystarter-safe
community
log-pii-guard
防止日志中泄露 PII 与密钥
为什么
Needed to prevent personal or sensitive data leaks in logs before they become incidents.
别名
p18
标签
guardlogpii
维护者
amirtlinov
Packs
allsecuritystarter-safe
community
merge-truth-contract
Assemble canonical merge-readiness proof from existing compas witness state and repo-local review truth
为什么
Assemble canonical merge-readiness proof from existing compas witness state and repo-local review truth
别名
p33
标签
merge-truthproofreview
维护者
amirtlinov
Packs
ai-proof-coreall
community
observability-agent-gate
Validate repo-local observability reports, logs, metrics, and traces
为什么
Validate repo-local observability reports, logs, metrics, and traces
别名
p28
标签
metricsobservabilitytraces
维护者
amirtlinov
Packs
ai-runtimeall
experimental
paranoid-tool-policy
严格工具执行的“偏执”工具策略护栏
为什么
Needed to block dangerous or unexpected tool execution paths and keep automation predictable.
别名
p01
标签
paranoidpolicytool
维护者
amirtlinov
Packs
ai-coreai-proof-coreai-repo-qualityallstarter-safe
community
perf-regression-budget
性能回退预算 gate:用于 AI 修改与 runtime 影响检查
为什么
Needed so the system does not become slower over time without anyone noticing.
别名
p20
标签
budgetperfregression
维护者
amirtlinov
Packs
ai-repo-qualityallquality
community
plan-diff-scope
P03:强制检查“计划 ↔ diff”的范围一致性
为什么
Needed to ensure implementation matches the agreed plan and does not include hidden extra changes.
别名
p03
标签
diffplanscope
维护者
amirtlinov
Packs
ai-coreallstarter-safe
community
projection-integrity
Validate typed projection manifest integrity for change-capsule projections
为什么
Validate typed projection manifest integrity for change-capsule projections
别名
p38
标签
integrityprojectiontyped
维护者
amirtlinov
Packs
ai-proof-coreall
community
provenance-attestation
Provenance/attestation gate:用于发布产物完整性与信任
为什么
Needed to prove where release artifacts came from and increase trust for users and auditors.
别名
p11
标签
attestationprovenance
维护者
amirtlinov
Packs
allsecuritystarter-safe
community
quality-summary-report
Check and refresh the machine-readable quality summary witness from canonical compas gate outputs
为什么
Check and refresh the machine-readable quality summary witness from canonical compas gate outputs
别名
—
标签
posturequalitysummary
维护者
amirtlinov
Packs
ai-entropyai-repo-qualityallquality
community
release-readiness-gate
CI/CD 发布就绪检查:确保确定性的发布
为什么
Needed to check real readiness before release, reducing rollback and hotfix stress.
别名
p21
标签
gatereadinessrelease
维护者
amirtlinov
Packs
allquality
community
reuse-report-gate
P05:带 reuse-report 工具的 gate 扩展(反复制粘贴)
为什么
Needed to push reuse over copy-paste, so maintenance stays cheaper and behavior stays consistent.
别名
p05
标签
gatereportreuse
维护者
amirtlinov
Packs
ai-repo-qualityallqualitystarter-safe
community
review-evidence-contract
Validate legacy JSON review artifacts and witness references for compatibility-mode merge lanes
为什么
Validate legacy JSON review artifacts and witness references for compatibility-mode merge lanes
别名
p25
标签
contractevidencelegacyreview
维护者
amirtlinov
Packs
—
sunset
review-matrix
Validate review-matrix policy and change-capsule lens requirements by risk tier
为什么
Validate review-matrix policy and change-capsule lens requirements by risk tier
别名
p39
标签
matrixreviewtyped
维护者
amirtlinov
Packs
ai-proof-coreall
community
sast-semgrep-gate
P12:将 Semgrep 安全扫描接入 gate 流程
为什么
Needed to catch common security issues early, before they reach production.
别名
p12
标签
gatesastsemgrep
维护者
amirtlinov
Packs
allsecuritystarter-safe
community
sbom-gate
SBOM gate:用于依赖清单与 lockfile 可追踪性
为什么
Needed to keep a clear inventory of dependencies for security, legal, and incident response work.
别名
p10
标签
gatesbom
维护者
amirtlinov
Packs
allsecuritystarter-safe
community
secrets-leak-guard
密钥泄露防护:阻止 secret 暴露
为什么
Needed to prevent accidental leaks of tokens, passwords, and keys in code or artifacts.
别名
p13
标签
guardleaksecrets
维护者
amirtlinov
Packs
allsecuritystarter-safe
community
spec-adr-gate
Spec/ADR gate:在实现前强制目标/非目标/验收标准/边界情况/回滚方案
为什么
Needed so teams agree on goals, constraints, and rollback before coding starts.
别名
p02
标签
adrgatespec
维护者
amirtlinov
Packs
ai-coreallstarter-safe
community
stale-artifact-scanner
Scan for stale plans, review artifacts, and orphaned evidence files
为什么
Scan for stale plans, review artifacts, and orphaned evidence files
别名
p32
标签
artifactsentropystale
维护者
amirtlinov
Packs
ai-entropyall
community
structured-report-ingestion
在 gates 中验证并强制结构化报告产物(SARIF/JUnit/JSON)
为什么
Needed to turn tool outputs into clear, comparable quality signals instead of noisy raw logs.
别名
p22
标签
ingestionreportstructured
维护者
amirtlinov
Packs
ai-proof-coreallquality
community
supply-chain-hygiene
供应链 gate:要求确定性的依赖 lockfile 与稳定版本
为什么
Needed to control dependency risk and avoid unstable or unsafe package drift.
别名
p09
标签
chainhygienesupply
维护者
amirtlinov
Packs
allsecuritystarter-safe
community
surface-contract-guard
通过显式 baselines 防止公共 API surface 膨胀与契约破坏
为什么
Needed to protect API contracts from accidental breaking changes that hurt users.
别名
p08
标签
contractguardsurface
维护者
amirtlinov
Packs
ai-coreai-proof-coreai-repo-qualityallstarter-safe
community
tests-junit-gate
P14:在 gate 中强制 JUnit 规范化的测试执行
为什么
Needed to ensure tests run in a standard format so failures are visible and actionable for everyone.
别名
p14
标签
gatejunittests
维护者
amirtlinov
Packs
ai-repo-qualityallqualitystarter-safe
community
ui-validation-gate
Validate repo-produced UI smoke reports, screenshots, and DOM assertions
为什么
Validate repo-produced UI smoke reports, screenshots, and DOM assertions
别名
p29
标签
browseruivalidation
维护者
amirtlinov
Packs
ai-runtimeall
experimental
worktree-isolation-guard
Validate deterministic per-worktree state, log, temp, and port isolation config
为什么
Validate deterministic per-worktree state, log, temp, and port isolation config
别名
p26
标签
isolationruntimeworktree
维护者
amirtlinov
Packs
ai-repo-qualityai-runtimeall
community