npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@axtary/cli

v0.1.0

Published

Axtary local CLI for deterministic proxy demos.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

axtary-useraxtary-user

Keywords

ai-agentsauthorizationcliproxydemo

Readme

@axtary/cli

Axtary local CLI: the fail-closed runtime proxy, agent hooks, MCP wrapper, policy testing, and ledger tooling in one binary.

Early 0.x release: the runtime path is real and tested, but the API is not stable yet and may change between minor versions.

Quickstart

npm install -g @axtary/cli   # or: npx @axtary/cli <command>

axtary init     # scaffold a starter axtary.yml
axtary demo     # run fake GitHub/Slack/Linear actions through the proxy + ledger

init then demo reaches a first blocked action in under a minute with no credentials. The full rail — proxy, gating a real agent via the Claude Code hook or the MCP wrapper — is in docs/quickstart.md.

Commands

axtary init
axtary demo --config axtary.yml --json
axtary doctor connectors --config axtary.yml --json
axtary proxy --config axtary.yml
axtary smoke --config axtary.yml
axtary test-policy --config axtary.yml --fixtures examples/policy-fixtures
axtary run workflow github-pr-review --real --config examples/axtary.real.yml [--tamper]
axtary hook claude-code --proxy http://127.0.0.1:7331
axtary mcp serve --config axtary.yml [--wrap '<upstream mcp command>']
axtary export-ledger --format siem-jsonl
axtary sync-ledger --endpoint https://app.example/api/ledger/sync
  • init scaffolds a starter axtary.yml and prints the quickstart rail (docs/quickstart.md).
  • demo loads config, creates an ephemeral signing key, runs fake GitHub, Slack, Linear, and Jira actions through the proxy, writes the local JSONL ledger, and prints a structured result.
  • doctor connectors reports per-provider readiness — mode, missing env names, required scopes, smoke commands — without leaking secret values.
  • proxy starts a long-running local HTTP enforcement point with GET /health, GET /state, POST /actions (authorize + execute), and POST /authorize (decision, ActionPass, and ledger record without execution — the agent-hook path). It uses fake SaaS adapters by default and can route GitHub, Slack, Linear, AWS, GCP, and local docs actions when their adapter modes are enabled. File-backed configs are cached and policy is reloaded when axtary.yml changes.
  • smoke validates configured providers without writes: GitHub REST calls /user, Slack Web calls auth.test, Linear GraphQL queries viewer, AWS calls STS GetCallerIdentity, GCP checks project access, and local docs checks configured roots.
  • test-policy evaluates JSON fixtures against the loaded YAML policy and fails when an expected decision or reason differs.
  • run workflow github-pr-review --real executes the design-partner workflow (Linear read → docs search → GitHub branch/file/PR → approved Slack post) through proxy-compatible wiring; --tamper mutates the approved payload and proves the block (see docs/sandbox-runbook.md).
  • hook claude-code reads a Claude Code PreToolUse payload from stdin, normalizes file tools into content actions, and returns allow/ask/deny from the running proxy (see docs/claude-code-hook.md).
  • mcp serve runs a stdio MCP server whose wrapped tools are policy-gated at pinned definition hashes (see docs/mcp-wrapper.md).
  • export-ledger / sync-ledger export verified ledger records locally or upload them to the hosted control plane with signed sync tokens.

Real Provider Smoke Test

Set adapter modes and token environment variables in axtary.yml, then run:

GITHUB_TOKEN=... SLACK_BOT_TOKEN=... LINEAR_API_KEY=... \
AWS_ACCESS_KEY_ID=... AWS_SECRET_ACCESS_KEY=... GCP_ACCESS_TOKEN=... \
  axtary smoke --config axtary.yml

Fake adapters are skipped. Missing token environment variables, provider auth failures, or missing local docs roots return a non-zero exit code.

Design Notes

The CLI currently proves the local product loop. Real provider modes are opt-in through config and read tokens from configured environment variables, so demos remain deterministic and do not accidentally touch production providers.