npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@cuzfrog/pi-module-gates

v0.10.0

Published

pi extension that controls the entropy of the codebase by enforcing code module boundaries.

Downloads

384

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

cuzfrogcuzfrog

Keywords

pi-package

Readme

pi-module-gates - Constraints liberate, liberties constrain.

pi cli extension that controls the entropy of the codebase by enforcing code module boundaries. It helps combat slop generation and code architecture degradation.

Problem

AI coding agents produce edits with limited context knowledge (myopia) — their changes may leak implementation details, and break architectural contracts (slop).

Approach

Module contracts as guardrails. Each directory can contain a descriptor file that declares:

  • readonly — files and directories the agent must not touch
  • frozen — files where no new exports are allowed
  • visible — the set of exports allowed to be added or modified in that module

The extension intercepts agent write/edit operations and enforces these contracts. Violations are blocked with a clear reason.

How it works

  1. Indexing — On session start, scans the project tree for descriptor files and builds a module index.
  2. System prompt — Injects a hint so the agent knows to respect descriptor file conventions.
  3. Gating — On every write/edit, checks:
    • Readonly gate — is the target file locked? Fronzen gate — is there any surface change to the target file?
    • Export gate — would the change introduce an export not in the visible list?
    • Import gate (not implemented yet) — would the change introduce an import violating visibility scope?

Installation

pi install npm:@cuzfrog/pi-module-gates

Or load directly for a single session:

pi -e npm:@cuzfrog/pi-module-gates

Module Descriptor Semantics

A module descriptor is a Markdown file (default name: MODULE.md) placed in a directory. You can piggy-back on your module context file for example CONTEXT.md.

Readonly constraints

---
readonly: [mod.rs]
---

Any prose for the agent to better understand the module.

Frozen constraints

frozen: [mod.rs]

Frozen files cannot change their surface size: no new exports or public entries are allowed.

A skill module-freeze-all has been included to auto-freeze modules.

Visibility whitelist (under redesign)

visible:
  - greet # equivalent to `path: ./greet`
  - sub/mod1/Foo

or:

visible:
  - path: my_function
    modifier: pub(crate) # (optional) demands an exact match

| Scenario | Behavior | |----------|----------| | visible key absent or no MODULE.md | Module is unconstrained — exports are not gated. Equivalent to null internally. | | visible: [] | Module is fully closed — no new exports may be added. Editing existing exports is still allowed. | | Malformed YAML frontmatter | The module is left unguarded and an info notification is emitted. |

Export gating

project/
  MODULE.md          visible: [Foo, Bar]
  src/
    MODULE.md        visible: [Bar, Baz]
    app.ts           ← checked against `src/MODULE.md` only

A MODULE.md only enforces exports within its immediate directory.

Import gating (not implemented yet)

# parent/MODULE.md
visible:
  - sub/Tool # type Tool is allowed to be imported from parent

# parent/sub/MODULE.md (before complement pass)
visible:
  - Bar # type Bar is allowed to be imported from parent/sub within parent, but not outside parent

A MODULE.md semantically gates exposures at the module level it resides.

Configuration

Add a module-gate entry to .pi/settings.json:

{
  "module-gate": {
    "moduleDescriptorFileName": "MODULE.md",
    "moduleDescriptorReadonly": true,
    "sourceRoot": "src/"
  }
}

| Option | Default | Description | |--------|---------|-------------| | moduleDescriptorFileName | "MODULE.md" | File name used for module descriptors (case-insensitive) | | moduleDescriptorReadonly | true | When true, descriptor files are readonly.| | sourceRoot | "src/" | Directory to scan for descriptor files and enforce gates. Set to "" to scan from project root. |

When no settings file exists or no module-gate key is present, defaults apply.

License

MIT

Author

Cause Chung ([email protected])