npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@osovv/vv-opencode

v0.27.2

Published

Portable OpenCode workflow plugins, explicit memory, and CLI tooling.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Maintainers

osovvosovv

Keywords

opencodepluginsworkflowguardianmemoryxdggracebuncitty

Readme

@osovv/vv-opencode

Portable OpenCode workflow package with a Bun CLI that installs and maintains OpenCode plugins, managed agent prompts, and a canonical vvoc.json config.

What This Package Does

  • installs one pinned @osovv/vv-opencode@<version> entry into OpenCode
  • that package entry exports seven plugins: GuardianPlugin, HashlineEditPlugin, MemoryPlugin, ModelRolesPlugin, SystemContextInjectionPlugin, WorkflowPlugin, SecretsRedactionPlugin
  • creates and maintains canonical vvoc config at $XDG_CONFIG_HOME/vvoc/vvoc.json
  • scaffolds managed prompt files under vvoc/agents/
  • registers vv-controller as the default OpenCode primary agent plus managed OpenCode agents: enhancer, vv-analyst, vv-architect, vv-implementer, vv-spec-reviewer, vv-code-reviewer, investigator
  • registers OpenCode slash commands: /vv-plan, /vv-review
  • installs plugin-managed agents: guardian, memory-reviewer
  • ships role presets, diagnostics, and shell completion through the vvoc CLI

Quick Start

If the package is installed as a project dependency, run it via bun x vvoc or bun run vvoc.

Install globally:

bun add -g @osovv/vv-opencode

Bootstrap the default global setup:

vvoc install
vvoc status

Write OpenCode config and managed prompts into the current repository instead of the global OpenCode config:

vvoc install --scope project

What install And sync Do

vvoc install and vvoc sync:

  • ensure OpenCode has a pinned @osovv/vv-opencode@<version> package entry
  • register managed agents and scaffold their prompt files
  • set OpenCode default_agent to vv-controller
  • seed OpenCode model, small_model, agent.explore, and managed agent model refs with vv-role:* values
  • register managed OpenCode commands vv-plan and vv-review
  • disable global OpenCode tools.apply_patch in managed config so editing stays on the hashline-backed edit override
  • create or refresh canonical vvoc.json
  • refresh managed built-in presets: vv-openai, vv-zai, vv-minimax, vv-deepseek

That package entry exports seven plugins:

  • GuardianPlugin
  • HashlineEditPlugin
  • MemoryPlugin
  • ModelRolesPlugin
  • SystemContextInjectionPlugin
  • WorkflowPlugin
  • SecretsRedactionPlugin

Config And Data Layout

OpenCode config stays in OpenCode-managed paths:

  • global: $XDG_CONFIG_HOME/opencode/opencode.json or ~/.config/opencode/opencode.json
  • project: ./opencode.json or ./opencode.jsonc

vvoc-owned config stays separate from OpenCode config:

  • canonical config: $XDG_CONFIG_HOME/vvoc/vvoc.json or ~/.config/vvoc/vvoc.json

Managed prompt files live here:

  • global: $XDG_CONFIG_HOME/vvoc/agents/*.md
  • project: ./.vvoc/agents/*.md

Durable planning artifacts written by the managed planning agents live here:

  • project: ./.vvoc/plans/*.md

For CLI commands that accept --scope project, only the OpenCode config target and managed prompt directory become project-local. Canonical vvoc.json stays global.

Persisted vvoc data lives here:

  • global data root: $XDG_DATA_HOME/vvoc/ or ~/.local/share/vvoc/
  • project-local memory: $XDG_DATA_HOME/vvoc/projects/<project-id>/memory/
  • shared memory: $XDG_DATA_HOME/vvoc/memory/shared/<namespace>/

vvoc.json currently contains these top-level sections:

  • roles
  • guardian
  • memory
  • secretsRedaction
  • presets

The current schema is versioned and published with the package:

{
  "$schema": "https://cdn.jsdelivr.net/npm/@osovv/vv-opencode@<installed-version>/schemas/vvoc/v3.json",
  "version": 3
}

Schema source of truth lives in this repository at schemas/vvoc/v3.json.

CLI Overview

| Command | Purpose | | --- | --- | | vvoc init | Interactive bootstrap flow | | vvoc install | Non-interactive setup and scaffolding | | vvoc sync | Refresh plugin entry, managed agents, prompts, and vvoc.json | | vvoc status | Show current installation state | | vvoc doctor | Diagnose setup problems and exit non-zero if problems are found | | vvoc config validate | Validate canonical vvoc.json | | vvoc role list/set/unset | Manage canonical role assignments | | vvoc preset list, vvoc preset show <name>, vvoc preset <name> | Inspect or apply named presets | | vvoc guardian config | Print or write the guardian section of vvoc.json | | vvoc plugin list | List plugin entries from OpenCode config | | vvoc patch-provider stepfun-ai|zai|openai | Patch a global OpenCode config preset | | vvoc completion | Install shell completions | | vvoc upgrade | Upgrade the global package and run a follow-up sync | | vvoc version | Print the installed package version |

Model Roles And Presets

Inspect current role assignments:

vvoc role list

Set role assignments (provider/model[:variant]):

vvoc role set default openai/gpt-5.4
vvoc role set smart openai/vv-gpt-5.5-xhigh
vvoc role set fast openai/gpt-5.4-mini
vvoc role set team-review anthropic/claude-sonnet-4-5:high

Remove custom role assignments:

vvoc role unset team-review

Built-in role IDs:

  • default
  • smart
  • fast
  • vision

Role notes:

  • vvoc role mutates only canonical global vvoc.json (roles map)
  • built-in roles cannot be removed with vvoc role unset
  • custom role IDs must use lowercase letters, digits, and hyphens

Presets are stored in canonical vvoc.json and are useful when you want to switch several role assignments together:

vvoc preset list
vvoc preset show vv-openai
vvoc preset vv-openai
vvoc preset vv-zai

Preset rules:

  • managed built-in presets are vv-openai, vv-zai, vv-minimax, and vv-deepseek
  • vvoc install and vvoc sync always refresh those managed vv-* presets back to vvoc defaults
  • vv-openai uses normal openai/gpt-5.4 for default, keeps smart on the vv-managed xhigh alias openai/vv-gpt-5.5-xhigh, and keeps fast/vision on the conservative OpenAI defaults
  • run vvoc patch-provider openai before using the vv-openai smart role if the alias model is not already present in your global OpenCode config
  • user-defined presets with other names are preserved as-is, including legacy names such as openai, zai, and minimax
  • presets may be partial
  • applying a preset only changes the roles listed in that preset
  • vvoc preset list/show/apply reads the current canonical vvoc.json as-is and only bootstraps defaults when the file is missing
  • on existing vvoc.json, preset commands do not reseed or refresh managed preset definitions as a side effect
  • preset application updates only canonical global vvoc.json role assignments and does not rewrite OpenCode config directly

Plugins Included

ModelRolesPlugin

ModelRolesPlugin resolves vv-role:* model references at startup for supported OpenCode config fields (model, small_model, agent.*.model, and command.*.model).

Agent role assignments that include :variant are translated into native model plus variant fields.

GuardianPlugin

GuardianPlugin reviews OpenCode permission requests with a constrained guardian agent and safe deny behavior.

Runtime settings live in the guardian section of canonical vvoc.json.

Supported guardian fields:

  • model
  • variant
  • timeoutMs
  • approvalRiskThreshold
  • reviewToastDurationMs

Print or update the guardian section:

vvoc guardian config --print
vvoc guardian config --model "anthropic/claude-sonnet-4-5" --variant high

The runtime prompt is loaded from guardian.md, preferring ./.vvoc/agents/guardian.md over the global vvoc agents directory.

HashlineEditPlugin

HashlineEditPlugin is enabled by default and replaces OpenCode's edit tool with a hash-anchored variant.

It also rewrites read output from plain numbered rows such as 42: const value = 1; into hashline rows such as 42#VK#AB|const value = 1;, where the final hash anchors the surrounding context.

The overridden edit tool requires those exact line#hash#anchor anchors, still accepts legacy line#hash anchors, and rejects stale references when the file changed since the last read, which prevents line-number drift and accidental writes against the wrong snapshot.

Managed OpenCode config written by vvoc install, vvoc sync, and vvoc init also sets tools.apply_patch = false so sessions are steered away from the global apply_patch tool and onto the hashline-backed edit override. Primary chat sessions also receive a short system reminder to prefer read plus the hashline-backed edit tool over shell-based file rewrites when an edit is needed.

MemoryPlugin

MemoryPlugin adds explicit persistent memory tools and installs a report-only memory-reviewer subagent.

Memory scopes are session, branch, project, and shared. Writes default to project; shared is cross-project, the rest are repository-local.

Available tools:

  • memory_search
  • memory_get
  • memory_put
  • memory_update
  • memory_delete
  • memory_list

Memory is explicit-only:

  • stored entries are never injected into prompts automatically
  • the agent must call memory tools directly when durable context is useful
  • memory-reviewer can read memory but cannot modify it

Supported memory fields:

  • enabled
  • defaultSearchLimit
  • reviewerModel
  • reviewerVariant

Example:

@memory-reviewer review the current memory and suggest keep/update/merge/delete actions

The runtime prompt is loaded from memory-reviewer.md, preferring ./.vvoc/agents/memory-reviewer.md over the global vvoc agents directory.

SystemContextInjectionPlugin

SystemContextInjectionPlugin injects reusable system guidance into primary sessions without polluting known subagent prompts.

The default injected guidance tells the main session to proactively use the explore subagent for read-only context gathering when the task depends on unfamiliar code, unclear scope, or multiple candidate implementation areas. The explore subagent must not be asked to propose solutions, suggest plans, recommend changes, make design decisions, or evaluate trade-offs.

WorkflowPlugin

vv-controller is the managed default primary agent. It routes routine localized work directly, uses investigator for unclear bugs, uses tracked implementer/reviewer loops for risky or multi-file changes, and uses vv-analyst plus vv-architect for large-feature planning before implementation approval.

Managed OpenCode commands:

  • /vv-plan routes the request through planning mode and stops before implementation
  • /vv-review routes the request through review-only mode and reports findings first

WorkflowPlugin adds tracked workflow orchestration around the task tool for these managed subagents:

  • vv-implementer
  • vv-spec-reviewer
  • vv-code-reviewer

It also registers three workflow tools:

  • work_item_open
  • work_item_list
  • work_item_close

Tracked task prompts must start with a first-line header like:

VVOC_WORK_ITEM_ID: wi-1

Tracked result blocks must return strict top-block protocol fields (VVOC_WORK_ITEM_ID, VVOC_STATUS, and VVOC_ROUTE for vv-implementer).

Main-session guidance reminds agents to open work items first for tracked implementer/reviewer loops, reuse returned headers, treat NEEDS_CONTEXT as a hard stop, inspect work_item_list before retries, and avoid free-form review loops without explicit work-item identity.

Review-only workflows may start a fresh work item directly with vv-spec-reviewer or vv-code-reviewer; implementation workflows still follow vv-implementer -> vv-spec-reviewer -> vv-code-reviewer.

SecretsRedactionPlugin

SecretsRedactionPlugin redacts secrets from chat content before LLM requests and restores placeholders afterward where needed.

Settings live in the secretsRedaction section of canonical vvoc.json.

The default seeded config uses:

{
  "secret": "${VVOC_SECRET}"
}

Set VVOC_SECRET if you want placeholder restoration to stay stable across restarts.

Built-in patterns cover common identifiers and tokens such as email addresses, UUIDs, IP and MAC addresses, bearer tokens, and common OpenAI, Anthropic, GitHub, AWS, and Stripe-style keys.

Managed Prompts And Agents

Managed prompt files are created for:

  • guardian
  • memory-reviewer
  • vv-controller
  • enhancer
  • vv-analyst
  • vv-architect
  • vv-implementer
  • vv-spec-reviewer
  • vv-code-reviewer
  • investigator

OpenCode agent registrations written by vvoc install and vvoc sync are:

  • explore
  • vv-controller
  • enhancer
  • vv-analyst
  • vv-architect
  • vv-implementer
  • vv-spec-reviewer
  • vv-code-reviewer
  • investigator

Plugin runtime agents are:

  • guardian
  • memory-reviewer

vvoc install and vvoc sync also keep OpenCode default_agent set to vv-controller and keep command entries for vv-plan and vv-review registered.

If a managed prompt file is missing, rerun one of these commands:

vvoc install
vvoc sync

Local Development

Install dependencies:

bun install

Run the local verification stack:

bun run typecheck
bun run lint
bun run fmt:check
bun test
bun run build
bun run pack:check

Format source files:

bun run fmt

Smoke-test the built CLI against a temporary config root:

tmpdir="$(mktemp -d)"
bun run build
bun dist/cli.js install --config-dir "$tmpdir"
bun dist/cli.js status --config-dir "$tmpdir"

Git hooks are managed with lefthook.

Publishing

Publishing is manual from the terminal.

Typical release flow:

bun run typecheck
bun run lint
bun run fmt:check
bun test
bun run build
bun run pack:check
npm publish

Optional: RTK

RTK is a CLI proxy that can reduce token usage for common developer commands. The interactive vvoc init flow recommends it after setup.