npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@skastr0/groundwork

v0.2.1

Published

Groundwork policy, provenance, context, and risk foundations for agentic development tools

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

skastr0skastr0

Keywords

groundworkclicontextriskframeworkprovenancepolicy

Readme

Groundwork

Groundwork is a JSON-first CLI and shared foundation layer for policy, provenance, context, risk, and session artifacts in agentic development workflows. The Bun CLI, OpenCode wrapper, and Codex plugin are published as separate packages around the same Groundwork foundations.

Status

  • Maturity: preview
  • Repository visibility: private until explicit maintainer approval
  • CLI package channel: npm package @skastr0/groundwork
  • Binary command: groundwork
  • Maintainer model: solo-maintained

The first public package release is prepared for npm but not published yet. Real publishing, tag pushes, GitHub release creation, and repository visibility changes require explicit maintainer approval.

Package Surface

  • @skastr0/groundwork: the root Bun CLI package. It exports the groundwork executable through bin.groundwork -> dist/cli.js.
  • @skastr0/groundwork-core: the shared library package under packages/core for policy, provenance, context, risk, and session foundations.
  • @skastr0/groundwork-opencode-plugin: the OpenCode runtime wrapper under packages/opencode-plugin. It uses @skastr0/groundwork-core and exports dist/server.js.
  • @skastr0/groundwork-codex: the self-contained Codex plugin bundle under packages/codex. It ships .codex-plugin/plugin.json, hooks/hooks.json, shell and cmd hook wrappers, and dist/groundwork-codex-hook.mjs.

CLI Install Surface

The root package exposes a standard groundwork binary. After the first npm publish:

npm install -g @skastr0/groundwork
groundwork doctor

For source builds before the first publish:

bun install
bun run build
bun run install:local
groundwork doctor

bun run build emits package JavaScript for the CLI and workspace packages, plus standalone local CLI binaries (dist/groundwork-<platform>-<arch>). bun run install:local copies the current-platform binary to ~/.local/bin/groundwork.

Packaged CLI installs use bin.groundwork -> dist/cli.js. The root npm package file surface includes dist/cli.js, dist/metadata.js, docs/, and this README. Standalone compiled binaries are source-build artifacts and are not included in the npm package.

CLI

Groundwork commands accept JSON input inline, from stdin, or from @file paths, and return deterministic JSON envelopes.

groundwork doctor
groundwork capabilities
groundwork schema list
groundwork examples list
groundwork risk evaluate-command '{"command":"git reset --hard"}'
groundwork risk evaluate-tool-call '{"session_id":"codex","call_id":"call-1","tool":"bash","command":"git reset --hard","cwd":"."}'
groundwork risk evaluate-tool-call '{"session_id":"codex","call_id":"call-2","tool":"bash","command":"git reset --hard","cwd":"."}'
groundwork risk evaluate-tool-result '{"session_id":"codex","call_id":"call-2"}'
groundwork policy evaluate-tool-call '{"session_id":"codex","tool":"edit","args":{"path":"src/index.ts"}}'
groundwork context touched-paths '{"session_id":"codex","tool":"edit","args":{"path":"src/index.ts"}}'
groundwork context discover '{"target_path":"README.md","include_root":true}'
groundwork provenance read '{"path":"src/index.ts","max_bytes":4000}'
groundwork provenance run '{"tool":"gw_worktree_overview","args":{"limit":10}}'
groundwork session render-compaction '{"session_id":"codex"}'

Discovery commands expose supported capabilities, examples, and JSON schema contracts. Context discovery excludes root-level AGENTS.md / CLAUDE.md by default to preserve harness parity; pass include_root: true when using the CLI for workspace-root audits or root-level files. Risk evaluate-command is a pure classifier. Harness-style risk evaluate-tool-call adds session-scoped block-once state: the first exact destructive Bash command blocks, the same exact retry warns, and risk evaluate-tool-result records that the warned command actually executed.

Policy Configuration

Groundwork-owned config paths are canonical:

  • project root: groundwork.toml
  • project config directory: .groundwork/*.toml policy files
  • project policy pack directory: .groundwork/policies/*.toml publishable pack files
  • user/global config directory: ~/.groundwork/*.toml policy files

The policy loader merges global configs first, then project configs. Later files can override earlier rules by reusing the same rule id.

Environment overrides use Groundwork names only:

  • project: GROUNDWORK_POLICY_CONFIG
  • global: GROUNDWORK_POLICY_GLOBAL_CONFIG

Use plugins for reusable policy packs and include or includes for local file composition. Plugin pack files such as groundwork-effect.toml are opt-in and are not auto-loaded merely because they live in a Groundwork directory. Repositories can publish packs under .groundwork/policies/*.toml; consumers activate them explicitly with plugins or install them into a local plugin directory with groundwork policy install.

version = 1
plugins = ["groundwork-effect"]
includes = [".groundwork/policy.*.toml"]

[[rules]]
id = "protect-src"
match = ["src/**"]

[[rules.actions]]
type = "block_tool"
message = "src edits require review"

Git-backed policy pack distribution is install/update-time only. Hooks never fetch network policy sources. policy install clones or fetches the Git source, validates discovered .groundwork/policies/*.toml files, materializes selected packs into ~/.groundwork/plugins/<name>.toml by default, and records source and lock metadata in ~/.groundwork/policy.sources.json and ~/.groundwork/policy.lock.json.

groundwork policy install '{"url":"https://github.com/skastr0/groundwork.git","ref":"main","name":"groundwork-effect","scope":"global"}'
groundwork policy update '{"names":["groundwork-effect"],"scope":"global"}'

Use "scope":"project" with "root_dir":"/path/to/repo" to install into that repository's .groundwork/plugins and project-local policy source/lock files instead.

Codex

The Codex plugin is published as @skastr0/groundwork-codex. Its package root contains .codex-plugin/plugin.json, lifecycle hooks in hooks/hooks.json, POSIX and Windows hook wrappers in hooks/, and the bundled hook runtime at dist/groundwork-codex-hook.mjs.

Codex installs plugins from configured marketplace snapshots. This repository includes .agents/plugins/marketplace.json, which points at packages/codex.

For local development, build the plugin bundle, add this checkout as a marketplace, then install groundwork from that marketplace:

bun install
bun run build
codex plugin marketplace add /path/to/groundwork
codex plugin add groundwork@groundwork-local

For Git-backed installs, use the same marketplace catalog from the repository:

codex plugin marketplace add skastr0/groundwork --ref main
codex plugin add groundwork@groundwork-local

Codex copies plugin sources into its plugin cache. Restart Codex and reinstall or refresh the marketplace after changing plugin files, then review and trust the plugin-bundled hooks.

Codex plugin hooks run shell commands that invoke node on the bundled JavaScript file. Runtime support follows the package engine: Node >= 24.

Codex hook parity is best effort. Current hooks cover SessionStart, UserPromptSubmit, PreToolUse, PermissionRequest, PostToolUse, and Stop within Codex hook API limits. They can block supported risky Bash commands once per exact session command, warn on exact retry without auto-approving permission requests, deny policy violations before execution, record explicit policy commands, persist session artifacts, and report post-tool/context feedback. They cannot intercept every tool path, undo side effects after a tool runs, or fully reproduce OpenCode synthetic prompt injection/compaction behavior. Codex requires plugin-bundled hooks to be reviewed and trusted after installation or hook changes.

See docs/codex-integration.md for details.

OpenCode

The OpenCode package is published as @skastr0/groundwork-opencode-plugin. Its runtime entrypoint is packages/opencode-plugin/src/server.ts, built to packages/opencode-plugin/dist/server.js, and it uses @skastr0/groundwork-core for shared Groundwork behavior.

OpenCode keeps stronger runtime hooks for ambient behavior, while shared Groundwork services and CLI-facing foundations carry the reusable business logic. Existing OpenCode gw_* provenance tool IDs and hook behavior are preserved. For destructive Bash risk, OpenCode now follows the shared block-once lifecycle: the first exact session command blocks, the exact retry warns and proceeds, and the after-hook logs execution for the warned command.

For local OpenCode use, point OpenCode at this package/plugin path after building:

bun run build

Development

Development verification expects Bun plus the optional policy matcher CLIs used by content rules:

npm install -g @ast-grep/[email protected]
python3 -m pip install --user semgrep==1.159.0
bun install
bun run typecheck
bun run test
bun run build:js
bun run build:cli
bun run build
bun run install:local
bun run check:imports
bun run verify
bun run pack:verify

bun run verify runs typecheck, tests, build, server import, CLI doctor checks, and local install smoke tests. bun run pack:verify inspects all package tarballs and runs clean packed-install smoke tests without publishing.

Release Plan

  1. Keep the repository private until the public-source surface and package tarball are validated.
  2. Publish the packages to npm as @skastr0/groundwork, @skastr0/groundwork-core, @skastr0/groundwork-opencode-plugin, and @skastr0/groundwork-codex; the unscoped groundwork package name is not the release target.
  3. Keep the groundwork executable name through bin.groundwork.
  4. Use CI as the release gate: bun run verify and bun run pack:verify must pass on the release commit.
  5. After maintainer approval, flip repository visibility, create the release tag/GitHub release, and run the real npm publish.

Project Layout

  • src/cli.ts and src/cli/ implement the standalone CLI protocol.
  • packages/core/ contains the shared Groundwork library for risk, policy, context, provenance, and session foundations.
  • packages/opencode-plugin/ contains the OpenCode runtime wrapper.
  • packages/codex/ contains the self-contained Codex plugin bundle and bundled hook runtime.
  • docs/ contains integration and session artifact notes.