npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@static-var/keystone

v2.0.3

Published

Keystone proactive multi-skill AI engineering workflows for planning, implementation, review, shipping, and maintenance.

Downloads

1,666

Readme

Keystone

Proactive workflow skills for disciplined AI work: use the right phase, keep boundaries clear, and prove the result.

Keystone is a package of model-discoverable workflow skills for coding agents. Instead of sending every request through a single router, Keystone exposes the phases agents need for real work: survey, plan, break down, implement, refactor, diagnose, review, ship, and audit.

Use Keystone when you want an agent to move deliberately: gather evidence before decisions, mutate only after isolation checks, separate review from fixing, and require proof before success claims.

Why use Keystone?

Agents usually fail in predictable ways:

  • they edit before understanding the repo
  • they treat a plan as proof
  • they debug by guessing
  • they review while changing files
  • they ship without evidence

Keystone turns those habits into explicit skills:

| You need... | Use... | |---|---| | inspect, research, inventory, compare, or answer “what is true here?” | context-survey | | shape product behavior, UX, copy, technical direction, architecture, or scope | product-planning | | turn approved direction into tasks, tickets, milestones, or handoffs | task-creation | | make scoped code, content, config, or documentation changes | implementation | | improve structure without intended behavior changes | refactoring | | reproduce, isolate, and explain a bug or failure before fixing | root-cause-analysis | | review a diff, branch, PR, or change read-only | change-review | | explicitly finalize completed work: commit, PR, release, publish, package, or hand off | shipping | | audit repository, tooling, package health, architecture, or maintenance risk | project-audit |

There is no central routing skill. The host discovers the right Keystone skill from the user's prompt or the user invokes the matching slash command directly.

Migrate from /keystone to direct skills

Keystone 2.0 removes the old /keystone entrypoint. Use the matching public skill directly instead:

/context-survey inspect or summarize existing code
/product-planning shape product, UX, scope, or technical direction
/task-creation turn approved direction into implementation-ready tasks
/implementation make scoped code, content, config, or documentation changes
/refactoring improve structure without intended behavior changes
/root-cause-analysis reproduce and explain bugs before fixing
/change-review review a diff, branch, PR, or regression risk read-only
/shipping explicitly commit, package, release, publish, or hand off completed work
/project-audit audit repository, tooling, package health, or maintenance risk

Natural-language requests still work when the host supports skill discovery; the slash commands are the explicit migration path from /keystone.

Install

Pi

pi install npm:@static-var/keystone

Then invoke a public skill by name, or ask naturally and let Pi's skill discovery choose:

/context-survey summarize the current package layout and risks
/implementation update the docs to match the approved spec
/change-review review the current branch for regressions

Optional Pi subagents:

pi install npm:@tintinweb/pi-subagents

Keystone may use subagent tools only when the active Pi tool schema exposes them. It does not assume named roles, model selection, thinking controls, or profile support.

Claude Code

/plugin marketplace add static-var/Keystone
/plugin install keystone@keystone

Invoke the installed public skills from Claude Code's plugin surface, for example context-survey, implementation, or shipping.

Codex

codex plugin marketplace add static-var/Keystone --ref main
codex plugin add keystone --marketplace keystone

Then ask Codex for the workflow phase you need or invoke the installed Keystone skill from your Codex surface.

How to use it

Ask for the phase you want in normal language:

Survey the repository and explain what has to change before the package can ship.
Turn this approved product spec into implementation-ready tasks with checks.
Refactor the duplicated parsing logic without changing behavior.
Diagnose why the release workflow fails and identify the smallest supported fix path.
Review the current branch for blockers, regressions, and packaging leaks.
Ship this completed change: verify evidence, prepare the commit summary, and hand off the PR notes.

Keystone skills can hand off when the work changes shape. For example, root-cause-analysis may hand off to implementation after evidence supports a fix path, and change-review may hand off findings to refactoring or implementation. Handoffs use a shared packet so the next skill receives the goal, evidence, files, risks, and next check.

Artifact defaults

Keystone writes durable planning artifacts only when the workflow calls for them:

docs/keystone/specs/YYYY-MM-DD-<slug>.md      # product-planning, after user approval
docs/keystone/tasks/YYYY-MM-DD-<slug>.md      # task-creation
docs/keystone/refactors/YYYY-MM-DD-<slug>.md  # large or cross-cutting refactoring

Before a plan is approved, product-planning works in conversation and asks focused questions instead of creating a spec file. task-creation keeps 1–5 top-level slices in conversation and writes 6 or more to its default artifact path; explicit chat-only or save requests override that threshold.

Explicit-only shipping

shipping is explicit-only. Keystone does not commit, open PRs, merge, tag, publish, release, deploy, perform destructive cleanup, or create external side effects just because implementation or review finished.

Ask for those actions directly, and Keystone will require proof and review evidence unless you explicitly waive them.

Shared gates and standards

Keystone's public skills share internal gates and doctrine:

  • checkpoint — make the next action or stopping point explicit
  • isolation — check branch, worktree, scope, and dirty state before mutation
  • red — establish a failing check or reproduction when practical
  • proof — verify claims with evidence before success reports
  • review — keep critique separate from fixing
  • ship — confirm completed work is ready for handoff or delivery
  • engineering standards — language-agnostic guidance for ownership, boundaries, state, abstractions, duplication, and maintainability

Gates are internal shared contracts, not public skills or commands.

Project status

  • npm package: @static-var/keystone
  • public skills: context-survey, product-planning, task-creation, implementation, refactoring, root-cause-analysis, change-review, shipping, project-audit
  • distribution: one complete Keystone package containing all nine skills and one shared gate tree
  • license: MIT
  • supported surfaces: Pi, Claude Code, Codex

For architecture, packaging, validation, and maintainer commands, read HOW_IT_WORKS.md.

Invocation fixtures exercise all nine descriptions, ambiguous boundaries, and prompts that should select no Keystone skill. They validate the evaluation corpus, not model behavior. Before release, run the exported corpus against every supported host being claimed and record its selections:

python3 scripts/export-invocation-eval.py