npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

ai-agents-team

v0.1.16

Published

A team of specialized AI agents (coordinator, security, frontend, accessibility, performance, QA) for web development, installable and updatable in any project via CLI.

Downloads

2,696

Readme

ai-agents-team

A team of 16 specialized AI agents (coordinator, backend, frontend, design, accessibility, performance, security, testing, database, devops, geo, seo, copy, code-review, release, pm) for web development, distributed as a small CLI so every project can install and update them from one place instead of copy-pasting files by hand.

See agent-toolkit-package-plan.md for the original design doc.

Usage

# clear cache 
npm cache clean --force
# in a consumer project
npx ai-agents-team init   # first install (interactive, or --all)
npx ai-agents-team sync   # update installed files to latest templates
npx ai-agents-team list   # show available vs installed

sync updates only files already installed in your project (tracked by the lock file). If new templates were added to the toolkit (for example a new agent), sync now prints an explicit notice and tells you to run init to install them.

init copies selected agents/skills/instructions into .github/ in the current project and writes a .github/ai-agents-team.lock.json manifest (content hash + version per file). sync re-copies template files whose local hash still matches the manifest (i.e. untouched since install) and skips files that were customized locally, unless --force is passed. During init, the CLI also ensures these managed outputs are listed in .gitignore (.github/agents/, .github/skills/, .github/instructions/, and .github/ai-agents-team.lock.json) to avoid accidental commits.

Human workflow: how a team actually uses this day-to-day

Installing the agents is not the finish line — they're only useful inside a workflow where a human still approves the result. For anything beyond a one-line fix, drive the work through coordinator rather than invoking a specialist agent directly, and go through these four phases:

  1. Analyzecoordinator restates the goal, lists constraints/ambiguities, and (via the bundled grilling skill) stress-tests the plan with you one question at a time. It proposes a short plan: steps, dependencies, which specialist owns each step. You approve the plan before anything is delegated.
  2. Delegatecoordinator hands each step to the right specialist (backend, frontend, security, etc.), scoped to one small, independently reviewable change at a time.
  3. Validate — every change goes through code-review before it's considered done: it runs/confirms lint/typecheck/build and reports blocking issues vs. suggestions. You review the diff and the code-review findings before integrating. Never accept generated code on trust alone — read the diff, check it does what was asked, and confirm the quality gate actually passed (don't take "looks fine" as a substitute for running it).
  4. Integrate & closecoordinator merges the approved changes, reports what changed, which specialist produced it, what was validated, and any open risks — then you commit/open the PR.

This mirrors how the coordinator agent template is written (see templates/agents/coordinator.agent.md), so it applies unchanged in any host (Copilot, Claude Code, Codex — see table below).

Repo layout

  • src/ — CLI source (TypeScript, ESM, built with tsup).
  • src/lib/remoteSkills.ts — registry of skills fetched live from their upstream source at init/sync time (see below).
  • templates/agents/*.agent.md — 16 generic sub-agents (coordinator, backend, frontend, design, accessibility, performance, security, testing, database, devops, geo, seo, copy, code-review, release, pm).
  • templates/instructions/ — reserved for future generic instructions (currently empty; project-specific instructions stay in each repo, see the plan doc §1 and §9).

Self-sufficiency rule

Every agent shipped in this package must work standalone: it must never assume a skill or instruction that this package doesn't itself install. Some agents (frontend, accessibility) depend on skills that aren't vendored as static files in this repo — instead, init/sync fetch them live from their upstream source straight into the consumer project's .github/skills/ (see src/lib/remoteSkills.ts). This keeps them always up to date with zero manual steps, at the cost of requiring network access during init/sync and trusting the content served by the source URL at that moment (no local pinned/reviewed copy). init/sync retry transient failures and report any file that couldn't be fetched without aborting the rest of the run.

Agents included

Team-wide skill (all agents)

Every agent in this package automatically gets the live-fetched caveman skill in .github/skills/caveman/.

It is a global output-compression layer (terser responses, same technical substance) to reduce output tokens across the whole team, not only a single specialist agent.

Each agent ships as a single .agent.md file. Most are fully self-contained (no external skill dependency — the expertise/checklist is written inline in the agent file). Fifteen exceptions, all fetched live at init/sync time (see Self-sufficiency rule above) — nothing manual required:

| | Agent | Description | Skill it uses | |---|---|---|---| | 🧭 | coordinator | Coordinates multi-step engineering work across all the specialist agents below: plans, delegates, integrates, and verifies the result. | Team-wide caveman + live-fetched: grilling.github/skills/grilling/. | | ⚙️ | backend | Implements and reviews server-side logic, APIs, business logic, and third-party integrations. | Team-wide caveman + inline checklist. | | 🖥️ | frontend | Implements and refactors UI components/pages, matching existing project conventions. | Team-wide caveman + live-fetched: frontend-design.github/skills/frontend-design/. | | 🎨 | design | Defines interface direction, design tokens, layout, spacing, and visual/UX consistency, with implementation-ready frontend handoff. | Team-wide caveman + live-fetched: design-taste-frontend.github/skills/design-taste-frontend/. | | ♿ | accessibility | Audits UI against WCAG for keyboard nav, screen readers, contrast, and semantics. | Team-wide caveman + live-fetched: accessibility-general, forms-a11y, keyboard-a11y, color-contrast-a11y, aria-live-regions-a11y (from mgifford/accessibility-skills) and frontend-a11y (from mikemai2awesome/agent-skills) → .github/skills/. | | ⚡ | performance | Reviews rendering, bundle size, network requests, and data-access performance. | Team-wide caveman + live-fetched: web-performance-optimization.github/skills/web-performance-optimization/. | | 🌍 | geo | Implements and reviews geolocation, maps, and spatial queries (e.g. PostGIS). | Team-wide caveman + live-fetched: seo-geo-aeo.github/skills/seo-geo-aeo/. | | 🔎 | seo | Audits and improves SEO, GEO, and AEO outcomes for websites and web apps. | Team-wide caveman + live-fetched: seo-geo-aeo.github/skills/seo-geo-aeo/. | | 🔒 | security | Reviews code/designs for OWASP Top 10-style vulnerabilities and risky config/dependencies. | Team-wide caveman + live-fetched: security.github/skills/security/. | | 🧪 | testing | Designs/writes automated tests, reviews coverage, diagnoses flaky failures. | Team-wide caveman + live-fetched: writing-tests.github/skills/writing-tests/. | | 🗄️ | database | Designs and reviews schema, migrations, indexes, and constraints. | Team-wide caveman + live-fetched: postgres.github/skills/postgres/. | | 🚀 | devops | Reviews/implements CI/CD pipelines, build/deploy config, and infrastructure as code. | Team-wide caveman + live-fetched: ci-cd.github/skills/ci-cd/. | | ✍️ | copy | Centralizes UI strings, manages i18n/translations, keeps terminology consistent. | Team-wide caveman + live-fetched: copywriting.github/skills/copywriting/. | | 🔍 | code-review | Reviews changes for quality/readability pre-merge and runs the lint/typecheck/build gate. | Team-wide caveman + live-fetched: code-review.github/skills/code-review/. | | 🏷️ | release | Manages semantic versioning and changelog entries. | Team-wide caveman + live-fetched: release-skills.github/skills/release-skills/. | | 📋 | pm | Maintains project documentation, changelog, and status tracking. | Team-wide caveman + live-fetched: docs-maintenance.github/skills/docs-maintenance/. |

Note on trust: live-fetched skills are pulled from third-party repos you don't control. Review src/lib/remoteSkills.ts if you want to audit exactly which URLs are fetched, or fork/pin them if you need a reviewed, network-independent alternative.

Using it with GitHub Copilot, Claude Code, and Codex

init writes files to .github/agents/*.agent.md, which is the format GitHub Copilot (VS Code) reads natively — no extra step needed there. Other hosts expect the same content in a different location/format, since there is no shared standard across tools yet:

| Host | Where it looks for agents | What to do | |---|---|---| | GitHub Copilot / VS Code | .github/agents/*.agent.md | Nothing extra — this is exactly what init installs. | | Claude Code | .claude/agents/*.md (project) or ~/.claude/agents/*.md (user, all projects) | Copy the installed files there and drop the .agent part of the extension, e.g. cp .github/agents/security.agent.md .claude/agents/security.md. The YAML frontmatter (name, description) is compatible; Claude also supports an optional tools:/model: field you can add per agent. | | Codex CLI | No dedicated per-agent file format at the time of writing — Codex reads a single AGENTS.md for instructions. | Reference the relevant agent file(s) from AGENTS.md (e.g. "When reviewing security, follow .github/agents/security.agent.md"), or paste the agent's body into AGENTS.md directly. |

Because every agent file here is self-contained (see the self-sufficiency rule above), copying it as-is to another host's expected location is safe — there's never a hidden skill/instruction dependency to bring along separately.