npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

fulcrum-agent-cli

v0.0.3

Published

CLI for Fulcrum — fulcrum memory init, accelerate, rebuild, status

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

moabualruzmoabualruz

Keywords

cliagent-osfulcrummemoryvault

Readme

@fulcrum/cli

Command-line interface and MCP server for Fulcrum. Entry point for all agent runtimes (Claude Code, Gemini CLI, Codex, opencode, PI).

Commands

fulcrum
├── serve
│   ├── mcp          stdio MCP compatibility server + exposure planner
│   ├── mcp-http     HTTP MCP compatibility server (StreamableHTTP, default port 4722)
│   ├── monitor      HTTP monitor + control API (default port 4721)
│   └── all          both MCP + monitor
│
├── mcp              inspect MCP exposure plans
├── action           canonical action list / exec
├── tool             compatibility alias over canonical action handlers
│
├── doctor [--json]  environment health check — 8 checks, exits 1 on FAIL
│
├── task             create / list / get / update tasks
├── issue            create / list / get / update issues
├── epic             create / list / get epics
├── board            show kanban board
├── queue            merge / review queue operations
├── sync             push / pull / status for Plane sync
├── team             create / list / invoke / instances
├── workflow         start / run / status / resume workflows
├── agent            list / status / spawn agent runs
├── workspaces       list / create workspaces
├── projects         list / create projects
├── memory           init / accelerate / rebuild / status
│
├── hook
│   ├── claude       Claude Code PreToolUse hook
│   ├── gemini       Gemini CLI BeforeTool hook
│   └── pi           PI BeforeTool hook
│
└── --version / version

All commands accept --json for machine-readable output where applicable.

Canonical actions and MCP compatibility

Fulcrum now standardizes platform capabilities behind canonical actions. The preferred execution path is:

  1. hooks when available
  2. fulcrum action exec <action_name>
  3. MCP compatibility exposure when a runtime needs an MCP tool surface

Built-in actions remain accessible through:

  • fulcrum action list
  • fulcrum action exec <action_name>
  • fulcrum tool list
  • fulcrum tool exec <name> as a compatibility alias
  • fulcrum mcp plan to inspect the filtered MCP surface for a runtime or agent

The built-in MCP compatibility catalog contains 23 tools. The active exposed subset is filtered at startup by the action metadata and planner flags.

Auto-init

Every fulcrum command auto-initializes the current directory as a Fulcrum project on first run. Creates .fulcrum.json with deterministic workspace_id/project_id derived from the absolute path, plus a global SQLite DB at $FULCRUM_DATA_DIR (default ~/.local/share/fulcrum).

Plugin discovery

Fulcrum discovers plugins via package.json manifest keys. Any installed npm package with "fulcrum": { "type": "plugin" } is loaded automatically on server start. Plugins must register canonical actions via action manifests; MCP exposure for plugin capabilities is derived from that metadata. Plugins can also contribute adapters and workflow step handlers.

Hook system

Install the PreToolUse hook to get audit logging and policy enforcement on every tool call:

pnpm run setup:claude   # installs Claude Code hook + MCP registration
pnpm run setup:gemini   # installs Gemini CLI extension
pnpm run setup:pi       # installs PI cockpit extension

Hooks read a tool-call JSON from stdin, normalise the event format across runtimes, log a hook_executed event, and enforce the chief_of_staff_no_direct_writes invariant.

Hook isolation model (GAP-PLUGIN-6)

Current trust level: full in-process. Hook modules (hook claude, hook gemini, hook pi) run as Node.js child processes spawned by the agent runtime, not as dynamically-loaded in-process modules. Each hook invocation is a short-lived process that:

  1. Receives the tool-call event on stdin (never directly touches the DB connection of the parent).
  2. Calls back into the Fulcrum MCP server via the standard JSON-RPC stdio transport if it needs to read/write state — going through the same policy gate as any other caller.
  3. Exits after processing one event; the agent runtime waits for exit code 0 (allow) or non-zero (block).

Consequences:

  • A buggy or malicious hook cannot corrupt the in-process DB connection or memory state of the parent process.
  • A hook CAN read any file accessible to the user running the agent (it runs with the same OS privileges).
  • There is no sandboxing of filesystem or network access; operators must trust hook modules they install.

Roadmap: A future release will add a manifest-level trust declaration ("trust": "sandboxed") and optionally run hook processes inside a seccomp/landlock container on Linux. For now, treat hook modules the same as any other local CLI tool: install only from trusted sources.