npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

jorgex-stack

v1.0.13

Published

Harness multi-agente portable: instala la config JorgeX (agentes, skills, hooks, Engram, MCPs) en Claude Code, Codex CLI y OpenCode

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

jorgehn98jorgehn98

Keywords

claude-codecodexopencodeagentsskillsmcpengramharness

Readme

JorgeX Stack

Portable multi-agent harness: one configuration source — 15 agents, 17 skills, hooks, persistent memory (Engram), MCPs, and system prompt — installable with one command in Claude Code, Codex CLI, and OpenCode.

Inspired by gentle-ai, rebuilt for the JorgeX stack.

Usage

Install and run via npm without cloning the repository:

pnpm dlx jorgex-stack install    # apply config to your runtimes (interactive pick; idempotent, removes orphans)
pnpm dlx jorgex-stack models     # model picker by runtime and tier (strong/standard/cheap)
pnpm dlx jorgex-stack sync       # alias of install (same idempotent apply)
pnpm dlx jorgex-stack doctor     # checks that everything is healthy (Engram, drift, hooks, keys)
pnpm dlx jorgex-stack update     # interactive: scans stack + Engram, multiselect, diff/confirm
                                 # With --check: report only, no changes
                                 # With --yes: batch mode (report only)
pnpm dlx jorgex-stack restore    # restores a backup
pnpm dlx jorgex-stack uninstall  # uninstalls our files and keeps user data (Engram intact)

For development from a clone, run the same commands through pnpm cli <command> (see Development).

Every command supports --dry-run, --yes, and --target-dir <dir> for testing without touching the real config. Writes create automatic backups and verify idempotency; merges into user config are surgical (marked markdown sections, JSON/TOML upserts), so user-owned content is never touched.

Update: Interactive Flow

update manages two sources for the end user, plus a maintainer-only one:

  1. Stack (jorgex-stack): detects whether it is a git clone or a global install, then offers an update with confirmation.
  2. Engram (binary): detects the installed version and offers an update through the native channel (brew -> go install -> release URL). Nothing needs to be stopped: as in upstream macOS/Linux, live processes keep using the old version until clients restart; on Windows, the in-use .exe is rotated by rename before installation. Automatic DB backup before updating. The database and memories are never touched.
  3. Vendored skills (maintainer only): third-party skills ship pinned with the stack version, so the installed package never reaches out to their upstreams. Only when running from a git clone (pnpm cli update) does update scan the upstreams in upstreams.json, download to a temp directory, show a mandatory diff, and ask for confirmation — so the review and re-pin persist in the repo and get published. Skills with local changes (modified: true) warn and require double confirmation.

Usage:

  • update --check: scans versions without applying changes.
  • update (TTY, without --yes): interactive multiselect with visible diffs and step-by-step confirmations.
  • update --yes or non-TTY: behaves like --check (report only).

GitHub authentication: requests use GH_TOKEN/GITHUB_TOKEN from the environment or, if unavailable, the token from your gh CLI session (gh auth token — local read only, never logged or persisted). Without a token, GitHub limits parallel requests and some upstreams may appear as "offline".

OpenCode Goal Mode

Goal Mode is an OpenCode plugin for long-running goals: multiple sessions, multiple slices, multiple worktrees, and, when needed, multiple PRs. It is not meant for short tasks. If the change fits without extended autonomy, do not use /goal.

It only exists in OpenCode. Claude Code and Codex do not receive it.

Available commands:

  • /goal <goal> — creates a persistent goal.
  • /goal status — shows status and next action.
  • /goal plan — shows the goal's master plan / PRD.
  • /goal history — lists events and transitions.
  • /goal pause — pauses the goal.
  • /goal resume — resumes the goal.
  • /goal merged [commit] — signals that the pending external PR has been merged.
  • /goal cancel — cancels the goal.

What does not exist:

  • /goal quick
  • /goal work

Operational state:

  • Separate SQLite database by default at ~/.jorgex-stack/goals/goals.sqlite.
  • Optional override with JORGEX_GOAL_DB, but always inside ~/.jorgex-stack/goals/.
  • Engram is not the goal's operational store: it remains memory/protocol, not the state database.
  • Goal Mode does not perform automatic merges; when it must wait for an external merge, the state becomes waiting_for_merge.
  • The integration uses experimental OpenCode hooks (experimental.chat.system.transform and experimental.session.compacting), so that surface may change.

Status

The CLI is complete and the real migration has been executed (F6); the stack is the only configuration source. Versions are published automatically to npm according to the flow described in Publishing. The design, decisions (D1-D9), and roadmap are in PRD.md.

Publishing

Releases are triggered by push/merge to main and GitHub Actions; there is also a recovery workflow_dispatch on main with an optional release_sha. validate resolves the target SHA once and exposes it as target_sha; bump reuses that SHA. If you do not pass release_sha, validate pins target_sha to origin/main after fetch; if you do pass it, it must be a full 40-hex SHA that belongs to main or the workflow fails red with recovery instructions. Running without release_sha is only valid to publish origin/main when the version does not exist on npm yet; if the version already exists and the tag is missing, the workflow fails and requires workflow_dispatch with release_sha=<published sha>. If the diff mixes publishable changes with .github/workflows/*, auto-release stops before bump/publish because GitHub may reject the tag push without workflow permissions; split the release or use manual publish/tag with elevated permissions. pnpm publish is not used and npm login is not required:

  • Automatic patch: if the push to main contains publishable changes and the current package.json version already exists on npm, the workflow finds the first free patch (x+1, x+2, ...), commits chore(release): bump version to v..., and publishes. If tag v<package.version> already exists, it uses that point as the accumulated base; otherwise, it falls back to github.event.before. Obsolete runs are aborted after git fetch origin main --tags if origin/main no longer matches GITHUB_SHA.
  • Manual recovery: a manual run on main with release_sha publishes that SHA if it does not exist on npm yet, without bumping again; if the version already exists on npm but tag v<version> is missing, the workflow fails and forces a rerun with release_sha=<published sha> to avoid tagging origin/main. release_sha must be a full 40-hex SHA and belong to main; mutable refs (main, tags, main~1) are rejected. If you do not pass release_sha, validate resolves origin/main once, exposes it as target_sha, and bump uses that validated SHA. Recovery does not bypass the .github/workflows/* guard: if the diff mixes workflows with publishable changes, split the release or perform the tag/publish manually with elevated permissions. If there is no reachable previous release tag to reconstruct the range, the workflow fails closed and requires manual intervention.
  • No release: changes only in work/, worktrees/, tests, or files not listed as publishable (src/, stack/, upstreams.json, package.json, pnpm-lock.yaml, tsconfig.json, tsup.config.ts, README.md, PRD.md) do not create a release.
  • Manual minor and major: explicit bump in package.json in the PR (the workflow detects that the next patch already exists on npm and requires the bump).
  • OIDC / trusted publishing: the publishing job uses id-token: write and setup-node registry-url; the bump/push job only has contents: write; tag-release only writes contents and does not use OIDC. There is no NPM_TOKEN or NODE_AUTH_TOKEN in any secret. tag-release only runs if publish was success or skipped with tag_needed=true, and keeps its SHA validation as the final defense. The only exception to the "always pnpm" rule is npm pack --dry-run --ignore-scripts and npm publish --ignore-scripts --provenance in the final step, for registry compatibility and hardening.

Design details are in PRD §7.6.

Development

Requirements: Node >= 22.5 and pnpm (never npm). Goal Mode uses node:sqlite in tests/Node CLI and OpenCode uses bun:sqlite at runtime.

pnpm install
pnpm build        # tsup -> dist/
pnpm typecheck
pnpm test         # vitest
pnpm cli --help