[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"extension-cli-gsd-build-sdk-en":3,"guides-for-gsd-build-sdk":330,"similar-k175krrmvvr7ea7rxfy1avem8s86np65-en":331},{"_creationTime":4,"_id":5,"children":6,"community":7,"display":9,"evaluation":15,"identity":260,"isFallback":248,"parentExtension":263,"providers":264,"relations":269,"repo":271,"tags":326,"workflow":327},1778688084060.6382,"k175krrmvvr7ea7rxfy1avem8s86np65",[],{"reviewCount":8},0,{"description":10,"installMethods":11,"name":13,"sourceUrl":14},"GSD SDK — programmatic interface for running GSD plans via the Agent SDK",{"npm":12},"@gsd-build/sdk","GSD SDK","https://github.com/gsd-build/get-shit-done",{"_creationTime":16,"_id":17,"extensionId":5,"locale":18,"result":19,"trustSignals":238,"workflow":258},1778688129109.826,"kn77hqj3tzchkywbg10tnt4kxn86mr57","en",{"checks":20,"evaluatedAt":199,"extensionSummary":200,"features":201,"nonGoals":207,"practices":211,"prerequisites":216,"promptVersionExtension":218,"promptVersionScoring":219,"purpose":220,"rationale":221,"score":222,"summary":223,"tags":224,"targetMarket":231,"tier":232,"useCases":233},[21,26,29,32,36,39,43,47,50,53,57,61,64,68,71,74,77,80,83,86,90,94,98,102,106,109,112,116,120,123,126,129,132,135,138,142,146,150,153,157,160,163,166,169,172,175,179,182,185,188,192,195],{"category":22,"check":23,"severity":24,"summary":25},"Practical Utility","Problem relevance","pass","The description clearly states the problem of needing a programmatic interface for running GSD plans via the Agent SDK.",{"category":22,"check":27,"severity":24,"summary":28},"Unique selling proposition","The SDK provides a programmatic interface and CLI for GSD plans, offering value beyond a simple prompt by handling shell plumbing and providing structured execution.",{"category":22,"check":30,"severity":24,"summary":31},"Production readiness","The tool appears production-ready, offering a full CLI and programmatic interface for GSD plans, including installation and quickstart guides.",{"category":33,"check":34,"severity":24,"summary":35},"Scope","Single responsibility principle","The extension focuses on providing the GSD SDK, which includes programmatic access, CLI tools for plan execution, and related utilities, all within the GSD domain.",{"category":33,"check":37,"severity":24,"summary":38},"Description quality","The provided description is concise, accurate, and reflects the SDK's purpose of enabling programmatic execution of GSD plans.",{"category":40,"check":41,"severity":24,"summary":42},"Invocation","Scoped tools","The CLI appears to use specific commands like `query`, `run`, `init`, and `auto` rather than a single generalist `execute` tool.",{"category":44,"check":45,"severity":24,"summary":46},"Documentation","Configuration & parameter reference","The README details environment variables like `GSD_QUERY_FALLBACK` and `GSD_AGENTS_DIR`, and the CLI's help and parameter parsing (as seen in `cli.ts`) suggest good parameter handling.",{"category":33,"check":48,"severity":24,"summary":49},"Tool naming","CLI commands (`run`, `auto`, `init`, `query`) and programmatic entry points (`GSD`, `createTools`) are descriptive and follow a clear pattern.",{"category":33,"check":51,"severity":24,"summary":52},"Minimal I/O surface","The CLI and SDK appear to use structured arguments and outputs, with the `query` command explicitly allowing forwarding of flags to handlers.",{"category":54,"check":55,"severity":24,"summary":56},"License","License usability","The extension is licensed under MIT, which is a permissive open-source license, and this is clearly stated in package.json and the LICENSE file.",{"category":58,"check":59,"severity":24,"summary":60},"Maintenance","Commit recency","The repository shows recent commits as of May 13, 2026, indicating active maintenance.",{"category":58,"check":62,"severity":24,"summary":63},"Dependency Management","The project uses npm with a `package.json` and has a `prepublishOnly` script, suggesting a standard dependency management process. It also lists dependencies like `@anthropic-ai/claude-agent-sdk` and `ws`.",{"category":65,"check":66,"severity":24,"summary":67},"Security","Secret Management","The code does not appear to handle or expose secrets directly via CLI arguments or overly verbose logging, with focus on env vars and file paths for configuration.",{"category":65,"check":69,"severity":24,"summary":70},"Injection","The design focuses on structured input and execution of plans/queries, with no indication of executing arbitrary downloaded code or instructions.",{"category":65,"check":72,"severity":24,"summary":73},"Transitive Supply-Chain Grenades","The CLI and SDK appear to bundle dependencies and do not fetch external scripts or markdown for execution at runtime.",{"category":65,"check":75,"severity":24,"summary":76},"Sandbox Isolation","The CLI operates within the project directory and uses standard Node.js execution, with no obvious attempts to write outside designated scopes.",{"category":65,"check":78,"severity":24,"summary":79},"Sandbox escape primitives","No evidence of detached process spawns or retry loops around denied tool calls is apparent in the provided code snippets.",{"category":65,"check":81,"severity":24,"summary":82},"Data Exfiltration","The tool focuses on executing plans and queries within a project context, with no apparent mechanisms for exfiltrating confidential data.",{"category":65,"check":84,"severity":24,"summary":85},"Hidden Text Tricks","The bundled content and code appear to be standard, readable TypeScript and Markdown, with no hidden steering tricks detected.",{"category":87,"check":88,"severity":24,"summary":89},"Hooks","Opaque code execution","The code is written in TypeScript and compiled to JavaScript, with no evidence of obfuscation, base64 payloads, or runtime script fetching.",{"category":91,"check":92,"severity":24,"summary":93},"Portability","Structural Assumption","The tool uses `process.cwd()` and `projectDir` options, allowing flexibility in project structure and avoiding hardcoded paths.",{"category":95,"check":96,"severity":24,"summary":97},"Trust","Issues Attention","The repository shows a high number of closed issues relative to open ones, indicating active maintainer engagement.",{"category":99,"check":100,"severity":24,"summary":101},"Versioning","Release Management","The `package.json` specifies a version (`1.50.0-canary.0`), indicating a versioning system is in place.",{"category":103,"check":104,"severity":24,"summary":105},"Code Execution","Validation","The CLI argument parsing and core logic appear robust, handling input parameters and forwarding them to handlers, suggesting validation is present.",{"category":65,"check":107,"severity":24,"summary":108},"Unguarded Destructive Operations","The commands (`run`, `init`, `auto`) seem to operate on project files and configurations, but there's no immediate indication of unguarded destructive operations without confirmation.",{"category":103,"check":110,"severity":24,"summary":111},"Error Handling","The code includes explicit error handling for argument parsing, file reading, and command execution, with non-zero exit codes on failure.",{"category":103,"check":113,"severity":114,"summary":115},"Logging","not_applicable","The tool does not appear to write to a local audit file; logging focuses on console output for progress and errors.",{"category":117,"check":118,"severity":114,"summary":119},"Compliance","GDPR","The tool focuses on code execution and project configuration, not directly processing personal data.",{"category":117,"check":121,"severity":24,"summary":122},"Target market","The extension operates on project files and code execution, with no inherent regional or jurisdictional limitations, thus is global.",{"category":91,"check":124,"severity":24,"summary":125},"Runtime stability","The CLI is written in Node.js and uses standard libraries, making it portable across POSIX and Windows systems.",{"category":44,"check":127,"severity":24,"summary":128},"README","A comprehensive README exists, detailing installation, quickstarts, project structure, and guides.",{"category":33,"check":130,"severity":24,"summary":131},"Tool surface size","The CLI exposes a manageable set of commands: `run`, `auto`, `init`, and `query`, which fits within the ideal range.",{"category":40,"check":133,"severity":24,"summary":134},"Overlapping near-synonym tools","The main commands (`run`, `auto`, `init`, `query`) are distinct, and the `query` command's flexibility for handlers avoids near-synonym issues.",{"category":44,"check":136,"severity":24,"summary":137},"Phantom features","Features mentioned in the README, such as programmatic interface, CLI commands, and plan execution, correspond to implemented functionalities.",{"category":139,"check":140,"severity":24,"summary":141},"Install","Installation instruction","Installation instructions (`npm install`) and basic CLI invocation examples are clearly provided in the README.",{"category":143,"check":144,"severity":24,"summary":145},"Errors","Actionable error messages","The code includes error handling for argument parsing and file operations, providing informative messages and exiting non-zero on failure.",{"category":147,"check":148,"severity":24,"summary":149},"Execution","Pinned dependencies","The `package.json` lists specific versions for dependencies and devDependencies, and the `cli.js` has a shebang.",{"category":33,"check":151,"severity":114,"summary":152},"Dry-run preview","The nature of the tool (executing plans and queries) does not lend itself to a typical `--dry-run` mode for state-changing operations.",{"category":154,"check":155,"severity":24,"summary":156},"Protocol","Idempotent retry & timeouts","The use of Node.js and the structure of the GSD execution suggest that operations are designed to be retryable and managed within session timeouts.",{"category":117,"check":158,"severity":24,"summary":159},"Telemetry opt-in","The tool's event stream and transports are designed for integration, and there's no evidence of mandatory or opt-out telemetry collection.",{"category":40,"check":161,"severity":24,"summary":162},"Hierarchical discoverable arguments","The CLI uses a hierarchical structure (`gsd-sdk \u003Ccommand>`) and the `query` command passes arguments to registered handlers, supporting discoverability.",{"category":40,"check":164,"severity":24,"summary":165},"Unknown-flag handling","The `parseCliArgsQueryPermissive` function is designed to pass unknown flags through to handlers, which is appropriate for this type of tool.",{"category":65,"check":167,"severity":24,"summary":168},"Secrets not in argv","Configuration and secrets are expected to be handled via environment variables, project directories, or file paths, not directly in argv.",{"category":40,"check":170,"severity":24,"summary":171},"Parseable --version","The `--version` flag is implemented and is expected to provide a single-line output based on the `package.json` version.",{"category":40,"check":173,"severity":24,"summary":174},"Flag precedence","The `loadConfig` function and the CLI argument parsing suggest a configurable precedence order, aligning with standard practices.",{"category":40,"check":176,"severity":177,"summary":178},"Schema introspection","info","While the `query` command allows handlers to receive arguments, there's no explicit mention of machine-readable schema introspection for inputs/outputs.",{"category":40,"check":180,"severity":24,"summary":181},"Prompt bypass","The CLI does not appear to have interactive prompts that would block automation; it's designed for programmatic and scripted execution.",{"category":139,"check":183,"severity":24,"summary":184},"No unnecessary global install","The primary installation method is via npm, which is a standard package manager, and the CLI is invoked using `node`.",{"category":139,"check":186,"severity":24,"summary":187},"Pipe-to-shell installer","The installation instructions use `npm install`, which is a standard and secure method, avoiding pipe-to-shell patterns.",{"category":189,"check":190,"severity":24,"summary":191},"Output","Stream separation","The code distinguishes between `console.error` for diagnostics and `process.stdout.write` for command output, adhering to stream separation principles.",{"category":189,"check":193,"severity":177,"summary":194},"Structured output mode","While the tool uses `console.log` and `console.error`, there isn't an explicit `--json` or similar flag for structured output readily apparent in the CLI code provided.",{"category":196,"check":197,"severity":24,"summary":198},"Subprocess behavior","Signal handling","The `main` function includes `finally` blocks for transport cleanup, suggesting graceful shutdown procedures are in place for signals.",1778688128982,"This extension provides a Node.js SDK and a command-line interface for programmatically running 'Get Shit Done' (GSD) plans, which are used for AI agent workflows. It allows for plan execution, query handling, and project initialization.",[202,203,204,205,206],"Programmatic SDK for GSD plans","Command-line interface for plan execution","Supports `run`, `auto`, `init`, and `query` commands","Handles configuration via project directory and environment variables","Event stream for telemetry and integration",[208,209,210],"Acting as a standalone AI agent.","Providing a GUI for workflow management.","Replacing core AI model functionalities; it orchestrates them.",[212,213,214,215],"Agent workflow orchestration","Plan execution","Code generation","Project bootstrapping",[217],"Node.js >= 22.0.0","3.0.0","4.4.0","To enable developers to programmatically control and execute complex AI agent workflows using the GSD framework via a robust SDK and CLI.","High score due to overall excellent quality, production readiness, and security posture. Minor deductions for lack of explicit schema introspection and structured output mode.",87,"A robust and secure Node.js SDK and CLI for managing AI agent workflows with GSD plans.",[225,226,227,228,229,230],"cli","sdk","automation","agent","typescript","node","global","verified",[234,235,236,237],"Automating AI agent workflows by scripting GSD plans.","Integrating GSD plan execution into CI/CD pipelines.","Developing custom agent behaviors that leverage GSD's planning and execution capabilities.","Initializing new projects or agent configurations using the `init` command.",{"codeQuality":239,"collectedAt":241,"documentation":242,"maintenance":245,"popularity":253,"security":255,"testCoverage":257},{"hasLockfile":240},true,1778688110509,{"descriptionLength":243,"readmeSize":244},72,10490,{"closedIssues90d":246,"forks":247,"hasChangelog":248,"manifestVersion":249,"openIssues90d":250,"pushedAt":251,"stars":252},1272,5257,false,"1.50.0-canary.0",43,1778662100000,61925,{"npmDownloads":254},201756,{"hasNpmPackage":240,"license":256,"smitheryVerified":248},"MIT",{"hasCi":240,"hasTests":240},{"updatedAt":259},1778688129109,{"basePath":226,"githubOwner":261,"githubRepo":262,"locale":18,"slug":226,"type":225},"gsd-build","get-shit-done",null,{"evaluate":265,"extract":267},{"promptVersionExtension":218,"promptVersionScoring":219,"score":222,"tags":266,"targetMarket":231,"tier":232},[225,226,227,228,229,230],{"commitSha":268,"license":256},"HEAD",{"repoId":270},"kd742g8972gs9150hkbr4r696986nzza",{"_creationTime":272,"_id":270,"identity":273,"providers":274,"workflow":321},1778688076507.493,{"githubOwner":261,"githubRepo":262,"sourceUrl":14},{"classify":275,"discover":309,"extract":312,"github":313,"npm":320},{"commitSha":268,"extensions":276},[277,298],{"basePath":278,"description":279,"displayName":280,"installMethods":281,"license":256,"rationale":282,"selectedPaths":283,"source":297,"sourceLanguage":18,"type":225},"","A meta-prompting, context engineering and spec-driven development system for Claude Code, OpenCode, Gemini and Codex by TÂCHES.","get-shit-done-cc",{"npm":280},"cli ecosystem detected at /",[284,287,289,292,295],{"path":285,"priority":286},"package.json","mandatory",{"path":288,"priority":286},"README.md",{"path":290,"priority":291},"LICENSE","high",{"path":293,"priority":294},"bin/install.js","medium",{"path":296,"priority":294},"bin/gsd-sdk.js","rule",{"basePath":226,"description":10,"displayName":12,"installMethods":299,"license":256,"rationale":300,"selectedPaths":301,"source":297,"sourceLanguage":18,"type":225},{"npm":12},"cli ecosystem detected at sdk",[302,303,304,307],{"path":285,"priority":286},{"path":288,"priority":286},{"path":305,"priority":306},"src/index.ts","low",{"path":308,"priority":306},"src/cli.ts",{"sources":310},[311],"manual",{"npmPackage":280},{"closedIssues90d":246,"description":314,"forks":247,"license":256,"openIssues90d":250,"pushedAt":251,"readmeSize":244,"stars":252,"topics":315},"A light-weight and powerful meta-prompting, context engineering and spec-driven development system for Claude Code by TÂCHES.",[316,317,318,319],"claude-code","context-engineering","meta-prompting","spec-driven-development",{"downloads":254},{"classifiedAt":322,"discoverAt":323,"extractAt":324,"githubAt":324,"npmAt":325,"updatedAt":322},1778688083890,1778688076507,1778688079935,1778688081879,[228,227,225,230,226,229],{"evaluatedAt":259,"extractAt":328,"updatedAt":329},1778688084060,1778688164723,[],[332,363,389,417,444],{"_creationTime":333,"_id":334,"community":335,"display":336,"identity":342,"providers":344,"relations":356,"tags":358,"workflow":359},1778692456956.1387,"k17bc73bymk3wvfgy6mjgpjcps86ncc6",{"reviewCount":8},{"description":337,"installMethods":338,"name":340,"sourceUrl":341},"Open-source AI agent firewall for MCP security: agent egress control, DLP, SSRF, and prompt injection defense.",{"go":339},"github.com/luckyPipewrench/pipelock","pipelock","https://github.com/luckyPipewrench/pipelock",{"basePath":278,"githubOwner":343,"githubRepo":340,"locale":18,"slug":340,"type":225},"luckyPipewrench",{"evaluate":345,"extract":355},{"promptVersionExtension":218,"promptVersionScoring":219,"score":346,"tags":347,"targetMarket":231,"tier":232},100,[348,349,228,225,350,351,352,353,354],"security","firewall","mcp","dlp","ssrf","injection-defense","auditing",{"commitSha":268},{"repoId":357},"kd728h5jcjjje6rbqwymfj9zph86m4jp",[228,354,225,351,349,353,350,348,352],{"evaluatedAt":360,"extractAt":361,"updatedAt":362},1778692494031,1778692456956,1778692621694,{"_creationTime":364,"_id":365,"community":366,"display":367,"identity":372,"providers":376,"relations":383,"tags":385,"workflow":386},1778683644393.5793,"k171esc5b8pbh1r9s90d526z3586njrn",{"reviewCount":8},{"description":368,"installMethods":369,"name":370,"sourceUrl":371},"Local skill manager and installer for agent-playbook across Claude Code, Codex, and Gemini.",{"npm":370},"@codeharbor/agent-playbook","https://github.com/charon-fan/agent-playbook",{"basePath":373,"githubOwner":374,"githubRepo":375,"locale":18,"slug":375,"type":225},"packages/agent-playbook","charon-fan","agent-playbook",{"evaluate":377,"extract":382},{"promptVersionExtension":218,"promptVersionScoring":219,"score":346,"tags":378,"targetMarket":231,"tier":232},[225,228,379,380,227,381],"skills","management","configuration",{"commitSha":268,"license":256},{"repoId":384},"kd7cf5d43dzccs0fw9c2rp131n86mrv4",[228,227,225,381,380,379],{"evaluatedAt":387,"extractAt":388,"updatedAt":387},1778684270439,1778683644393,{"_creationTime":390,"_id":391,"community":392,"display":393,"identity":399,"providers":402,"relations":410,"tags":412,"workflow":413},1778697107735.8984,"k177h2k24qprbp2pjjs5tsb9r586nywg",{"reviewCount":8},{"description":394,"installMethods":395,"name":397,"sourceUrl":398},"AI Constraint Engine — enforces CLAUDE.md, .cursorrules, AGENTS.md rules as laws. 51 MCP tools, 991 tests. Official MCP Registry. npx speclock protect",{"pypi":396},"speclock_ros2","speclock-ros2","https://github.com/sgroy10/speclock",{"basePath":397,"githubOwner":400,"githubRepo":401,"locale":18,"slug":397,"type":225},"sgroy10","speclock",{"evaluate":403,"extract":409},{"promptVersionExtension":218,"promptVersionScoring":219,"score":346,"tags":404,"targetMarket":231,"tier":232},[405,406,407,225,348,350,408],"ai-constraints","code-enforcement","developer-tool","robotics",{"commitSha":268},{"repoId":411},"kd73m85wtkj05xmfff4vq695hn86mgg4",[405,225,406,407,350,408,348],{"evaluatedAt":414,"extractAt":415,"updatedAt":416},1778697123911,1778697107735,1778697174406,{"_creationTime":418,"_id":419,"community":420,"display":421,"identity":426,"providers":428,"relations":437,"tags":439,"workflow":440},1778695962216.0022,"k171qd9d3vd6jx85hxzvja2q1h86njhr",{"reviewCount":8},{"description":422,"installMethods":423,"name":424,"sourceUrl":425},"Claude Code infrastructure for ML and AI engineers — skills, hooks, agents, and CI profiles.",{"npm":424},"claude-scaffold","https://github.com/pyramidheadshark/claude-scaffold",{"basePath":278,"githubOwner":427,"githubRepo":424,"locale":18,"slug":424,"type":225},"pyramidheadshark",{"evaluate":429,"extract":436},{"promptVersionExtension":218,"promptVersionScoring":219,"score":430,"tags":431,"targetMarket":231,"tier":232},99,[225,432,433,434,227,435,230],"scaffolding","ai-agents","developer-tools","python",{"commitSha":268,"license":256},{"repoId":438},"kd7dzttcpee246nfxmwan9pna986n3vq",[433,227,225,434,230,435,432],{"evaluatedAt":441,"extractAt":442,"updatedAt":443},1778695980061,1778695962216,1778696005500,{"_creationTime":445,"_id":446,"community":447,"display":448,"identity":453,"providers":457,"relations":461,"tags":463,"workflow":464},1778698616396.0127,"k174z4z44z9p7r0km1rqpt0dzx86ndna",{"reviewCount":8},{"description":449,"installMethods":450,"name":451,"sourceUrl":452},"A TypeScript SDK for programmatically configuring Vercel projects",{"npm":451},"@vercel/config","https://github.com/vercel/vercel",{"basePath":454,"githubOwner":455,"githubRepo":455,"locale":18,"slug":456,"type":225},"packages/config","vercel","config",{"evaluate":458,"extract":460},{"promptVersionExtension":218,"promptVersionScoring":219,"score":430,"tags":459,"targetMarket":231,"tier":232},[455,229,226,225,381],{"commitSha":268,"license":256},{"repoId":462},"kd7d79m65bt2mdrft58xhtk24n86n6y1",[225,381,226,229,455],{"evaluatedAt":465,"extractAt":466,"updatedAt":467},1778698668886,1778698616396,1778698739479]