Skip to content

heurema/specpunk

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
cmd/specpunk
cmd/specpunk
 
 
docs
docs
 
 
internal
internal
 
 
punk
punk
 
 
site
site
 
 
tools
tools
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
wrangler.toml
wrangler.toml
 
 

Repository files navigation

punk

Your codebase is not ready for AI agents. punk fixes that.

AI agents write code fast. But they don't know your conventions, your boundaries, or your invariants. They generate PRs that compile, pass tests, and silently break everything you've built.

punk is a CLI that scans your project, extracts its implicit rules, and turns every task into a verifiable contract — before any code is written.

punk init          # understand the project (< 10 seconds)
punk plan "task"   # generate a contract, not code
punk check         # verify the implementation matches the contract
punk receipt       # cryptographic proof of what happened

The problem

Every AI coding tool today starts from a blank context. They read your files, guess your patterns, and hope for the best. The result:

  • Convention drift (your style guide exists, nobody reads it)
  • Scope creep (asked to fix auth, also "improved" the database layer)
  • Ghost solutions (old approach left in, new one added on top)
  • Review theater (1000-line PR, 3 reviewers, "LGTM")

The cost isn't generation. It's verification.

What punk does

Phase 1 — Understand (punk init)

Scans your codebase in under 10 seconds. No LLM, no API calls. Detects language, framework, conventions, test patterns, commit style, and boundaries. Outputs machine-readable artifacts that make every subsequent AI interaction dramatically better.

Phase 2 — Contract (punk plan "add user auth")

Before anyone writes code, punk generates a contract: what files to touch, what to never touch, acceptance criteria, and a quality score. You approve it like terraform plan. The contract becomes the review boundary.

Phase 3 — Verify (punk check)

After implementation, punk verifies the change stayed within the contract. Scope violations, missing acceptance criteria, convention breaks — caught automatically, not in review.

Phase 4 — Receipt (punk receipt)

Cryptographic proof of what was planned, what was built, and whether they match. Append-only. Auditable. The missing link between "the AI wrote it" and "we verified it."

Design principles

  • Brownfield-first. Built for existing codebases, not greenfield demos.
  • CLI-native. Works in your terminal, your CI, your pre-commit hooks. No web UI, no vendor lock-in.
  • Deterministic by default. punk init and punk check never call an LLM. Only punk plan uses one, and --manual works offline.
  • Receipts, not trust. Every decision is recorded. Every verification is reproducible.

Status

Active development. Phase 0-2 complete (init + plan + config). Phase 3 (check) in progress.

  • 40 tests, 0 clippy warnings
  • Rust workspace (punk-core lib + punk-cli bin)
  • git + jj support via VCS trait abstraction
  • Multi-language scanning: Rust, JavaScript/TypeScript, Python, Go

Install

cargo install --path punk/punk-cli

Quick start

# Scan an existing project
cd your-project
punk init

# Configure LLM provider (for punk plan)
punk config set-provider anthropic https://api.anthropic.com/v1/messages sk-ant-...

# Generate a contract
punk plan "add rate limiting to the API"

# Or work offline
punk plan --manual "add rate limiting to the API"

Sponsor

punk is built in the open by one developer. If this solves a real problem for you, consider sponsoring development.

Network Address
Ethereum 0x1EB9b1dec7Ee036BE0BABE9B75AdaF6BD72f546C
Arbitrum 0x1EB9b1dec7Ee036BE0BABE9B75AdaF6BD72f546C
BNB Chain 0x1EB9b1dec7Ee036BE0BABE9B75AdaF6BD72f546C
Solana HR1i9CFb8D1yGXkiu7CkdhCqBJvsc1hSRrTPLR3f7Hcq

USDC, USDT, ETH, SOL — any token on these networks works.

What sponsorship enables:

  • Faster iteration on Phase 3-4 (check + receipt)
  • Multi-model contract generation (Claude + GPT + Gemini)
  • Convention auto-tuning (auto-research loop for rule optimization)
  • punk scan --agents-md — generate optimized AI agent instructions from your codebase

Every sponsor gets early access to features and a voice in the roadmap.

Roadmap

Phase Status What
0 done Scaffold, CLI, VCS trait, CI
1 done punk init — brownfield scan, conventions, boundaries
2 done punk plan — contract generation, quality heuristic, approval
0.9 done punk config — provider management
3 next punk check — verify implementation vs contract
4 planned punk receipt — cryptographic completion proof
5+ research Convention auto-tuning, AGENTS.md generation, multi-model audit

Why "punk"

Because your codebase has rules that nobody wrote down, conventions that nobody enforces, and boundaries that nobody respects. punk makes them explicit, verifiable, and non-negotiable.

License

MIT

About

Repo-native review boundary for AI-assisted brownfield change.

specpunk.com

Resources

Readme
Activity
Custom properties

Stars

2 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages