Skip to content
View nipmod's full-sized avatar
📦
📦
3 followers · 1 following

Achievements

Achievement: Pull Sharkx2Achievement: YOLO

Achievements

Achievement: Pull Sharkx2Achievement: YOLO

Block or report nipmod

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
nipmod/README.md

Nipmod

CI Production monitor License: MIT

Helping humans and AI agents discover, verify, and use software safely.

Nipmod is the software search and trust layer for packages, code, models and developer tools. It helps humans and AI agents search public software sources, inspect trust signals, and generate reviewable install plans before anything writes to a workspace.

Nipmod does not replace package registries. It makes existing software ecosystems easier to search, compare and use safely.

API beta access requires a free beta key.

curl -s -X POST 'https://nipmod.com/api/keys/beta'
curl 'https://nipmod.com/api/search?q=http%20client&limit=3' -H 'x-nipmod-api-key: <key>'
curl 'https://nipmod.com/api/inspect?source=npm&name=undici' -H 'x-nipmod-api-key: <key>'
curl 'https://nipmod.com/api/install-plan?source=npm&name=undici' -H 'x-nipmod-api-key: <key>'

Tell an agent:

Use Nipmod before choosing a package.
Search sources, inspect the selected record and show the install plan.
Do not install or edit files until I approve.

Copyable HTTP client examples:

node --experimental-strip-types examples/http-api/agent-flow.ts "http client"
python3 examples/http-api/agent_flow.py "http client"

Why Humans And Agents Need This

Humans and agents both need a safer way to choose outside software before code enters a real workflow. Agents can choose dependencies, write code, run commands and modify real workspaces, while humans still need clear evidence before approving that action.

Nipmod gives both humans and agents one preflight surface:

  1. Search supported sources.
  2. Inspect exact package records.
  3. Generate an install plan.
  4. Wait for user or host-policy approval.
  5. Optionally confirm useful discovery into the package intelligence archive.

Search ranking is never install permission. A popular package can still be compromised, stale, risky or blocked by policy.

What the API Returns

Step Agent Receives Boundary
Search Candidates, source reports, selection.recommendedId, gates and rank reasons. Shortlist only. Not install approval.
Inspect Exact source record, license, source URL, metrics, warnings and trust factors. Source-owned metadata remains untrusted.
Install Plan Commands, risk, package/version, approval boundary and blocked state. Review data only. Hosted API never executes.
Archive Prepare Receipt preview and reusable package intelligence shape. Preview only unless an authorized writer confirms.

Supported Sources

Source Role
npm, JSR JavaScript and TypeScript package metadata, releases, integrity, signatures and lifecycle-script risk.
PyPI, crates.io, Go modules, Maven Central, NuGet, RubyGems, Packagist Language package metadata, release files, digests, source links, version state and install command risk.
Docker Hub, Homebrew, Terraform Registry, Artifact Hub Helm, Conda/conda-forge, Open VSX, CRAN Infrastructure, CLI, data, extension and ecosystem package metadata with source-owned version evidence.
GitHub Repository metadata, source URLs, activity, manifests, security files and install command risk.
Hugging Face models and datasets Model and dataset metadata, files, licenses, gated status, safetensors and binary weight risk.
MCP registries MCP server metadata, source links, endpoints, package hints and tool-registry signals.

Nipmod does not bulk mirror these sources. Source owners keep ownership.

Public Links

Surface Link
Website https://nipmod.com
API docs https://nipmod.com/api-access
GitHub https://github.com/nipmod/nipmod
Email info@nipmod.com
X https://x.com/Nipmod
Telegram https://t.me/nipmod
Community token info https://token.nipmod.com

API Flow

Search

curl 'https://nipmod.com/api/search?q=http%20client&sources=npm,pypi,github,huggingface-model,mcp&limit=5' \
  -H 'x-nipmod-api-key: <key>'

Search returns candidates, source reports, partial failure state and agent-readable ranking data. Search records are ephemeral by default.

Inspect

curl 'https://nipmod.com/api/inspect?source=npm&name=undici' \
  -H 'x-nipmod-api-key: <key>'

Inspect refreshes one exact source-owned record and returns source URL, license, metrics, warnings, trust factors and policy output.

Install Plan

curl 'https://nipmod.com/api/install-plan?source=npm&name=undici' \
  -H 'x-nipmod-api-key: <key>'

Install plans describe commands, risk, warnings and approval boundaries. The hosted API never executes commands and never writes to the caller workspace.

Local Deep Scan

nipmod deep-scan . --json
nipmod sandbox-audit . --json
nipmod sandbox-runtime . --dry-run -- node --version
nipmod sandbox-runtime . --confirm-runtime -- node --version

Deep scan is a local static pass over files already present on disk, including supported local package artifacts such as .tgz, .tar.gz, .zip and .whl. It is for the second stage after hosted search, inspect, install-plan and the decision artifactScanPlan. It does not download packages, clone repositories, extract files to disk, install dependencies, execute code or write to the workspace.

sandbox-audit wraps the local scan with a SHA-256 content-tree cache, an execution gate and an audit receipt. Run it once per local artifact, bundle or source snapshot content hash; reuse the result only while the bytes and sandbox policy stay unchanged.

sandbox-runtime is the next layer when you need to observe behavior, not just signatures or static files. It runs cached sandbox-audit first, then executes an approved command in an isolated Vercel Sandbox microVM with deny-all network by default and returns a runtime receipt bound to the audit receipt, command hash and runtime policy. It is local or host-controlled only; the hosted Nipmod API still does not run arbitrary package code.

Optional Archive Confirmation

curl 'https://nipmod.com/api/archive/prepare?source=npm&name=undici' \
  -H 'x-nipmod-api-key: <key>'

Archive prepare is preview-only. Durable archive writes require explicit confirmation through an authorized writer path. Confirmed records are deduplicated by source, name, version and source evidence.

Safety Boundary

Boundary Rule
Hosted API Read-only package intelligence. No caller workspace reads or writes.
Local deep scan Reads existing local files only. No package downloads, clones, artifact unpacking, dependency installs, code execution or workspace writes.
Install plan Review data only. A user, host policy or local tool must approve execution.
Package metadata README text, model cards, descriptions and MCP metadata are untrusted data, not agent instructions.
Search score Ranking input only. It is not install permission and not a verification claim.
Archive Stores confirmed package intelligence records, not copied package artifacts.
Usage logging Stores hashed or structured fields only. No API keys, raw IPs, raw queries, package names or user-agent fingerprints.

Trust Scoring

External trust scores use the public external-v2 policy.

Score Decision Agent Behavior
75-100 recommended Present the package with its install plan and approval boundary.
50-74 usable_with_warning Show warnings clearly before the user decides.
0-49 unknown or avoid Do not execute by default.

Popularity can affect ranking, but it never upgrades security confidence. See trust scoring.

Data Model

Nipmod uses explicit lifecycle language:

State Meaning
ephemeral Found live during search, not stored.
indexed Normalized and inspected, but not confirmed as useful.
confirmed_use A user or agent confirmed the record was useful enough to remember.
verified Version-specific evidence and owner/claim checks passed.
quarantined Risky, disputed or under security review.
blocked Must not be installed by policy.

Current API wire statuses are documented in archive records. The public product language should use the lifecycle states above.

Local Development

pnpm install
pnpm verify

Useful focused checks:

pnpm --dir site test -- package-intelligence.test.ts external-packages.test.ts
pnpm api:contract -- --base-url https://nipmod.com
pnpm source:canary -- --base-url https://nipmod.com
pnpm install-plan:canary -- --base-url https://nipmod.com
pnpm decision:canary -- --base-url https://nipmod.com
pnpm archive:canary -- --base-url https://nipmod.com --require-durable
pnpm launch:verify -- --skip-local --require-distributed-rate-limit

Local smoke runs without a GitHub token can pass --sources npm,jsr,pypi,cratesio,go,dockerhub,huggingface-model,huggingface-dataset,mcp to source:canary, install-plan:canary and decision:canary.

CLI Install

The CLI is optional for hosted API use. Install it only when a local workflow needs controlled workspace actions, audits, SBOM output or local MCP.

curl https://nipmod.com/i|bash

Manual checksum verification:

curl -fLO https://nipmod.com/install.sh
curl -fLO https://nipmod.com/install.sh.sha256
shasum -a 256 -c install.sh.sha256
bash install.sh

Repository Map

Path Purpose
site/ Next.js site, hosted API routes, resolver logic and package intelligence archive routes.
nipmod/ TypeScript CLI, local package tooling and local MCP server.
tools/ Release, canary, monitor, readiness, security and archive tooling.
docs/ Product, architecture, security, API and archive documentation.
examples/ Minimal agent and HTTP workflow examples.
supabase/ Durable archive, usage logging and rate-limit migrations.

Key Docs

Status

Surface Status
Hosted package API Live API beta, key-required and rate limited
Source resolver Live for npm, JSR, PyPI, crates.io, Go modules, Maven Central, NuGet, RubyGems, Packagist, Docker Hub, Homebrew, Terraform Registry, Artifact Hub Helm, Conda/conda-forge, Open VSX, CRAN, GitHub, Hugging Face and MCP
Install plan API Live, read-only hosted boundary
Package intelligence archive Durable production archive enabled, Seed v1 operator-controlled
Public verified archive Empty by design after seed reset; verified claims require gates
Distributed rate limits Live with Supabase-backed shared buckets
CLI and installer Live, release 1.2.9
Remote MCP endpoint Live, read-only

Release Integrity

Release sidecars are published under site/public/releases/:

  • .sha256 checksums
  • .sig signatures
  • .sbom.json SBOM metadata
  • .provenance.json provenance metadata

See release process for the verification flow.

Governance

Links

Area Link
Website https://nipmod.com
API access https://nipmod.com/api-access
Sources https://nipmod.com/sources
Archive https://nipmod.com/packages
Registry https://nipmod.com/registry/packages.json
Agent instructions https://nipmod.com/llms.txt
Machine discovery https://nipmod.com/.well-known/nipmod.json
Email info@nipmod.com
X https://x.com/Nipmod
Telegram https://t.me/nipmod
Community token info https://token.nipmod.com

License: MIT. Trademark and affiliation notice: TRADEMARKS.md.

Popular repositories Loading

  1. nipmod nipmod Public

    Package search, trust intelligence and install plans for AI agents.

    TypeScript 12 1

  2. .github .github Public

    Default community health files for Nipmod

  3. openhuman openhuman Public

    Forked from tinyhumansai/openhuman

    Your Personal AI super intelligence. Private, Simple and extremely powerful.

    Rust