惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

N
News and Events Feed by Topic
V
V2EX
博客园 - 【当耐特】
Vercel News
Vercel News
雷峰网
雷峰网
爱范儿
爱范儿
WordPress大学
WordPress大学
云风的 BLOG
云风的 BLOG
S
Securelist
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
Microsoft Azure Blog
Microsoft Azure Blog
F
Full Disclosure
有赞技术团队
有赞技术团队
Hugging Face - Blog
Hugging Face - Blog
NISL@THU
NISL@THU
www.infosecurity-magazine.com
www.infosecurity-magazine.com
Attack and Defense Labs
Attack and Defense Labs
Application and Cybersecurity Blog
Application and Cybersecurity Blog
Hacker News - Newest:
Hacker News - Newest: "LLM"
Microsoft Security Blog
Microsoft Security Blog
腾讯CDC
P
Proofpoint News Feed
B
Blog
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
K
Kaspersky official blog
I
InfoQ
Google Online Security Blog
Google Online Security Blog
L
LINUX DO - 最新话题
Project Zero
Project Zero
Engineering at Meta
Engineering at Meta
V
Visual Studio Blog
AI
AI
Schneier on Security
Schneier on Security
B
Blog RSS Feed
T
Tor Project blog
H
Help Net Security
H
Hackread – Cybersecurity News, Data Breaches, AI and More
L
LINUX DO - 热门话题
阮一峰的网络日志
阮一峰的网络日志
S
Security @ Cisco Blogs
T
Threat Research - Cisco Blogs
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
C
Cyber Attacks, Cyber Crime and Cyber Security
G
Google Developers Blog
Google DeepMind News
Google DeepMind News
V2EX - 技术
V2EX - 技术
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
A
Arctic Wolf
Webroot Blog
Webroot Blog
Recent Commits to openclaw:main
Recent Commits to openclaw:main

Hacker News - Newest: "AI"

AI can't read an investor deck AI as an attorney? Student uses ChatGPT, Gemini to sue UW over alleged racial discrimination Hacking MCP Servers in AI Systems – The Rug Pull: Tool Changes After Approval GitHub - MeepCastana/KubeezCut: Free Web based video editor GitHub - GenAI-Gurus/awesome-eu-ai-act: Curated tools, official sources, OSS, templates, and guides for EU AI Act compliance. Can AI judge journalism? A Thiel-backed startup says yes, even if it risks chilling whistleblowers Coming soon: 10 Things That Matter in AI Right Now DARPA built an AI to fact-check enemy weapons claims What explains heterogeneity in AI adoption? When AI Meets Muscle: Context-Aware Electrical Stimulation Promises a New Way to Guide Human Movements - Department of Computer Science AI Changed How We Build. It Did Not Change What Matters. Linux rules on using AI-generated code - Copilot is OK, but humans must take 'full responsibility for the… Meta spins up AI version of Mark Zuckerberg to engage with employees Code Mode: Let Your AI Write Programs, Not Just Call Tools | TanStack Blog GitHub - Delavalom/graft: Go framework for building AI agents. Type-safe tools, multi-provider (OpenAI, Anthropic, Gemini, Bedrock), zero vendor SDKs. India's TCS tops estimates, says new AI models did not dent services demand Gen Z's fading AI hype Strong feeling: we are in a folded AI reality GitHub - machinarii/total-recall-catalog: A reference catalog of latest knowledge retrieval, memory & RAG systems GitHub - mensfeld/code-on-incus: Give each AI agent its own isolated machine with root, Docker, and systemd. Active defense detects and stops threats automatically.. Quantization, LoRA, and the 8% Problem: Benchmarking Local LLMs for Production AI Iran war: We spoke to the man making Lego-style AI videos that experts say are powerful propaganda Powell, Bessent discussed Anthropic's Mythos AI cyber threat with major U.S. banks GitHub - immartian/bellamem: Persistent belief-graph memory for AI agents. Retrieves decisive context by importance — not recency, not RAG, not /compact. recursive-mode: The Repo-Native Operating System for AI Engineering After the attack on Sam Altman's home, will AI CEO's go on the offensive? The biggest advance in AI since the LLM Opus 4.6 vs GPT 5.4 One Prompt Unity World Generation Test “AI polls” are fake polls Client Challenge Can AI be a 'child of God'? Inside Anthropic's meeting with Christian leaders How to Switch AI Chatbots and Why You Might Want To GitHub - MattMessinger1/agentic_refund_guardrail: Safe refund policy layer for AI agents — Python + TypeScript. Same behavior, shared tests. Adam/papers/emergent_values_whitepaper.md at master · strangeadvancedmarketing/Adam Ask HN: How do you stop playing 20 questions with your AI coding tools How far can automation and AI support psychotherapy? - @theU GitHub - stagas/rtdiff: realtime git diff gui and AI-assisted commits A Mac Studio for Local AI — 6 Months Later A History of the Early Years of AI at the University of Edinburgh Why AI Coding Tools Still Feel Stuck on Localhost MSN AI Datacenters Are Becoming Strategic Targets twitter.com Penn Researchers Use AI to Surface Unreported GLP-1 Side Effects in Reddit Posts Show HN: MoodSense AI (ML and FastAPI and Gradio, Deployed on Hugging Face) Moodsense Ai - a Hugging Face Space by aman179102 AI models are terrible at betting on soccer—especially xAI Grok GitHub - xialeistudio/echoic GitHub - HimashaHerath/github-dev-wrapped: AI-powered weekly GitHub activity reports deployed to GitHub Pages GitHub - alejandrobalderas/claude-code-from-source: Architecture, patterns & internals of Anthropic's AI coding agent — reverse-engineered from source maps AI and Tech brief: Ireland ascendant GitHub - Titovilal/context0: Context0 - Never Surrender Training for a Marathon with an AI Coach: What Worked and What Didn't Cyber Pulse: Agentic Intel - Apps on Google Play I Built an AI PR Reviewer That Catches Bugs by Not Looking for Bugs Gen Z workers are so fearful AI will take their job they’re intentionally sabotaging their company’s AI rollout | Fortune How AI Is Reimagining the Game of Golf–For Both Players and Courses GitHub - nattergabriel/reseed: A CLI tool for managing and distributing agent skills across projects Is SVG the final frontier? My AI workflow evolved from prompts to a near-autonomous workflow MLSharp Help - 3DGS Viewer & Generator I put my cognitive field based AI's runtime on GitHub Is Numble the first AI-proof game? A3: Kubernetes for autonomous AI agent fleets | Emergent Principles Deepali Vyas ("The Elite Recruiter") GitHub - msmarkgu/RelayFreeLLM: A restful API designed to route user prompts to various AI model providers. Unionized ProPublica staff are on strike over AI, layoffs, and wages Unleashing the Advantage of Quantum AI We're heading for an AI-fueled 'dementia crisis,' brain scientist warns The AI-Assisted Breach of Mexico's Government Infrastructure [pdf] GitHub - stef41/lmscan: 🔍 Detect AI-generated text and fingerprint which LLM wrote it. Open-source GPTZero alternative. Zero dependencies, works offline. MSN GitHub - visionscaper/collabmem: Enabling long-term collaboration with Agentic AI - building up episodic and world model memory over time with in-context awareness We gave an AI a 3 year retail lease in SF and asked it to make a profit | Andon Labs AI Code is Hollowing Out Open Source, and Maintainers are Looking the Other Way What leaked "SteamGPT" files could mean for the PC gaming platform's use of AI AI is the boss at this retail store. What could go wrong? GitHub - Wuzu11517/agentic-proxy: Local proxy meant to help reduce With Drones, Geophysics and ArtificiaI Intelligence, Researchers Prepare to Do Battle Against Land Mines A Single Operator, Two AI Platforms, Nine Government Agencies: The Full Technical Report 在 Steam 上购买 FriedrichAI: Offline AI 立省 10% GitHub - inevolin/resume-cli: Hit Claude usage limits? Resume any AI coding session elsewhere. Switch tools at zero friction. GitHub - atripati/ark: AI Runtime Kernel — a context operating system for AI agents. Eliminates tool bloat, loads only what’s needed, and gives LLMs their reasoning space back. How to Build a Secure AI PR Reviewer with Claude, GitHub Actions, and JavaScript This Startup Wants You to Pay Up to Talk With AI Versions of Human Experts Intel Arc Pro B70 Brings 32GB VRAM to Local AI for $949 WordPress 7.0: The Good, the AI, and the Still Missing AI on the couch: Anthropic gives Claude 20 hours of psychiatry IatroBench: Pre-Registered Evidence of Iatrogenic Harm from AI Safety Measures AI Agents Know About Supabase. They Don't Always Use It Right. The history and future of AI at Google, with Sundar Pichai Inside an AI‑enabled device code phishing campaign How Meta Used AI to Map Tribal Knowledge in Large-Scale Data Pipelines AI for Systems: Using LLMs to Optimize Database Query Execution Forecasting the Economic Effects of AI Introducing Tinker: Play with AI, bring your ideas to life AI sheds light on an ancient gaming mystery People really hate AI but not as much as Iran—or Democrats | Fortune What is an AI Product Engineer? Phoebe Gates wants her $185 million AI startup to succeed with 'no ties to my privilege or my last name': 'I have a chip on my shoulder' | Fortune
GitHub - mlguyYT/AgentCrew: AgentCrew is a Markdown workflow for coordinating AI agent teams with roles, playbooks, skills, handoffs, and human approval gates.
mhjafari92 · 2026-06-08 · via Hacker News - Newest: "AI"

Turn your coding agent into a disciplined team.

AgentCrew is a conversation-first, Markdown-first methodology for agentic coding. Your existing coding agent — Claude Code, Codex, Cursor, OpenClaw, Hermes, or another compatible assistant — loads it as guidance and uses it to work through software tasks with roles, routing, handoffs, quality gates, and human approval.

You do not change how you work. You keep talking to your agent. AgentCrew gives that chat a team process underneath.

The methodology is mostly Markdown and shell. The optional engine is the executable layer host agents can call behind the scenes when automatic multi-agent execution is useful.

AgentCrew is not a daemon. It is not a replacement for CI. It is not a magical autonomous engineer. It is a practical operating system for coding agents.


The problem

A single coding-agent session is usually one context doing every job: scoping, implementing, testing, reviewing, documenting, and sometimes pretending it can approve the work it just wrote.

That is not how good software teams work.

The same model that wrote the bug should not be the only reviewer of the bug. The same chat that guessed an API should not be the final authority that the API is correct. A risky authentication change should not be treated like a typo fix. A refactor should not silently expand across unrelated parts of the codebase.

Most teams try to fix this with bigger prompts or “be careful” notes in CLAUDE.md, AGENTS.md, or editor rules. That helps a little, but the agent can still tunnel-vision, skip tests, lose context, make unrelated edits, or leave humans with a giant diff that is hard to trust.

AgentCrew exists to give coding agents a process before they touch the code.


Why we built this

We built AgentCrew after repeatedly running into the same problem with coding agents: they can write code fast, but they do not naturally follow a disciplined development cycle.

Every serious change needs more than implementation. The agent should understand the task, pick the right context, use the right skills, write or update tests, verify that those tests actually work, document the change, and prepare something a human can review.

Without that structure, we found ourselves repeating the same instructions again and again:

  • write the tests;
  • run the tests;
  • check the edge cases;
  • document what changed;
  • do not merge;
  • do not make unrelated edits;
  • do not skip the review.

The failure mode is not theoretical. We have seen agent-assisted refactors create messy changes across a codebase, miss important context, and leave humans with days of cleanup. In one case, a refactor that should have been controlled ended up breaking enough pieces that fixing it manually took about a week. The problem was not that the model was useless. The problem was that it had no real process, no specialized role, no skill boundary, and no serious review gate.

We tried bigger prompts, project rules, internal Codex workflows, prompt stacks, and command-based approaches. Some helped. But they still required too much manual steering, especially when we wanted the agent itself to recognize when a task needed planning, testing, review, security attention, or a human decision.

AgentCrew is the system we wanted: not a magical autopilot, and not a replacement for developer judgment. It is a disciplined methodology for agentic coding — roles, skills, routing, handoffs, quality gates, memory, and approval boundaries — so coding agents become easier to trust, easier to review, and more useful in real development work.


What you actually experience

You ask your normal coding agent for an outcome:

Add Google OAuth login to the signup page.

With AgentCrew loaded, the agent does not jump straight into editing files. It first follows the methodology:

  1. Classify the request
    A pure-bash classifier can identify the task type, risk level, lane, likely role, relevant skills, and quality gates.

  2. Pick the right lane
    Simple, low-risk work can use a fast lane. Risky, multi-step, security-sensitive, or architecture-changing work uses a fuller workflow.

  3. Start with the right role
    The agent may begin as an Advisor or Product Manager to clarify scope and acceptance criteria before implementation.

  4. Confirm direction and estimate cost For work that will spend meaningful model tokens, AgentCrew can surface an estimated cost before execution starts.

  5. Plan and dispatch the work After the user confirms the direction, AgentCrew prepares the work and can let the required agents run through the host agent or optional engine. The user should not need to run AgentCrew commands manually.

  6. Implement as Developer The Developer role focuses on minimal, relevant changes. It must avoid unrelated edits, hidden failures, unsafe commands, and premature merge decisions.

  7. Check as Tester The Tester role focuses on verification. It should run or propose the right tests and report what passed, failed, or could not be checked.

  8. Review as Reviewer or Security Reviewer Risky code paths, authentication, authorization, payments, migrations, secrets, and infrastructure changes get stricter review guidance.

  9. Produce a handoff The final output is not just “done.” It should include what changed, what was tested, what risks remain, and what needs human approval.

  10. Stop at the human gate AgentCrew does not treat the agent as the final approver. A human still decides what lands.

You stay in your normal agent chat. AgentCrew gives that chat a routing system, role instructions, handoff formats, state artifacts, and approval gates, so the work follows a team process instead of one long unstructured session.


Install

Clone AgentCrew somewhere outside your project:

git clone https://github.com/mlguyYT/AgentCrew ~/AgentCrew

Register AgentCrew with your host agent:

~/AgentCrew/bin/agentcrew install

Verify the setup:

~/AgentCrew/bin/agentcrew doctor

Then open your normal coding agent and start working as usual.

AgentCrew installs a small loader block into your host-agent instruction file, such as:

~/.claude/CLAUDE.md
~/.codex/AGENTS.md
~/.hermes/SOUL.md

The loader points the host agent to the AgentCrew methodology. Your project does not need a new runtime dependency.


What is in the box

agent-team/
├─ agents/              Role definitions such as Advisor, PM, Developer,
│                       Tester, Reviewer, Security Reviewer, UX Reviewer,
│                       Documentation Agent, and more
│
├─ tools/               CLI helpers, including the pure-bash task classifier
│
├─ playbooks/           How to route tasks, handle gates, prepare PRs,
│                       manage rework, and save useful memory
│
├─ recipes/             Workflow recipes for features, bug fixes, refactors,
│                       migrations, reviews, security-sensitive work, and more
│
├─ protocols/           Handoff format, state artifacts, approval boundaries,
│                       and token-discipline rules
│
├─ context/             Route index and lane-specific context profiles
│
├─ checklists/          Pre-merge readiness, review checks, memory refreshes,
│                       and other quality controls
│
├─ templates/           Task briefs, work plans, compact handoffs, review
│                       reports, PR descriptions, and session summaries
│
└─ skills/              Technical and professional skills that can be loaded
                        only when relevant

bin/agentcrew           install, doctor, status, classify, context, start,
                        brief, plan, ready, pr-pack, checkpoint, save-session,
                        restore-session, detect-project, preset

engine/                 optional executable layer for host-agent orchestration,
                        cost previews, and multi-agent execution

The methodology is Markdown.
The classifier and setup helpers are shell scripts.
There is no daemon and no required runtime inside your project.


Fast Lane vs Full Lane

Not every task needs a heavy workflow.

AgentCrew separates work into lanes so the agent does not over-process simple tasks or under-process risky ones.

Fast Lane

Used for small, low-risk work:

  • typo fixes;
  • small documentation updates;
  • simple tests;
  • minor localized changes;
  • straightforward explanations;
  • low-risk cleanup.

The goal is speed with basic discipline.

Full Lane

Used for work that needs stronger control:

  • authentication or authorization changes;
  • payment logic;
  • database migrations;
  • security-sensitive code;
  • infrastructure changes;
  • large refactors;
  • production-risky behavior;
  • unclear requirements;
  • multi-file or multi-phase implementation.

The goal is safer execution, clearer handoffs, and better review.


Roles

AgentCrew gives your coding agent role-specific instructions instead of asking one generic chat to do everything.

Common roles include:

  • Advisor — explains, guides, and helps reason before implementation.
  • Product Manager — clarifies scope, user value, acceptance criteria, and tradeoffs.
  • Developer — implements focused changes with minimal unrelated edits.
  • Tester — verifies behavior and reports what was tested.
  • Reviewer — reviews the implementation for correctness, maintainability, and risk.
  • Security Reviewer — checks sensitive paths such as auth, permissions, secrets, and unsafe operations.
  • UX Reviewer — reviews user-facing behavior and interaction quality.
  • Documentation Agent — updates or reviews documentation, examples, and usage notes.
  • Release Manager — helps prepare release notes, readiness checks, and release handoffs.

The point is not to pretend there are separate humans. The point is to make the agent use different constraints for different phases of work.


Project-local discipline

AgentCrew can keep project-local working state in .agent-state/.

That state may include:

.agent-state/
├─ current-task.md
├─ work-plan.md
├─ human-decisions.md
├─ handoff.md
├─ test-report.md
├─ review-report.md
├─ pr-pack.md
└─ session-checkpoints/

This gives the agent a controlled memory surface for the current project.

The goal is not to store everything. The goal is to preserve the important parts:

  • what the task is;
  • what decisions were already made;
  • what is in scope;
  • what is out of scope;
  • what changed;
  • what was tested;
  • what still needs human approval.

Good agent memory should be compressive, not archival.


Project presets

AgentCrew can detect or configure project presets so the methodology fits the stack.

Examples:

  • Python web service;
  • TypeScript frontend;
  • Rust CLI;
  • machine-learning pipeline;
  • documentation-heavy project;
  • infrastructure repository;
  • mobile project;
  • monorepo.

A project preset can add stricter expectations, relevant skills, or extra review gates.

Project-local configuration should tighten the process. It should not remove human approval, skip required gates, or weaken core safety rules.


Safety rules

AgentCrew is built around a simple principle:

The agent can help prepare the work, but a human still owns the decision to land it.

Core rules:

  • Agents must not merge their own work.
  • Agents must not bypass branch protection.
  • Agents must not use git push --force unless a human explicitly asks and the risk is understood.
  • Agents must not hide failing tests.
  • Agents must not claim tests passed if they were not run.
  • Agents must not commit secrets.
  • Agents must not make unrelated changes.
  • Agents must not silently expand scope.
  • Agents must not treat their own review as final approval.
  • Human approval is required before landing production work.

AgentCrew cannot make an underlying model perfect. It gives the model a stricter operating process and makes failures easier to catch.


What AgentCrew is not

AgentCrew is not a replacement for your judgment.

It is also not:

  • a CI system;
  • a deployment platform;
  • a hosted service;
  • a background daemon;
  • a magical autonomous engineer;
  • a guarantee that an AI agent will always behave correctly.

AgentCrew is a methodology and tool layer that helps coding agents behave more like disciplined collaborators.

You should still review code.
You should still run tests.
You should still protect your branches.
You should still decide what gets merged.


Example workflow

A typical risky feature request might look like this:

User request:
Add Google OAuth login to the signup flow.

AgentCrew route:
- Lane: Full
- Risk: Security-sensitive
- Starting role: Product Manager
- Required roles: Developer, Tester, Security Reviewer
- Required outputs: work plan, test report, security review, human decision log

Expected flow:
1. Clarify acceptance criteria.
2. Identify affected files and auth boundaries.
3. Create a work plan.
4. Implement minimal changes.
5. Add or update tests.
6. Run verification.
7. Review security-sensitive behavior.
8. Prepare compact handoff.
9. Wait for human approval.

The agent still works in your normal development environment. AgentCrew gives it the process to follow.


CLI examples

Most users should not need these commands during daily work. They exist for setup, diagnostics, host-agent integrations, and advanced inspection.

Classify a task:

~/AgentCrew/bin/agentcrew classify "Add Google OAuth login to signup"

Check setup:

~/AgentCrew/bin/agentcrew doctor

Detect a project stack:

~/AgentCrew/bin/agentcrew detect-project

Prepare a task brief:

~/AgentCrew/bin/agentcrew brief "Fix flaky checkout test"

Prepare a PR pack:

~/AgentCrew/bin/agentcrew pr-pack

The CLI is internal plumbing for setup, inspection, routing, artifacts, and host-agent execution. Daily work still happens in your normal coding agent chat.


Why Markdown-first?

AgentCrew is Markdown-first on purpose.

Markdown is easy to read, easy to edit, easy to review, and easy for coding agents to load. It keeps the methodology transparent.

Changing how the team works should not require changing a hidden orchestration engine. In AgentCrew, roles, playbooks, skills, templates, and policies are visible files.

That makes the system easier to inspect, customize, version, and improve.


Current status

The Markdown methodology, host-agent loader, classifier, role files, playbooks, templates, and .agent-state/ artifact patterns are usable today. The optional engine is the next executable layer: it lets host agents run AgentCrew behind the scenes while preserving the same human approval boundaries.

The public contract centers on:

  • role names;
  • classifier output;
  • host-agent loader schema;
  • agent-team/ directory layout;
  • .agent-state/ artifact names;
  • core CLI commands;
  • optional engine behavior.

Roadmap

Near-term priorities:

  • stronger classifier tests;
  • clearer golden examples;
  • better setup diagnostics;
  • more project presets;
  • improved documentation;
  • stricter artifact validation;
  • end-to-end demo workflows;
  • clearer security and threat-model documentation.

Longer-term ideas:

  • hardening the optional engine execution layer;
  • stronger role isolation;
  • budget-aware execution;
  • richer project dashboards;
  • deeper integration with local and hosted coding agents.

The core principle will stay the same: AgentCrew should make coding agents more disciplined without taking final control away from humans.


Documentation


License

MIT.