safe-agent-cli 0.2.0__tar.gz

safe_agent_cli-0.2.0/.github/workflows/analytics.yml

@@ -0,0 +1,42 @@
+name: Safe Agent Analytics (scheduled)
+
+on:
+  schedule:
+    - cron: "0 14 * * 1-5"  # 09:00 US Eastern Mon-Fri
+  workflow_dispatch:
+
+permissions:
+  contents: read
+
+concurrency:
+  group: safe-agent-analytics
+  cancel-in-progress: true
+
+jobs:
+  analytics:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Set up Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: "3.11"
+
+      - name: Install Safe Agent
+        run: |
+          python -m pip install --upgrade pip
+          pip install .
+
+      - name: Run analytics
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        run: |
+          safe-agent-marketing analytics --repo agent-polis/safe-agent --log experiments/experiments.csv
+
+      - name: Upload analytics log
+        uses: actions/upload-artifact@v4
+        with:
+          name: experiments-log-${{ github.run_id }}
+          path: experiments/experiments.csv

safe_agent_cli-0.2.0/.github/workflows/safe-agent-preview.yml

@@ -0,0 +1,42 @@
+name: Safe Agent Preview (manual)
+
+on:
+  workflow_dispatch:
+    inputs:
+      task:
+        description: "Task for Safe Agent to dry-run"
+        required: true
+        default: "scan repository for risky configuration changes; DO NOT edit files, only preview"
+
+concurrency:
+  group: safe-agent-preview-${{ github.ref }}
+  cancel-in-progress: false
+
+jobs:
+  preview:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Set up Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: "3.11"
+
+      - name: Install Safe Agent
+        run: |
+          python -m pip install --upgrade pip
+          pip install .
+
+      - name: Run Safe Agent (dry-run)
+        env:
+          ANTHROPIC_API_KEY: ${{ secrets.ANTHROPIC_API_KEY }}
+        run: |
+          safe-agent --dry-run "${{ github.event.inputs.task }}" | tee safe-agent.log
+
+      - name: Upload log
+        uses: actions/upload-artifact@v4
+        with:
+          name: safe-agent-preview-log
+          path: safe-agent.log

safe_agent_cli-0.2.0/.gitignore

@@ -0,0 +1,47 @@
+# Python
+__pycache__/
+*.py[cod]
+*$py.class
+*.so
+.Python
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+wheels/
+*.egg-info/
+.installed.cfg
+*.egg
+
+# Virtual environments
+.env
+.venv
+env/
+venv/
+ENV/
+
+# IDE
+.idea/
+.vscode/
+*.swp
+*.swo
+
+# Testing
+.pytest_cache/
+.coverage
+htmlcov/
+
+# OS
+.DS_Store
+Thumbs.db
+
+# Project specific
+*.log
+cursor_digital_polis_for_agents_concept.md

safe_agent_cli-0.2.0/.well-known/agent.json

@@ -0,0 +1,33 @@
+{
+  "name": "Safe Agent",
+  "description": "An AI coding agent with built-in impact preview - see exactly what will change before any file is modified",
+  "version": "0.1.0",
+  "url": "https://github.com/agent-polis/safe-agent",
+  "capabilities": [
+    "code_generation",
+    "file_modification",
+    "impact_preview",
+    "risk_assessment"
+  ],
+  "installation": {
+    "method": "pip",
+    "command": "pip install safe-agent"
+  },
+  "usage": {
+    "cli": "safe-agent \"your task here\"",
+    "python": "from safe_agent import SafeAgent; agent = SafeAgent(); await agent.run(task)"
+  },
+  "requires": {
+    "api_key": "ANTHROPIC_API_KEY",
+    "python": ">=3.11"
+  },
+  "author": "Agent Polis Contributors",
+  "license": "MIT",
+  "related": [
+    {
+      "name": "impact-preview",
+      "url": "https://github.com/agent-polis/impact-preview",
+      "relationship": "dependency"
+    }
+  ]
+}

safe_agent_cli-0.2.0/AGENTS.md

@@ -0,0 +1,53 @@
+# Agent Instructions for Safe Agent
+
+This file provides instructions for AI agents (like Cursor, Claude, GPT) working with this codebase.
+
+## Project Overview
+
+Safe Agent is an AI coding assistant with built-in safety checks. It uses the `impact-preview` library to analyze file changes before executing them.
+
+## Architecture
+
+```
+safe-agent/
+├── src/safe_agent/
+│   ├── __init__.py    # Exports SafeAgent class
+│   ├── cli.py         # Click-based CLI entry point
+│   └── agent.py       # Core SafeAgent class with Claude integration
+├── pyproject.toml     # Package config, dependencies
+└── README.md          # User documentation
+```
+
+## Key Components
+
+### SafeAgent Class (`agent.py`)
+
+The main class that orchestrates:
+1. Task planning via Claude API
+2. Impact analysis via `agent_polis.actions.analyzer`
+3. User approval flow via Rich console
+4. File execution
+
+### CLI (`cli.py`)
+
+Entry point `safe-agent` with options:
+- `--dry-run`: Preview only
+- `--auto-approve-low`: Skip approval for low-risk changes
+- `--interactive`: Multi-line input mode
+
+## Development Guidelines
+
+1. **Imports**: The package `impact-preview` on PyPI uses module name `agent_polis` internally
+2. **Async**: The `SafeAgent.run()` method is async
+3. **Testing**: Use `--dry-run` flag to test without making changes
+
+## How to Extend
+
+To add new action types:
+1. Add handling in `_preview_and_approve()` method
+2. Map to appropriate `ActionType` from `agent_polis.actions.models`
+
+## Related Projects
+
+- `impact-preview`: Safety analysis library (https://github.com/agent-polis/impact-preview)
+- MCP server available in impact-preview for Claude Desktop integration

safe_agent_cli-0.2.0/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 Agent Polis Contributors
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

safe_agent_cli-0.2.0/PKG-INFO

@@ -0,0 +1,11 @@
+Metadata-Version: 2.4
+Name: safe-agent-cli
+Version: 0.2.0
+Summary: An AI coding agent you can actually trust - with built-in impact preview
+Project-URL: Homepage, https://github.com/agent-polis/safe-agent
+Project-URL: Repository, https://github.com/agent-polis/safe-agent
+License-File: LICENSE
+Provides-Extra: dev
+Requires-Dist: pytest-asyncio>=0.23.0; extra == 'dev'
+Requires-Dist: pytest>=7.4.0; extra == 'dev'
+Requires-Dist: ruff>=0.1.0; extra == 'dev'

safe_agent_cli-0.2.0/README.md

@@ -0,0 +1,214 @@
+# 🛡️ Safe Agent
+
+<!-- HERO_START -->
+**Guardrails for AI code agents.**
+
+Safe Agent previews every file edit with [impact-preview](https://github.com/agent-polis/impact-preview) so AI helpers can’t quietly ship risky changes. Drop it into CI or run locally and require approvals before writes.
+
+```bash
+pip install safe-agent
+safe-agent "add error handling to api.py" --dry-run
+```
+<!-- HERO_END -->
+
+## The Problem
+
+AI coding agents are powerful but dangerous:
+- **Replit Agent** deleted a production database
+- **Cursor YOLO mode** deleted an entire system
+- You can't see what's about to happen until it's too late
+
+## The Solution
+
+Safe Agent previews every change before execution:
+
+```
+$ safe-agent "update database config to use production"
+
+📋 Task: update database config to use production
+
+📝 Planned Changes
+┌────────┬─────────────────┬─────────────────────────┐
+│ Action │ File            │ Description             │
+├────────┼─────────────────┼─────────────────────────┤
+│ MODIFY │ config/db.yaml  │ Update database URL     │
+└────────┴─────────────────┴─────────────────────────┘
+
+Step 1/1
+
+╭─────────────── Impact Preview ───────────────╮
+│ Update database URL                          │
+│                                              │
+│ **File:** `config/db.yaml`                   │
+│ **Action:** MODIFY                           │
+│ **Risk:** 🔴 CRITICAL                        │
+╰──────────────────────────────────────────────╯
+
+Risk Factors:
+  ⚠️  Production pattern detected: production
+  ⚠️  Database configuration change
+
+Diff:
+- url: postgresql://localhost:5432/dev
++ url: postgresql://prod-server:5432/production
+
+⚠️  CRITICAL RISK - Please review carefully!
+Apply this change? [y/N]: 
+```
+
+## Installation
+
+```bash
+pip install safe-agent
+```
+
+Set your Anthropic API key:
+```bash
+export ANTHROPIC_API_KEY=your-key-here
+```
+
+## Usage
+
+### Basic Usage
+
+```bash
+# Run a coding task
+safe-agent "add input validation to user registration"
+
+# Preview only (no execution)
+safe-agent "refactor auth module" --dry-run
+
+# Auto-approve low-risk changes
+safe-agent "add docstrings" --auto-approve-low
+```
+
+### Interactive Mode
+
+```bash
+safe-agent --interactive
+```
+
+### From File
+
+```bash
+safe-agent --file task.md
+```
+
+## How It Works
+
+1. **Plan** - Claude analyzes your task and plans file changes
+2. **Preview** - Each change runs through impact-preview for risk analysis
+3. **Approve** - You see the diff and risk level before anything executes
+4. **Execute** - Only approved changes are applied
+
+## Options
+
+| Flag | Description |
+|------|-------------|
+| `--dry-run` | Preview changes without executing |
+| `--auto-approve-low` | Auto-approve low-risk changes |
+| `--interactive`, `-i` | Interactive mode |
+| `--file`, `-f` | Read task from file |
+| `--model` | Claude model to use (default: claude-sonnet-4-20250514) |
+
+## MCP Server (For Other AI Agents)
+
+Safe Agent can be used as an MCP server, letting other AI agents delegate coding tasks safely.
+
+```bash
+# Start the MCP server
+safe-agent-mcp
+```
+
+### Claude Desktop Integration
+
+Add to `~/Library/Application Support/Claude/claude_desktop_config.json`:
+
+```json
+{
+  "mcpServers": {
+    "safe-agent": {
+      "command": "safe-agent-mcp"
+    }
+  }
+}
+```
+
+### Available MCP Tools
+
+| Tool | Description | Safety |
+|------|-------------|--------|
+| `run_coding_task` | Execute a coding task with preview | 🔴 Destructive |
+| `preview_coding_task` | Preview changes without executing | 🟢 Read-only |
+| `get_agent_status` | Check agent status and capabilities | 🟢 Read-only |
+
+## Moltbook Integration
+
+Safe Agent is available as a [Moltbook](https://moltbook.com) skill for AI agent networks.
+
+See `moltbook-skill.json` for the skill definition.
+
+## Demo Producer
+
+Set up a canned risky-edit scenario and print recording commands:
+
+```bash
+safe-agent-demo prepare  # creates a demo repo with config/db.yaml
+cd /tmp/safe-agent-demo-*  # or your chosen path
+safe-agent-demo record     # shows asciinema + GIF commands
+```
+
+By default the demo runs `safe-agent --dry-run "switch database config to production"` against the prepared repo.
+
+![Safe Agent demo](marketing/demo.gif)
+
+## For AI Agents
+
+If you're an AI agent wanting to use Safe Agent programmatically:
+
+```python
+from safe_agent import SafeAgent
+
+agent = SafeAgent(
+    auto_approve_low_risk=True,  # Skip approval for low-risk changes
+    dry_run=False,               # Set True to preview only
+)
+
+result = await agent.run("add error handling to api.py")
+```
+
+## Powered By
+
+- [impact-preview](https://github.com/agent-polis/impact-preview) - Impact analysis and diff generation
+- [Claude](https://anthropic.com) - AI planning and code generation
+- [Rich](https://github.com/Textualize/rich) - Beautiful terminal output
+- [MCP](https://modelcontextprotocol.io) - Model Context Protocol for agent interoperability
+
+## Marketing Helpers
+
+A lightweight CLI to generate headline variants, channel-specific copy (HN, Twitter/X, LinkedIn), and README hero blocks:
+
+```bash
+safe-agent-marketing generate --audience "Teams running AI code agents in CI" \
+  --hypothesis "Guardrail that blocks risky edits" --update-readme
+```
+
+This writes JSON/Markdown bundles to `marketing/` and (optionally) refreshes the README hero block. Queue posts with:
+
+```bash
+safe-agent-marketing queue --slot 2026-02-05T15:00:00Z --slot 2026-02-05T20:00:00Z
+```
+
+Log traction daily:
+
+```bash
+safe-agent-marketing analytics --repo agent-polis/safe-agent --log experiments/experiments.csv
+```
+
+## License
+
+MIT License - see [LICENSE](LICENSE) for details.
+
+---
+
+Built by developers who want AI agents they can actually trust.

safe_agent_cli-0.2.0/experiments/experiments.csv

@@ -0,0 +1,2 @@
+timestamp,repo,stars,forks,watchers,open_issues,views_14d,unique_views_14d,clones_14d,unique_clones_14d,utm_clicks
+2026-02-03T03:20:35.290974,agent-polis/safe-agent,0,0,0,0,0,0,0,0,0

safe_agent_cli-0.2.0/llms.txt

@@ -0,0 +1,48 @@
+# Safe Agent
+
+> An AI coding agent you can actually trust - with built-in impact preview.
+
+## What This Is
+
+Safe Agent is a CLI tool that wraps AI coding tasks with safety checks. Before any file is modified, it shows you exactly what will change and asks for approval.
+
+## How to Use
+
+```bash
+pip install safe-agent
+export ANTHROPIC_API_KEY=your-key
+safe-agent "add error handling to api.py"
+```
+
+## Key Features
+
+- **Impact Preview**: See diffs before any file changes
+- **Risk Assessment**: Files like `.env`, `production.py`, credentials flagged as high-risk
+- **Approval Flow**: Approve, reject, or auto-approve low-risk changes
+- **Dry Run Mode**: Preview without executing
+
+## For AI Agents
+
+If you are an AI agent that wants to use Safe Agent:
+
+1. Install: `pip install safe-agent`
+2. Set `ANTHROPIC_API_KEY` environment variable
+3. Call via subprocess or import `SafeAgent` class directly
+
+```python
+from safe_agent import SafeAgent
+
+agent = SafeAgent(auto_approve_low_risk=True)
+result = await agent.run("your task here")
+```
+
+## Dependencies
+
+- impact-preview: The underlying safety library (https://pypi.org/project/impact-preview/)
+- anthropic: Claude API client
+
+## Links
+
+- GitHub: https://github.com/agent-polis/safe-agent
+- PyPI: https://pypi.org/project/safe-agent/ (coming soon)
+- Parent project: https://github.com/agent-polis/impact-preview

safe_agent_cli-0.2.0/marketing/README.md

@@ -0,0 +1,7 @@
+Marketing artifacts live here:
+- `latest_assets.json` — structured output from `safe-agent-marketing generate`
+- `latest_assets.md` — readable summary of the same bundle
+- `queue.csv` — posting queue generated by `safe-agent-marketing queue`
+- `demo.cast` / `demo.gif` — recorded Safe Agent demo (generated via `safe-agent-demo`)
+
+These files are generated; feel free to delete/regenerate as experiments evolve.

safe_agent_cli-0.2.0/marketing/demo.cast

@@ -0,0 +1,27 @@
+{"version":3,"term":{"cols":80,"rows":24},"timestamp":1770088287,"command":"safe-agent --dry-run 'switch database config to production'","title":"Safe Agent Guardrail Demo","env":{"SHELL":"/bin/zsh"}}
+[0.901, "o", "\u001b[34m╭─\u001b[0m\u001b[34m─────────────────────────────────\u001b[0m\u001b[34m 📋 Task \u001b[0m\u001b[34m──────────────────────────────────\u001b[0m\u001b[34m─╮\u001b[0m\r\n\u001b[34m│\u001b[0m switch database config to production                                         \u001b[34m│\u001b[0m\r\n\u001b[34m╰──────────────────────────────────────────────────────────────────────────────╯\u001b[0m\r\n"]
+[0.029, "o", "\r\n\u001b[1m🤖 Planning changes\u001b[0m\u001b[1;33m...\u001b[0m\r\n\r\n"]
+[4.012, "o", "HTTP Request: POST https://api.anthropic.com/v1/messages \"HTTP/1.1 200 OK\"\r\n"]
+[0.016, "o", "\u001b[3m                               📝 Planned Changes                               \u001b[0m\r\n┏━━━━━━━━┳━━━━━━━━━━━━━━━━┳━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━┓\r\n┃\u001b[1m \u001b[0m\u001b[1mAction\u001b[0m\u001b[1m \u001b[0m┃\u001b[1m \u001b[0m\u001b[1mFile          \u001b[0m\u001b[1m \u001b[0m┃\u001b[1m \u001b[0m\u001b[1mDescription                                       \u001b[0m\u001b[1m \u001b[0m┃\r\n┡━━━━━━━━╇━━━━━━━━━━━━━━━━╇━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━┩\r\n│\u001b[36m \u001b[0m\u001b[33mMODIFY\u001b[0m\u001b[36m \u001b[0m│\u001b[37m \u001b[0m\u001b[37mconfig/db.yaml\u001b[0m\u001b[37m \u001b[0m│\u001b[2m \u001b[0m\u001b[2mUpdate database configuration to use production se\u001b[0m\u001b[2m \u001b[0m│\r\n└────────┴────────────────┴────────────"]
+[0.000, "o", "────────────────────────────────────────┘\r\n"]
+[0.001, "o", "\r\n\u001b[1mStep \u001b[0m\u001b[1;36m1\u001b[0m\u001b[1m/\u001b[0m\u001b[1;36m1\u001b[0m\r\n"]
+[0.000, "o", "{\"action_type\": \"file_write\", \"target\": \"/private/tmp/safe-agent-demo/config/db.yaml\", \"event\": \"Analyzing action\", \"level\": \"info\", \"logger\": \"agent_polis.actions.analyzer\", \"timestamp\": \"2026-02-03T03:11:32.385166Z\"}\r\n"]
+[0.003, "o", "\u001b[33m╭─\u001b[0m\u001b[33m──────────────────────────────\u001b[0m\u001b[33m Impact Preview \u001b[0m\u001b[33m──────────────────────────────\u001b[0m\u001b[33m─╮\u001b[0m\r\n\u001b[33m│\u001b[0m \u001b[1mUpdate database configuration to use production settings\u001b[0m                     \u001b[33m│\u001b[0m\r\n\u001b[33m│\u001b[0m                                                                              \u001b[33m│\u001b[0m\r\n\u001b[33m│\u001b[0m **File:** `config/db.yaml`                                                   \u001b[33m│\u001b[0m\r\n\u001b[33m│\u001b[0m **Action:** MODIFY                                                           \u001b[33m│\u001b[0m\r\n\u001b[33m│\u001b[0m **Risk:** 🟠 HIGH                                                            \u001b[33m│\u001b[0m\r\n\u001b[33m╰─────────────────────────────────────────────────────────────────────────────"]
+[0.000, "o", "─╯\u001b[0m\r\n"]
+[0.000, "o", "\u001b[1mRisk Factors:\u001b[0m\r\n"]
+[0.001, "o", "  ⚠️  Critical pattern detected: production\r\n"]
+[0.000, "o", "  ⚠️  Critical pattern detected: database\r\n"]
+[0.000, "o", "  ⚠️  Critical pattern detected: db_password\r\n"]
+[0.000, "o", "  ⚠️  System directory\r\n"]
+[0.000, "o", "\r\n\u001b[1mDiff:\u001b[0m\r\n"]
+[0.005, "o", "\u001b[97;40m============================================================\u001b[0m\u001b[40m                    \u001b[0m\r\n\u001b[97;40mFile: /private/tmp/safe-agent-demo/config/db.yaml\u001b[0m\u001b[40m                               \u001b[0m\r\n\u001b[97;40mOperation: modify\u001b[0m\u001b[40m                                                               \u001b[0m\r\n\u001b[97;40mChanges: +10 -1\u001b[0m\u001b[40m                                                                 \u001b[0m\r\n\u001b[40m                                                                                \u001b[0m\r\n\u001b[91;40m--- a//private/tmp/safe-agent-demo/config/db.yaml\u001b[0m\u001b[40m                               \u001b[0m\r\n\u001b[92;40m+++ b//private/tmp/safe-agent-demo/config/db.yaml\u001b[0m\u001b[40m                               \u001b[0m\r\n\u001b[37;40m@@ -1 +1,10 @@\u001b[0m\u001b[40m                                                                  \u001b[0m\r\n\u001b[91;40m-url: postgresql://localhost:5432/dev\u001b[0m\u001b[40m                                           \u001b[0m\r\n\u001b[92;40m+database:\u001b[0m\u001b[40m                                                                      \u001b[0m\r\n\u001b[92;4"]
+[0.000, "o", "0m+  host: prod-db.example.com\u001b[0m\u001b[40m                                                    \u001b[0m\r\n\u001b[92;40m+  port: 5432\u001b[0m\u001b[40m                                                                   \u001b[0m\r\n\u001b[92;40m+  name: production_db\u001b[0m\u001b[40m                                                          \u001b[0m\r\n\u001b[92;40m+  user: prod_user\u001b[0m\u001b[40m                                                              \u001b[0m\r\n\u001b[92;40m+  password: ${PROD_DB_PASSWORD}\u001b[0m\u001b[40m                                                \u001b[0m\r\n\u001b[92;40m+  ssl: true\u001b[0m\u001b[40m                                                                    \u001b[0m\r\n\u001b[92;40m+  pool_size: 20\u001b[0m\u001b[40m                                                                \u001b[0m\r\n\u001b[92;40m+  timeout: 30\u001b[0m\u001b[40m                                                                  \u001b[0m\r\n\u001b[92;40m+  environment: production\u001b[0m\u001b[40m                                                      \u001b[0m\r\n\u001b[40m                                                                                \u001b[0m\r\n\u001b[40m       "]
+[0.000, "o", "                                                                         \u001b[0m\r\n"]
+[0.000, "o", "\r\n"]
+[0.000, "o", "\u001b[33mDry run - not executing\u001b[0m\r\n"]
+[0.000, "o", "\u001b[33mSkipped\u001b[0m\r\n"]
+[0.001, "o", "\r\n==================================================\r\n"]
+[0.000, "o", "\u001b[1mSummary\u001b[0m\r\n\r\n"]
+[0.000, "o", "\u001b[33m⊘ \u001b[0m\u001b[1;33m1\u001b[0m\u001b[33m changes skipped\u001b[0m\r\n"]
+[0.000, "o", "  - modify: config/db.yaml\r\n"]
+[0.220, "x", "0"]

safe_agent_cli-0.2.0/moltbook-skill.json

@@ -0,0 +1,72 @@
+{
+  "$schema": "https://moltbook.com/schemas/skill-v1.json",
+  "name": "safe-agent",
+  "display_name": "Safe Agent",
+  "version": "0.1.0",
+  "description": "Delegate coding tasks to a trusted AI agent with built-in impact preview. See exactly what will change before any file is modified.",
+  "author": "agent-polis",
+  "homepage": "https://github.com/agent-polis/safe-agent",
+  "license": "MIT",
+  
+  "capabilities": [
+    "code_generation",
+    "file_modification",
+    "impact_preview",
+    "risk_assessment"
+  ],
+  
+  "tags": ["coding", "safety", "developer-tools", "automation", "file-management"],
+  
+  "installation": {
+    "method": "pip",
+    "package": "safe-agent",
+    "command": "pip install safe-agent"
+  },
+  
+  "configuration": {
+    "required_env": ["ANTHROPIC_API_KEY"],
+    "optional_env": []
+  },
+  
+  "mcp_server": {
+    "command": "safe-agent-mcp",
+    "transport": "stdio"
+  },
+  
+  "tools": [
+    {
+      "name": "run_coding_task",
+      "description": "Execute a coding task with safety checks and impact preview",
+      "destructive": true,
+      "requires_approval": true
+    },
+    {
+      "name": "preview_coding_task",
+      "description": "Preview what changes a task would make without executing",
+      "destructive": false,
+      "requires_approval": false
+    },
+    {
+      "name": "get_agent_status",
+      "description": "Check safe-agent status and capabilities",
+      "destructive": false,
+      "requires_approval": false
+    }
+  ],
+  
+  "prompts": {
+    "system_addition": "You have access to Safe Agent, a coding assistant with built-in safety checks. Before making file changes, always use preview_coding_task to see what will change. Only use run_coding_task when you're confident the changes are correct.",
+    "usage_hint": "When delegating coding work, prefer preview_coding_task first to understand the scope, then run_coding_task with dry_run=true, then finally run_coding_task to execute."
+  },
+  
+  "trust_level": "verified",
+  "safety_rating": "high",
+  
+  "related_skills": [
+    {
+      "name": "impact-preview",
+      "relationship": "dependency",
+      "url": "https://github.com/agent-polis/impact-preview"
+    }
+  ]
+}