Search everything...

Stats

Actions

Available In

vcp

Name: vcp
Author: z-m-huang

By Z-M-Huang

Enforce Vibe Coding Protocol standards across AI-generated codebases: audit compliance, gate commits and execution, initialize project config, validate dependencies, map test coverage, and analyze bug fixes for root cause adherence.

npx claudepluginhub z-m-huang/vcp --plugin vcp

Popularity

Stars

Top 25%

Med: 0·Avg: 285

Installs

Med: 0·Avg: 1

What's Inside

Agents1

migration-planner

/migration-planner

Audit a codebase against all VCP standards and produce a phased remediation plan. Prioritizes fixes by impact and groups them into actionable migration phases.

Skills10

vcp-audit

/vcp-audit

Run a comprehensive audit against all applicable VCP standards. Supports full audit, compliance-specific audit, and quick release readiness check.

vcp-config

/vcp-config

View and modify VCP configuration. Add or remove ignore entries, toggle scopes, manage compliance frameworks, change severity threshold, and manage exclude patterns. Supports both project config (.vcp/config.json) and global config (~/.vcp/config.json).

vcp-context

/vcp-context

Inject VCP security and architecture standards into context. Run this at session start or after context compaction so the AI internalizes rules while writing code.

vcp-coverage-gaps

/vcp-coverage-gaps

Identify untested code by mapping source files to test files. Finds functions without tests and tests missing edge case coverage.

vcp-dependency-check

/vcp-dependency-check

Verify project dependencies against VCP dependency management standards. Checks lockfile hygiene, version ranges, package existence, and suspicious packages.

Hooks1

Event Hooks

Bash

File writes

5 hooks across 4 events

Stats

Version0.3.1

ReleasedApr 5, 2026

LanguageTypeScript

Stars9

Forks3

MaintenanceExcellent

LicenseMIT

Last CommitMar 10, 2026

AddedFeb 23, 2026

Actions

View on GitHub View README Plugin Marketplace JSON

Own this plugin?

Verify ownership to unlock analytics, metadata editing, and a verified badge. GitHub access is read-only (username + org membership).

Available In

vcp8

Safety Signals

Caution

Executes bash commands

Hook triggers when Bash tool is used

Modifies files

Hook triggers on file write and edit operations

README

中文文档

VCP — Multi-AI Pipelines with Built-in Security

VCP — Vibe Coding Protocol

Multi-AI development pipelines with built-in security enforcement.

GitHub release GitHub license GitHub last commit

One AI writing and reviewing its own code is like grading your own homework. VCP orchestrates multiple AI models through structured pipelines — then enforces 41 security and quality standards with real-time blocking.

❌ VCP Security Gate — BLOCKED:
   CWE-798: Hardcoded secret detected. Use environment variables or a secret manager.

Quick Start
Three Plugins, One Protocol
Why This Matters
The Echo Chamber Problem
Dev Buddy — Multi-AI Pipeline
VCP — Three-Layer Enforcement
Standards Coverage
Organization-Wide Standards
Configuration
Core Philosophy
Documentation
How to Contribute
Repo Structure
References
License

Quick Start

Prerequisites: Claude Code and Bun. See the Getting Started guide for full setup.

# Add the VCP marketplace
/plugin marketplace add Z-M-Huang/vcp

# Install the plugin
/plugin install vcp@vcp

# Initialize your project
/vcp-init

That's it. Standards are injected at session start, dangerous patterns are blocked on every write, and 10 scanning skills are available on demand.

Docker

Prefer a containerized environment? VCP provides a ready-to-use Docker image with Claude Code, Codex CLI, Gemini CLI, and all dependencies pre-installed:

cd docker/
cp .env.example .env
# Edit .env with your API keys and host paths
docker compose up -d
docker exec -it vcp-docker bash

See docker/README.md for full setup instructions, volume mounts, and platform-specific configuration.

Three Plugins, One Protocol

VCP ships three complementary plugins:

Plugin	What It Does	Install
VCP	Standards enforcement — 41 standards, real-time blocking, 10 skills	`/plugin install vcp@vcp`
Dev Buddy	Multi-AI pipeline — configurable stages with role-based prompts, cross-model review gates, specialist analysis team	`/plugin install vcp@dev-buddy`
mcp-doc	Documentation manifest generator — indexes project docs as MCP resources with search, path-lookup, and tree-view tools	`/install vcp@mcp-doc`

Use VCP alone for standards enforcement. Add Dev Buddy when you want structured multi-AI workflows with cross-model review.

Why This Matters

AI coding assistants produce code fast. They also produce code that's 2.74x more likely to contain security vulnerabilities, 40% more complex, and architecturally unsound at scale:

View full README on GitHub

vcp

Popularity

What's Inside

Confidence

README

VCP — Vibe Coding Protocol

Table of Contents

Quick Start

Docker

Three Plugins, One Protocol

Why This Matters

Similar Plugins

fullstack-dev-skills

ecc

anthropic-essentials

godot-skills

feature-dev

prompts.chat

More by Z-M-Huang

dev-buddy

mcp-doc

cc-proficiency

VCP — Vibe Coding Protocol

Table of Contents

Quick Start

Docker

Three Plugins, One Protocol

Why This Matters

Popularity

Health & Quality

More by Z-M-Huang

dev-buddy

mcp-doc

cc-proficiency

Similar Plugins

fullstack-dev-skills

ecc

anthropic-essentials

godot-skills

feature-dev

prompts.chat