by a5c-ai
Babysitter enforces obedience on agentic workforces and enables them to manage extremely complex tasks and workflows through deterministic, hallucination-free self-orchestration
# Add to your Claude Code skills
git clone https://github.com/a5c-ai/babysitterLast scanned: 5/7/2026
{
"issues": [
{
"type": "npm-audit",
"message": "@aws-sdk/xml-builder: Vulnerability found",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "@hono/node-server: @hono/node-server: Middleware bypass via repeated slashes in serveStatic",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "@next/eslint-plugin-next: Vulnerability found",
"severity": "high"
},
{
"type": "npm-audit",
"message": "@vitest/coverage-v8: Vulnerability found",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "@vitest/mocker: Vulnerability found",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "ajv: ajv has ReDoS when using `$data` option",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "basic-ftp: basic-ftp: Incomplete CRLF Injection Protection Allows Arbitrary FTP Command Execution via Credentials and MKD Commands",
"severity": "high"
},
{
"type": "npm-audit",
"message": "brace-expansion: brace-expansion: Zero-step sequence causes process hang and memory exhaustion",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "esbuild: esbuild enables any website to send any requests to the development server and read the response",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "eslint-config-next: Vulnerability found",
"severity": "high"
},
{
"type": "npm-audit",
"message": "express-rate-limit: Vulnerability found",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "fast-xml-parser: fast-xml-parser XMLBuilder: XML Comment and CDATA Injection via Unescaped Delimiters",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "flatted: flatted vulnerable to unbounded recursion DoS in parse() revive phase",
"severity": "high"
},
{
"type": "npm-audit",
"message": "glob: glob CLI: Command injection via -c/--cmd executes matches with shell:true",
"severity": "high"
},
{
"type": "npm-audit",
"message": "hono: Hono missing validation of cookie name on write path in setCookie()",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "ip-address: ip-address has XSS in Address6 HTML-emitting methods",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "lodash: lodash vulnerable to Code Injection via `_.template` imports key names",
"severity": "high"
},
{
"type": "npm-audit",
"message": "minimatch: minimatch has a ReDoS via repeated wildcards with non-matching literal in pattern",
"severity": "high"
},
{
"type": "npm-audit",
"message": "next: Next.js self-hosted applications vulnerable to DoS via Image Optimizer remotePatterns configuration",
"severity": "high"
},
{
"type": "npm-audit",
"message": "path-to-regexp: path-to-regexp vulnerable to Denial of Service via sequential optional groups",
"severity": "high"
},
{
"type": "npm-audit",
"message": "picomatch: Picomatch: Method Injection in POSIX Character Classes causes incorrect Glob Matching",
"severity": "high"
},
{
"type": "npm-audit",
"message": "postcss: PostCSS has XSS via Unescaped </style> in its CSS Stringify Output",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "protobufjs: Arbitrary code execution in protobufjs",
"severity": "critical"
},
{
"type": "npm-audit",
"message": "vite: Vite Vulnerable to Path Traversal in Optimized Deps `.map` Handling",
"severity": "high"
},
{
"type": "npm-audit",
"message": "vite-node: Vulnerability found",
"severity": "medium"
},
{
"type": "npm-audit",
"message": "vitest: Vulnerability found",
"severity": "medium"
}
],
"status": "FAILED",
"scannedAt": "2026-05-07T06:35:11.433Z",
"semgrepRan": false,
"npmAuditRan": true,
"pipAuditRan": true
}babysitter is an open-source ai agents skill for AI coding assistants such as Claude Code, Codex CLI, and ChatGPT, built by a5c-ai. Babysitter enforces obedience on agentic workforces and enables them to manage extremely complex tasks and workflows through deterministic, hallucination-free self-orchestration. It has 1,518 GitHub stars.
babysitter failed SkillsLLM's automated security scan, which flagged one or more high-severity issues. Review the Security Report section carefully before using it.
Clone the repository with "git clone https://github.com/a5c-ai/babysitter" and add it to your Claude Code skills directory (see the Installation section above).
babysitter is primarily written in JavaScript. It is open-source under a5c-ai on GitHub, so you can review or fork the full source.
Yes. SkillsLLM lists many other AI Agents skills you can browse and compare side by side. Open the AI Agents category from the badge at the top of this page, or use the Related Skills and comparison links further down to weigh babysitter against similar tools.
No comments yet. Be the first to share your thoughts!
Requires a passing catalog security scan. Resolve the flagged issues and resubmit to enable featuring.
Enforce obedience on agentic workforces. Manage extremely complex workflows through deterministic, hallucination-free self-orchestration.
Getting Started | Documentation | Community
https://github.com/user-attachments/assets/8c3b0078-9396-48e8-aa43-5f40da30c20b
Babysitter enforces obedience to agentic workforces, enabling them to manage extremely complex tasks and workflows through deterministic, hallucination-free self-orchestration. Define your workflow in code - Babysitter enforces every step, ensures quality gates pass before progression, requires human approval at breakpoints, and records every decision in an immutable journal. Your agents do exactly what the process permits, nothing more.
As of v6, Babysitter is harness-agnostic via its Adapters runtime: the same processes run across the 12 supported AI coding harnesses, so you are not locked to a single tool. See Adapters and the harness install matrix.
adapters CLI pins a slightly higher floor of 20.9.0+.Babysitter v6 has two install tracks that should not be conflated: the host-side adapters CLI for running any harness directly from your shell, and the in-session per-harness plugin for driving full orchestration runs from inside your harness. Most people want both. The package split is:
@a5c-ai/babysitter is the recommended end-user install for the main babysitter CLI.@a5c-ai/adapters-cli provides the host-side adapters CLI (Node >=20.9.0) for running and managing any supported harness from your shell. See the Adapters CLI reference.@a5c-ai/babysitter-sdk is the public SDK/library package and the underlying implementation behind the core CLI.@a5c-ai/genty-platform is the optional runtime CLI for genty call, resume, start-server, tui, and other orchestration/runtime commands.@a5c-ai/babysitter-codex or @a5c-ai/babysitter-cursor integrate Babysitter into a specific host tool. They do not replace the core CLI packages.For most users, install the main CLI first:
npm install -g @a5c-ai/babysitter
Prefer to drive a harness directly from your shell instead of from inside a session? Install the host-side adapters CLI and run any supported harness with one command — see the Adapters CLI reference:
npm install -g @a5c-ai/adapters-cli
adapters doctor
adapters run claude "explain this codebase"
Babysitter supports the 12 AI coding harnesses listed in the install matrix. Install the plugin for your harness of choice; the two fully-worked harnesses have dedicated pages — Claude Code and Codex.
In this repository, plugins/babysitter-unified is the only maintained plugin source; harness-specific bundles are generated during build/release and are not committed:
Native marketplace install:
claude plugin marketplace add a5c-ai/babysitter-claude
claude plugin install --scope user babysitter@a5c.ai
Restart Claude Code, then type /skills to verify "babysit" appears.
Claude Cowork can install the same plugin. For a personal install from this repo's Claude marketplace:
Cowork tab.Customize in the left sidebar.Browse plugins.Personal.+, then choose Add marketplace from GitHub.https://github.com/a5c-ai/babysitter.Babysitter plugin from that marketplace.For Team and Enterprise org-managed installs, owners can add plugins through
Organization settings > Plugins. GitHub-synced organization marketplaces
require a private or internal GitHub repository, so use a private/internal fork
of this repo for that flow, or upload plugin ZIPs manually.
Official marketplace install:
codex plugin marketplace add a5c-ai/babysitter
Via the Cursor marketplace or the SDK helper:
babysitter harness:install-plugin cursor
babysitter harness:install-plugin gemini-cli
Via the GitHub Copilot CLI marketplace, or:
babysitter harness:install-plugin github-copilot
babysitter harness:install-plugin pi
babysitter harness:install-plugin hermes
babysitter harness:install-plugin oh-my-pi
babysitter harness:install-plugin opencode
babysitter harness:install-plugin openclaw
Babysitter ships with a built-in internal harness that runs processes programmatically without any external AI coding agent. This is useful for CI/CD pipelines, scripts, automated testing, and headless orchestration:
npm install -g @a5c-ai/genty-platform
# Run a process definition using the internal harness
genty call --harness internal --process .a5c/processes/my-process.js#process --workspace .
# Or run a free-form prompt
genty call --harness internal --prompt "run lint and tests" --workspace .
The internal harness uses the SDK's built-in Pi execution engine directly. It supports all capabilities (Programmatic, SessionBinding, StopHook, HeadlessPrompt) and requires no external AI harness CLI.
During process execution, the internal harness can delegate tasks to any discovered installed harness via the invoker. A process running under --harness internal can spawn subagent tasks that execute through Claude Code, Codex, Gemini CLI, or any other harness found on the system -- the SDK discovers available harness CLIs at runtime and routes task execution accordingly. This means you can orchestrate a multi-agent workflow from a single headless entry point, with different tasks delegated to whichever harness is best suited for them.
For the core runtime chain (@a5c-ai/babysitter-sdk, @a5c-ai/adapters, @a5c-ai/genty-core, @a5c-ai/genty-platform), use the shared workspace entrypoint from a fresh checkout:
npm ci
npm run build:runtime
build:runtime is the supported root entrypoint for release and CI validation. It builds the runtime graph in workspace order: SDK -> adapters SDK surface -> genty-core -> genty-platform.
Package-local validation is also supported:
npm run build --workspace=@a5c-ai/genty-core
npm run build --workspace=@a5c-ai/genty-platform
Those package-local builds now use tsc --build project references where the runtime packages are owned in this workspace, and they explicitly bootstrap the @a5c-ai/adapters SDK chain through the root runtime scripts. Fresh-checkout validation no longer assumes prebuilt upstream dist/ artifacts.
@a5c-ai/atlas provides the unified knowledge graph, ontology, and catalog data consumed by SDK, adapters, hooks, plugin tooling, and the catalog UI. The agent catalog surface is `@a5c-ai/atlas