gograph

Name: gograph
Author: ozgurcd

Verified

Local-only Go static analysis engine with a built-in MCP server. Gives AI coding agents deterministic structural awareness: call graphs, impact analysis, symbol search, and more.

189stars

13forks

Installation

# Add to your Claude Code skills
git clone https://github.com/ozgurcd/gograph

Getting Started

Guides for using ai agents skills like gograph.

Caveman: Cut Claude Token Use by 65%
How agent-side prompt compression works, when to use it, and when not to.
What is an AI Skills Marketplace?
Definitions, how marketplaces work, and how to choose between them in 2026.
Getting Started with AI Skills

Security ReportVerified

Last scanned: 5/30/2026

{
  "issues": [],
  "status": "PASSED",
  "scannedAt": "2026-05-30T16:08:03.872Z",
  "npmAuditRan": true,
  "pipAuditRan": true
}

README.md

Frequently Asked Questions

What is gograph?

gograph is an open-source ai agents skill for AI coding assistants such as Claude Code, Codex CLI, and ChatGPT, built by ozgurcd. Local-only Go static analysis engine with a built-in MCP server. Gives AI coding agents deterministic structural awareness: call graphs, impact analysis, symbol search, and more. It has 189 GitHub stars.

Is gograph safe to use?

Yes. gograph passed SkillsLLM's automated security scan — a dependency vulnerability audit plus prompt-injection heuristics — with no high-severity issues. You can read the full report in the Security Report section on this page.

How do I install gograph?

Clone the repository with "git clone https://github.com/ozgurcd/gograph" and add it to your Claude Code skills directory (see the Installation section above).

What programming language is gograph written in?

gograph is primarily written in Go. It is open-source under ozgurcd on GitHub, so you can review or fork the full source.

Are there alternatives to gograph?

Yes. SkillsLLM lists many other AI Agents skills you can browse and compare side by side. Open the AI Agents category from the badge at the top of this page, or use the Related Skills and comparison links further down to weigh gograph against similar tools.

Agentic AI for Beginners

Build your first AI agent from scratch - tool use, ReAct pattern, memory, deployment

41 minBeginner

Comments (0)

to leave a comment.

No comments yet. Be the first to share your thoughts!

Related Skills

superpowers

by obra

An agentic skills framework & software development methodology that works.

234,966

awesome-spec-driven-development legal-ai-agent

gograph

Stop burning tokens on grep. Give your AI agent a graph.

gograph builds a local, AST-aware call graph of your Go repository and exposes 50+ query tools via CLI and MCP so coding agents can navigate packages, symbols, call chains, routes, SQL, env vars, and tests — without reading raw files.

Gograph Demo

Zero network. Zero execution. Zero secrets read. gograph is purely static analysis — it never runs your code, makes API calls, or opens non-.go files.

Quick Start

# Install
brew install ozgurcd/tap/gograph

# Build the graph
gograph build . --precise

# Try it — who calls ValidateToken?
gograph callers "ValidateToken"

# Full context in ONE call (node + source + callers + callees + tests)
gograph context "ValidateToken"

# Change plan before editing (callers, tests, routes, SQL, env risk)
gograph plan "ValidateToken"

Why gograph?

Benchmarked on gograph's own codebase (70 files, 518 symbols, 16 packages):

Task	`grep -rn`	`gograph`	Savings
Find callers of `loadGraph`	158 noisy lines (comments, docs, vars)	56 exact structural call sites	~65% noise eliminated
Locate symbol definitions	842 lines matching "Symbol"	83 true type/method declarations	~90% noise eliminated
Read one function body	`cat` dumps 180+ lines of the whole file	`source` extracts the exact 12-line function	~93% fewer tokens
Understand a symbol fully	4–5 separate tool calls	1 call: `context` bundles everything	80% fewer tool calls

Key Features

50+ Query Tools — callers, callees, impact, context, plan, review, errorflow, orphans, hotspot, coupling, and more. Full command reference →

Native MCP Server — all tools available as MCP endpoints for Claude, Cursor, Copilot, and any MCP-compatible agent. One command setup: gograph add-claude-plugin

Token-Saving Composites — context replaces 5 calls. plan replaces 8. explain synthesizes architectural narratives. Built to minimize agent round-trips.

Safe by Design — no network, no code execution, no secrets, no .env files read. AI worktree directories (.claude/, .cursor/, .agents/) auto-excluded.

Architecture Enforcement — boundary rules, API drift detection, complexity gates, dead code sweeps, god-object detection, coupling analysis. Run in CI with gograph gate.

Agent Compliance Auditing — session telemetry tracks whether agents run plan before edits and review after. Grades agent behavior A–F with actionable recommendations.

Command Reference

All commands support --json for machine-readable output and --files-only for flat file lists.

Category	Commands	What it does
Indexing	`build . [--precise]`, `stale`, `stats`	Parse AST, write graph. Check freshness. Index health.
Navigation	`query`, `callers [--depth N]`, `callees [--depth N]`, `path`, `source`, `node`	Find symbols, trace call chains, extract source.
Context	`context`, `explain`, `focus`, `endpoint`	Bundled structural data in one call. Token savers.
Change Analysis	`plan`, `review`, `risk`, `impact [--uncommitted\|--since]`, `changes [--git]`, `api --since`	Pre-edit planning, post-edit review, risk analysis, blast radius, drift.
Architecture	`boundaries`, `coupling`, `complexity`, `godobj`, `orphans`, `arity`	Quality gates, dead code, coupling, god objects.
Types & Structs	`fields`, `implementers [--test-only]`, `interfaces`, `embeds`, `constructors`, `literals`, `usages`, `mutate`, `schema`	Struct fields, interface satisfaction, type usage.
Infrastructure	`routes`, `sql`, `envs`, `errors`, `concurrency`, `globals`, `httpcalls`, `deps [--transitive]`, `dependents`, `imports`	HTTP routes, SQL, env vars, concurrency, outbound HTTP calls, imports.
Testing	`tests`, `fixtures`, `mocks`	Test coverage map, helpers, mock implementations.
Error Tracing	`errorflow [--no-tests]`, `trace`	Reverse-BFS from error strings to HTTP entry points.
Diagnostics	`hotspot`, `returnusage`, `skeleton`, `diagram`, `changes`, `public`	Hotspots, return usage, API signatures, Mermaid diagrams.
CI/CD	`check [--since\|--uncommitted]`, `gate`, `snapshot save\|diff\|list\|drop`	Policy checks, threshold enforcement, metric snapshots.
Telemetry	`session create\|end\|audit\|cleanup`	Agent compliance tracking and grading (A–F).
LLM-Wiki	`wiki [--output dir]`	Generate `llm-wiki/` — machine-first markdown pages for zero-cost agent orientation (overview, architecture, hotspots, routes, env, errors, concurrency, per-package, API surface).
Summary	`summary [--json]`	Single-call codebase briefing: top 3 hotspots, worst instability package, highest complexity function, orphan count, god-object count. Replaces 5 separate calls.
Untested	`untested [--pkg name] [--top N] [--json]`	Functions with callers but zero test edges — coverage gaps invisible to orphans or per-symbol test queries. One sweep replaces N `tests <sym>` calls.
Doc	`doc <pkg[.Symbol]> [--json]`	`go doc` wrapper — signature + doc comment for any stdlib or third-party symbol. No graph required. Closes the gap when call chains leave the project.

Full command reference with examples: gograph.identuum.ai/docs/command-reference

Define boundaries in .gograph/boundaries.json:

{
  "layers": [
    { "name": "domain", "packages": ["internal/domain/**"], "may_import": [] },
    { "name": "handler", "packages": ["internal/handler/**"], "may_import": ["internal/service/**", "internal/domain/**"] }
  ]
}

Run gograph boundaries — exits with code 1 on violation. Works in CI/CD.

AI Agent Integration

One-command setup (Claude Desktop + Claude Code):

gograph add-claude-plugin

This registers the MCP server, injects CLAUDE.md steering rules, and installs a PreToolUse hook that redirects grep on Go symbols to gograph tools.

Alternative — install via Claude Code plugin marketplace:

/plugin marketplace add ozgurcd/gograph
/plugin install gograph@gograph

Discovers gograph through Claude Code's plugin marketplace and ships a SKILL.md that auto-activates on Go work, teaching the agent the mandatory workflow (capabilities → build → plan → context → review) and that grep/rg/find must not be used for Go symbol search.

You still need the gograph binary installed (brew install ozgurcd/tap/gograph or go install github.com/ozgurcd/gograph@latest). Use gograph add-claude-plugin above for the full one-command bootstrap (MCP wiring + CLAUDE.md rules + PreToolUse hook). Use the plugin marketplace when you'd rather discover and install gograph from inside Claude Code's plugin UI.

Other agents (Cursor, Copilot, Antigravity, etc.):

gograph mcp .   # Run as MCP server over stdio

Add to your .cursorrules or AI system prompt:

Before answering architecture or repository questions, inspect the available gograph_* MCP tools and use them instead of grep/find. Run gograph capabilities first.

All commands support --json for machine-readable output:

gograph callers "ValidateToken" --json
# → {"schema_version": "1", "command": "callers", "status": "ok", "count": 2, "results": [...]}

For full integration guides, see docs/coding-agent-usage.md.

Zero-cost orientation with llm-wiki/: Run gograph wiki once per session to generate a directory of machine-first markdown pages — overview, architecture diagram, hotspots, routes, env vars, error sites, concurrency, per-package docs, and the full API surface. Agents read these pages instead of issuing dozens of individual tool calls:

gograph build . --precise
gograph wiki                 # writes to ./llm-wiki/
# then read: llm-wiki/README.md → project.md → rules.md → agent-contract.md → overview.md

Add llm-wiki/ to .gitignore — these files are regenerated each session.

Example Output

When you run gograph build ., the generated GRAPH_REPORT.md gives your AI a condensed context map:

External Dependencies (Tech Stack)

Module	Version
`github.com/gin-gonic/gin`	`v1.9.1`
`github.com/jackc/pgx/v5`	`v5.5.5`

Important Symbols (Top by outgoing calls)

Symbol	Kind	File	Line	Calls out
`(Server).Start`	method	`server.go`	42	18
`ValidateAuth`	function	`auth.go`	12	14

Why not use a Language Server (`gopls`)?

gopls is optimized for human IDEs. gograph is optimized for terminal-based LLMs:

Protocol Mismatch — gopls returns file:line:col coordinates. Agents must then burn tokens running cat/sed to read the actual code. gograph extracts the exact structural slice and formats it as Markdown.
Graph-Level Diagnostics — gopls does hover and go-to-definition. gograph does reverse-BFS error tracing, full blast radius analysis, and PR-level change plans across the entire call graph.
Composable Intelligence — gopls

gograph

Frequently Asked Questions

What is gograph?

Is gograph safe to use?

How do I install gograph?

What programming language is gograph written in?

Are there alternatives to gograph?

Related Skills

gograph

Quick Start

Why gograph?

Key Features

Command Reference

AI Agent Integration

Example Output

Why not use a Language Server (gopls)?

Why not use a Language Server (`gopls`)?