Security-first platform for AI agents. 38 specialized agents, 15 AI-powered extensions, zero-knowledge multi-agent orchestration. SENTINEL WAF, Ed25519 auth, 2.6M grounding facts.
# Add to your Claude Code skills
git clone https://github.com/adoslabsproject-gif/nothumanallowedGuides for using ai agents skills like nothumanallowed.
Last scanned: 6/23/2026
{
"issues": [],
"status": "PASSED",
"scannedAt": "2026-06-23T07:49:58.135Z",
"npmAuditRan": true,
"pipAuditRan": true,
"promptInjectionRan": true
}nothumanallowed is an open-source ai agents skill for AI coding assistants such as Claude Code, Codex CLI, and ChatGPT, built by adoslabsproject-gif. Security-first platform for AI agents. 38 specialized agents, 15 AI-powered extensions, zero-knowledge multi-agent orchestration. SENTINEL WAF, Ed25519 auth, 2.6M grounding facts. It has 101 GitHub stars.
Yes. nothumanallowed passed SkillsLLM's automated security scan — a dependency vulnerability audit plus prompt-injection heuristics — with no high-severity issues. You can read the full report in the Security Report section on this page.
Clone the repository with "git clone https://github.com/adoslabsproject-gif/nothumanallowed" and add it to your Claude Code skills directory (see the Installation section above).
nothumanallowed is primarily written in JavaScript. It is open-source under adoslabsproject-gif on GitHub, so you can review or fork the full source.
Yes. SkillsLLM lists many other AI Agents skills you can browse and compare side by side. Open the AI Agents category from the badge at the top of this page, or use the Related Skills and comparison links further down to weigh nothumanallowed against similar tools.
No comments yet. Be the first to share your thoughts!
38 specialized AI agents, 80 tools, Studio visual workflows, WebCraft full-stack builder — all local, all free. Security auditors, code architects, data analysts, DevOps engineers, technical writers — each with deep domain expertise. Use them individually, run complex multi-agent workflows in Studio (with PDF/Excel/CSV export), build full-stack web apps with WebCraft, or let agents deliberate together with Parliament mode.
# Install globally
npm install -g nothumanallowed
# Configure your LLM provider (or use Liara free — no API key needed)
nha config set provider anthropic
nha config set key sk-ant-api03-YOUR_KEY
# Ask a single agent directly (no server, instant response)
nha ask saber "Audit this Express app for OWASP Top 10"
nha ask oracle "Analyze this dataset" --file data.csv
# Run multi-agent deliberation
nha run "Design a Kubernetes deployment for a 10K RPS API"
# Open the web UI with Studio, Chat, Email, Calendar, Drive, Tasks and more
nha ui
Studio is a visual workflow builder inside the nha ui web interface. Describe any complex task in natural language — Studio plans a multi-agent pipeline, assigns each step to a specialist, and executes them in sequence with a live animated canvas.
"Analyze my emails, search for related news, write a summary report"
↓
EmailAgent → WebSearchAgent → WriterAgent
(reads) (searches) (synthesizes)
nha ui → click Studio in the sidebarWhen a workflow completes, Studio provides three export formats:
Export buttons appear in the result panel and in the toolbar after each run.
WebCraft is a full-stack web app builder embedded in nha ui. Describe what you want in plain language — WebCraft generates a complete project with Express.js backend, PostgreSQL schema, JWT auth, email verification, security middleware, and a styled frontend. Everything runs locally with a live sandbox.
Open nha ui → click WebCraft in the sidebar
server/, public/, db/migrations/, .env.example, package.json, nginx confignpm install && node server/index.js in an isolated process, live on a local portAn AI assistant permanently available in the chat panel. Powered by Liara (Qwen3 32B, free) or your own API key.
What it can do:
MODULE_NOT_FOUND and common require() path errorsContext files (created automatically for every project, editable via sidebar):
| File | Type | Purpose |
|---|---|---|
skills/memory.md |
memory | Architecture decisions, stack choices, developer preferences |
skills/liara.md |
provider | Calibrate AI tone, code style, constraints |
skills/skills.md |
skill | Reusable patterns, snippets, API integrations |
Add more skill files (unlimited) for specific integrations (Stripe, email templates, etc.).
| Tool | Description |
|---|---|
| Diff viewer | After every agent edit, see before/after for each changed file — color-coded, collapsible |
| Syntax check ✅ | Runs node --check on all JS files, reports errors instantly |
| Search 🔍 | Grep across all project files — click a result to jump to that file |
| Snapshot 💾 | Save a full point-in-time backup of all files. Restore any snapshot with one click |
| Plan mode | Type /plan your request — agent proposes a plan first, you approve before any file is touched |
| Auto-fix | Sandbox errors (MODULE_NOT_FOUND etc.) trigger automatic Liara fix attempts (3 free, unlimited with own key) |
You: "Add a contact form with SMTP email and honeypot spam protection"
Agent: → edits server/routes/api.js (add /contact POST route)
→ edits server/services/email.js (add sendContactEmail)
→ edits public/index.html (add form HTML)
→ edits public/js/main.js (add form JS with honeypot)
[Diff viewer shows 4 files changed]
[Syntax check: ✅ all files valid]
[Sandbox restarted automatically]
You: "/plan refactor auth to use refresh token rotation"
Agent: → proposes plan (3 files, 6 changes) — no edits yet
→ you click Approve → agent executes
Connect Gmail + Calendar. 5 specialist agents analyze your day.
# Connect Google (one-time)
nha config set google-client-id YOUR_ID
nha config set google-client-secret YOUR_SECRET
nha google auth
# Generate your daily plan
nha plan
# Manage tasks
nha tasks add "Review PR #42" --priority high
nha tasks done 1
nha tasks week
# Background daemon (auto-alerts before meetings, email security scans)
nha ops start
What nha plan does:
OpenClaw reads your email with 1 generic agent. NHA sends it through 5 specialists.
Zero data touches NHA servers. The only network calls are:
All data stored locally in ~/.nha/ops/. Tokens encrypted with AES-256-GCM. You own everything. Inspect it, delete it, export it anytime.
38 agents across 11 domains. Each agent is a standalone .mjs file you own locally — inspect it, modify it, run it offline.
execute_code runs Python, JavaScript, or TypeScript in an isolated sandbox:
# Python with auto-installed packages
nha chat
> use execute_code to analyze this CSV with pandas
# TypeScript
> write and run a TypeScript script that parses this JSON
packages: ["pandas", "numpy"] auto-installs via pip/npmfiles: [{path, content}]