🎩 You're Invited:Meet the Socket team at Black Hat in Las Vegas, August 3-6.RSVP
Sign In

@superhumaan/dna-by-humaan

Package Overview
Dependencies
Maintainers
1
Versions
32
Alerts
File Explorer

Advanced tools

Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

@superhumaan/dna-by-humaan

DNA by Humaan — one doctor install: 59 stem packs, rules, detection, portfolio memory, 897-pack marketplace, runtime observer, feature factory, and AI repair for TypeScript squads

latest
Source
npmnpm
Version
0.6.11
Version published
Weekly downloads
3.5K
Maintainers
1
Weekly downloads
 
Created
Source

DNA by Humaan

Git remembers your code. DNA remembers your system.

Run npx @superhumaan/dna-by-humaan doctor“No amount of money ever bought a second of time.”

One squad, many products? Install on the parent folder — one brain for every related app. Portfolio install →

npm Socket Node License: MIT

One npm package. One install. Everything included.

DNA by Humaan is an open-source project brain, runtime observer, 59 prompt stem packs, 897-pack knowledge marketplace, and AI-assisted repair system for TypeScript squads.

Recommended: npx @superhumaan/dna-by-humaan doctor — one command for stems, rules, detection, memory, runtime, CI, and feature factory. Portfolio install →

Built by Humaan · Superlite

Websitedna.humaan.app
Marketplacedna.humaan.app/marketplace
Intelligencedna.humaan.app/intelligence — 59 prompt stem packs + /dna-* CLI commands
Repositorygithub.com/superhumaan/DNA
npm@superhumaan/dna-by-humaan
Supply chainSocket.dev report · SECURITY.md

Supply chain & trust

DNA is published from github.com/superhumaan/DNA under the @superhumaan npm scope with MIT license, npm provenance, and zero production npm dependencies (v0.4.5+).

Security scanners may flag network, shell, or filesystem access — expected for a CLI that scaffolds projects, talks to GitHub, and syncs knowledge packs. The npm package no longer pulls third-party runtime libraries (commander, zod, simple-git, etc.); those capabilities are implemented in-tree and bundled into dist/. See SECURITY.md — Supply-chain transparency for the full endpoint list and when each runs.

Verify your install:

npm view @superhumaan/dna-by-humaan repository.url
dna --version

Install

npx @superhumaan/dna-by-humaan doctor

Doctor is the recommended entry point — it scaffolds .DNA/, CI, runtime, Docker, hooks, GitHub sign-in, and auto-wires middleware. Use init only when you want the interactive wizard first.

# Production runtime (same package)
pnpm add @superhumaan/dna-by-humaan

Portfolio install (squads & multi-product folders)

Install once on the parent folder — one command, everything included:

cd ~/work/your-squad-folder
npx @superhumaan/dna-by-humaan doctor
Included in one doctor
.DNA/ intelligencebehaviour, CellularMemory, immune system, neuralNetwork
59 stem packs + /dna-* commandsguidelines, expectations, workflows in .DNA/stems/
AI workbenchAGENTS.md, Cursor + Claude rules/skills — always on
Detectionstack, monorepo apps, AI tools, GitHub, healthcare/legal domain, drift
Feature factory9-role loop, quality gates, same template every feature
Runtime + CIauto-wired observer, GitHub Actions, pre-push hook, Docker
897 knowledge packsfoundation from scan + marketplace

One brain for every related app — how they connect, what broke, what to fix. The install teams keep like tsconfig.json.

Full manifest →

What DNA is

DNA is not a documentation generator. It is:

CapabilityWhat it does
Project intelligenceStructured .DNA/ context AI tools can actually use
AI behaviour layerRules governing how Cursor, Copilot, and Claude work on your stack
Runtime observerClassifies production errors with project-specific context
Knowledge marketplace897 curated packs — frameworks, cloud, healthcare, compliance, legal, payments, gaming, ERP
Tiered complianceGDPR, UK GDPR, HIPAA, ISO 27001, SOC 2, PCI DSS — startup → enterprise
GDPR reference library85+ governance, technical, and AI policy templates (bundled in CLI assets)
Platform catalogProduction patterns from DNA reference systems (AIStudio, ColorParty, Humaan Ops, Soli)
IVF (brownfield)Install into existing codebases — analyze, document, phased migration plans
GitHub automationContextual issues and AI-assisted repair PRs
Software immune systemSeverity, category, and discipline classification
CellularMemoryLearns from your project's history

Quick start

npx @superhumaan/dna-by-humaan doctor
npm install   # if package.json was updated
dna scan
dna context cursor

Brownfield / existing projects

dna analyze                          # Deep structure, auth, IVF gap analysis
dna document --from-code             # Reverse-engineer Impressions from code
dna plan ivf --quote "Add DNA to our Express monolith"

Core commands

CommandWhat it does
dna initScaffold .DNA/ + DNA/Impressions/
dna analyzeBrownfield analysis — structure, auth, IVF gaps
dna document --from-codeGenerate Impressions from existing code
dna plan ivfIntegrating Vertical Functions — phased migration plan
dna scanDetect stack, tests, CI, risks
dna context cursorAI-ready context for Cursor / Copilot / Claude
dna updateUpgrade CLI + re-apply all installed knowledge packs + force re-inject always-on AI rules
dna workbench installRefresh DNA Workbench + 59 prompt stem packs + /dna-* commands + AGENTS.md
dna stems listList prompt stem packs (analyze, ship, agent-loop roles, …)
dna stems show <id>Copy variants and file paths for one stem
dna commands installRefresh /dna-* CLI slash commands only (also installed by init/doctor/update)
dna generate feature <id>Scaffold audit-logging, sso, multi-tenant, feature-flags, gradual-rollout
dna memory syncSync CellularMemory from team registry
dna plan rbacRBAC from plain language → permission matrix
dna plan complianceISO / GDPR / HIPAA / SOC 2 by org tier
dna compliance listStartup → enterprise compliance catalog
dna context complianceLoad tiered compliance knowledge for AI
dna platform listDNA production feature catalog
dna plan feature <id>End-to-end plans — SSO, admin, flags, Azure, CRM, CMS
dna marketplace listBrowse 897 knowledge packs
dna legal adviseLegal advisor — jurisdictions, sectors, engineering gates
dna plan legalLegal rollout plan + regional packs
dna methodologyDelivery profile — Scrum, Kanban, Shape Up, ticket/doc systems
dna marketplace install <id>Install packs into .DNA/knowledge/
dna validateCheck against Behaviour rules
dna doctorFull health check
dna feedback reportReport DNA-platform issue upstream (sanitized)
dna feedback syncFlush offline feedback queue
dna runtime installFramework snippets for production observer
dna lab installScaffold DNA Lab at /labs + auto-wire middleware
dna lab serveLocal Lab at http://localhost:3200/labs (no login on localhost)
dna register lab --url <url>Pair local CLI to production Lab (148-digit code)
dna dashboardLegacy alias for dna lab serve
dna github connectWire GitHub issues + repair workflow
dna ai repairAI-assisted fix suggestions (dry-run safe)

Full CLI reference →

Knowledge marketplace (897 packs)

dna marketplace list
dna marketplace search --query healthcare
dna marketplace search --query fhir
dna marketplace install frameworks/nextjs
dna marketplace install compliance/gdpr
dna marketplace install healthcare/fhir-r4
dna update

Live catalog: dna.humaan.app/marketplace · Offline bundled fallback included.

LayerCountExamples
Core (frameworks, compliance, DNA stack)11Next.js, GDPR, RBAC
Stem delivery surfaces21stem/*
Language stems (i18n AI)18languages/en, languages/vi, …
Catalog expansion v179CMS, payments, modern frameworks
Wave 2283Healthcare (45), databases, cloud, AI/LLM
Wave 3187Enterprise ERP, gaming/XR, clinical AI
Wave 4142Regional cloud, ORMs, security depth
Wave 527FinOps, data mesh, store distribution
Total897

Healthcare: 55 packs — FHIR R4, Epic, Cerner, Redox, HL7, MDR, patient portal, clinical AI, HIE networks, and more.

Stack archetypes: Auto-detected profiles for healthcare-fhir, fintech-plaid, ecommerce-shopify, gaming-unity, erp-sap-integration, ai-llm-saas, cloud-aws-saas, observability-production, and 35+ more.

Marketplace docs →

Production runtime

Import from the same package in your server:

import { dnaRuntime } from "@superhumaan/dna-by-humaan/runtime";

dnaRuntime.start({ projectId: "my-app", projectRoot: process.cwd() });
app.use(dnaRuntime.express());
app.use(dnaRuntime.errorHandler());

Supports Express, Fastify, NestJS, and Next.js.

dna runtime install   # Auto-wire framework snippets
dna lab install       # Scaffold DNA Lab at /labs
dna lab serve         # Local Lab — http://localhost:3200/labs

DNA Lab (production observability)

DNA Lab at /labs complements external uptime tools (it does not replace ping monitoring).

ModeAccess
Localdna lab serve — open http://localhost:3200/labs, no login
Productiondna register lab --url https://your-app.com must print Production notified → paste Pairing ID + code at /labs → create account. Behind Connect: allowlist POST /api/dna/labs/pairing/init (see .DNA/lab/gateway-public-paths.md)

UI (v0.6.7+): Humaan admin parity — DNA logo only, primary pill buttons, large pill tabs, search → filters → data tables, collapsible Monitor/Delivery nav. Release notes →.

After npm install @superhumaan/dna-by-humaan@latest, restart the API that mounts Lab — npx …@x.y.z alone does not refresh /labs.

import { createLabMiddleware } from "@superhumaan/dna-by-humaan/lab";

app.use(createLabMiddleware({ projectRoot: process.cwd() }));

Release tracking and source maps: POST /api/dna/labs/releases, POST /api/dna/labs/sourcemaps.

Runtime observer docs →

DNA classifies live errors with your project's Behaviour rules and writes .DNA/runtime/issues.jsonl. Use alongside Sentry — DNA adds why and project context, not replacement.

Runtime guide →

Compliance & governance

Tiered implementation for startup → enterprise:

dna compliance list
dna plan compliance --frameworks gdpr,iso27001 --tier sme
dna context compliance

Frameworks: GDPR, UK GDPR, HIPAA, ISO 27001, SOC 2, PCI DSS.

Bundled GDPR reference library (85+ documents): policies, DPIA templates, AI governance, technical controls, external-facing privacy/terms.

Compliance docs →

GitHub, upstream feedback & AI repair

dna github login
dna github connect --owner ORG --repo REPO

dna feedback report --message "DNA error" --dry-run
dna feedback sync

dna ai connect --provider mock
dna ai repair --file issue.json --dry-run

Local: high/critical runtime → your repo. Upstream: DNA-platform failures → sanitized reports to superhumaan/DNA (dna-only default). Safety: never auto-merges, never deploys, never touches secrets.

Integrations guide →

Project structure

your-project/
├── .DNA/                    # AI-first intelligence (machines)
│   ├── behaviour/           # rules for Cursor, Copilot, Claude
│   ├── knowledge/           # 897-pack marketplace installs
│   ├── CellularMemory/      # learned history
│   ├── immuneSystem/        # classification rules
│   └── runtime/             # classified production issues
└── DNA/Impressions/         # human-facing docs (people)
    ├── product/
    ├── architecture/
    └── security/

Typical workflow

# 1. Give the project a brain
npx @superhumaan/dna-by-humaan init -y

# 2. Install stack knowledge
dna marketplace install frameworks/nextjs
dna marketplace install compliance/gdpr

# 3. Feed your AI editor
dna context cursor

# 4. Protect your API in production
pnpm add @superhumaan/dna-by-humaan
dna runtime install

Commit .DNA/ and DNA/ so your team shares one brain.

DNA is / isn't

DNA isDNA is not
Project intelligence for AIA docs generator
Behaviour rules for your stackA linter replacement
Runtime issue classificationA Sentry replacement — use both
897 knowledge packs + GDPR libraryA hosted SaaS — runs in your repo
GitHub issue + repair automationAuto-merge or auto-deploy

Documentation

GuideDescription
Getting startedFirst project in 10 minutes
Brownfield / IVFInstall into existing projects
ConceptsBehaviour, memory, immune system
CLI referenceEvery command
Runtime observerExpress, Fastify, NestJS, Next.js
Marketplace897 knowledge packs
ComplianceTiered GDPR, HIPAA, ISO, SOC 2
Platform catalogDNA production patterns
ChangelogReleases and migrations
IntegrationsGitHub issues + AI repair
Team testingColleague pilot guide

Requirements

  • Node.js 20+
  • TypeScript projects (JavaScript supported via scan)

Sponsors

DNA is MIT-licensed and maintained in the open. Sponsorship funds hosting, security updates, and the marketplace — not premium features.

No sponsors yet — be the first.

License

MIT © Humaan by Superlite

Keywords

dna

FAQs

Package last updated on 14 Jul 2026

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts