Research
/Security News
Miasma Mini Shai-Hulud Hits ImmobiliareLabs npm Packages
Miasma Mini Shai-Hulud hits @immobiliarelabs Backstage plugins, targeting GitLab and LDAP auth packages on npm.
By Socket Research Team - Jun 26, 2026
🚀 Socket Launch Week Day 5:Introducing Repository Access Permissions and Custom Roles.Learn more →
🧙♂ codemancer
Coding superpowers with GPT-4 in your command line.
codemancer is a command line tool that uses the OpenAI API to generate code based on a given prompt and input file. It can change code in-place or create brand new files.
You can use it as a versatile and efficient AI-powered programming assistant that simplifies code generation, streamlines development tasks, and boosts productivity.
💫 You can now try
codemancerwith our own (free but rate-limited) OpenAI GPT-4 proxy.
Installation
npm install -g codemancer
Usage
To use codemancer with your own OpenAI API key, you need to set the OPENAI_API_KEY environment variable.
export OPENAI_API_KEY=your_api_key_here
codemancer works best using GPT-4, and will use it by default. If you do not have access and receive a 404, you can use the GPT-3.5 model instead via -m "gpt-3.5-turbo", but code generations will be much less reliable.
Reading and writing to the same file
Modify a file in-place based on a prompt, useful for iterating on functionality, addressing review comments, resolving conflicts, or refactoring.
codemancer -i input_file_path -p "break the /recipe/<id> route into /recipe/<id>/info and /recipe/<id>/image"
Reading and writing to a different file
Useful for generating a new file with similar functionality, readmes, or interface definitions (e.g. rpc).
codemancer -i input_file_path -o output_file_path -p "extract inlined types into interfaces in a separate file"
Writing from prompt to file
For generating blank slate code for new projects, one-offs, or scripts.
codemancer -o output_file_path -p "I need an AppleScript to wipe Safari history on restart"
Simple prompting
Ask questions, get answers and suggestions.
codemancer -p "what's a bulletproof regex for validating emails"
Customizing model and temperature
codemancer -i input_file_path -m gpt-3.5-turbo -t 0.5 -p "change all variable names to obscure animals"
Limitations
- The file content + prompt are currently limited to 8K tokens for GPT-4. If your file is too large/dense and you exceed this limit you will get a 400 error.
- If there are multiple code blocks returned in the completion, codemancer will present a confirmation message for each and write only the accepted one. If the verbosity argument is set to 0, it will auto-confirm and write the first code block it encounters to the output file.
License
GPL License - This code was largely written by AI with some human guidance.
FAQs
Code with GPT-4 from your command line
The npm package codemancer receives a total of 2 weekly downloads. As such, codemancer popularity was classified as not popular.
We found that codemancer demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 01 May 2024
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Rolldown Pulls Rust React Compiler Integration After Binary Size Increase
Rolldown paused Rust React Compiler integration after a 5MB binary size increase raised concerns about shipping React-specific code to all Vite users.
By Sarah Gooding - Jun 26, 2026
Security News
/Research
Miasma Mini Shai-Hulud Hits LeoPlatform npm Packages and GitHub Actions, Expands to the Go Ecosystem
Mini Shai-Hulud expands into the Go ecosystem after hitting LeoPlatform npm packages and targeting GitHub Actions workflows.
By Socket Research Team - Jun 25, 2026