
Research
/Security News
Chrome and Firefox Extensions Posing as Free VPNs Add Clipboard Stealers via Malicious Updates
Malicious Chrome and Firefox extensions posed as free VPNs while stealing clipboard data through later extension updates.
devflow-kit
Advanced tools
Agentic Development Toolkit for Claude Code - Enhance AI-assisted development with intelligent commands and workflows
A comprehensive collection of Claude Code commands and configurations designed to enhance developer workflows when working with AI coding assistants.
# 1. Install dependencies
npm install
# 2. Build the CLI
npm run build
# 3. Install DevFlow for Claude Code
node dist/cli.js init
# Or install globally
npm install -g .
devflow init
Code Review & Quality:
/pre-commit - Review uncommitted changes before committing/pre-pr - Comprehensive branch review for PR readiness/commit - Intelligent atomic commits with safety checksSession Management:
/catch-up - Smart summaries for starting new sessions/devlog - Development log for session documentation/plan-next-steps - Extract actionable next steps from discussionDevelopment Tools:
/debug [issue] - Systematic debugging with issue-specific investigationAudit Specialists:
audit-security - Security vulnerability detection and analysisaudit-performance - Performance optimization and bottleneck detectionaudit-architecture - Software architecture and design pattern analysisaudit-tests - Test quality and coverage analysisaudit-dependencies - Dependency management and security analysisaudit-complexity - Code complexity and maintainability assessmentaudit-database - Database design and optimization reviewWorkflow Specialists:
catch-up - Project status and context restoration with validationcommit - Intelligent commit creation with safety checksReal-time project context display showing:
DevFlow automatically creates a comprehensive .claudeignore file to:
devflow initInitialize DevFlow for Claude Code. Installs commands, agents, scripts, and settings to your Claude Code configuration. Also creates security and optimization files.
What it does:
~/.claude/commands/devflow/~/.claude/agents/devflow/~/.devflow/scripts/~/.claude/settings.json.claudeignore at git repository root (if in git repo).docs/ structure for project documentationOptions:
--skip-docs - Skip creating .docs/ structureExample:
# Standard installation
devflow init
# Skip project documentation setup
devflow init --skip-docs
devflow/
├── src/ # All source files
│ ├── cli/ # CLI source code
│ │ ├── commands/ # CLI command implementations
│ │ └── cli.ts # CLI entry point
│ └── claude/ # Claude Code configuration
│ ├── agents/ # AI sub-agents
│ ├── commands/ # Slash command definitions
│ ├── scripts/ # DevFlow scripts
│ └── settings.json # Claude Code settings
├── package.json # Node.js package
└── tsconfig.json # TypeScript config
# Install dependencies
npm install
# Build TypeScript
npm run build
# Watch mode for development
npm run dev
# Test CLI locally
node dist/cli.js init
Modern development increasingly involves AI agents that can read, write, and modify code autonomously. DevFlow provides:
See CLAUDE.md for comprehensive documentation including:
MIT
FAQs
Agentic Development Toolkit for Claude Code - Enhance AI-assisted development with intelligent commands and workflows
The npm package devflow-kit receives a total of 59 weekly downloads. As such, devflow-kit popularity was classified as not popular.
We found that devflow-kit demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Research
/Security News
Malicious Chrome and Firefox extensions posed as free VPNs while stealing clipboard data through later extension updates.

Research
/Security News
Miasma Mini Shai-Hulud hits @immobiliarelabs Backstage plugins, targeting GitLab and LDAP auth packages on npm.

Security News
Rolldown paused Rust React Compiler integration after a 5MB binary size increase raised concerns about shipping React-specific code to all Vite users.