PHP download

Download the PHP package henryavila/codeguard without Composer

On this page you can find all versions of the php package henryavila/codeguard. It is possible to download/install these versions without Composer. Possible dependencies are resolved automatically.

Table of contents
Download henryavila/codeguard
More information about henryavila/codeguard
Files in henryavila/codeguard

Vendor henryavila
Package codeguard
Short Description Laravel quality gates that survive your AI agent — multi-stage test runner, pattern-based review, AI rules, and guided install for Pint/PHPStan/Deptrac/Infection/CaptainHook.
License MIT
Homepage https://github.com/henryavila/codeguard

Keywords testing laravel quality Infection PHPStan captainhook deptrac ai-review ai-rules

FAQ

After the download, you have to make one include require_once('vendor/autoload.php');. After that you have to import the classes with use statements.

Example:

If you use only one package a project is not needed. But if you use more then one package, without a project it is not possible to import the classes with use statements.

In general, it is recommended to use always a project to download your libraries. In an application normally there is more than one library needed.

Some PHP packages are not free to download and because of that hosted in private repositories. In this case some credentials are needed to access such packages. Please use the auth.json textarea to insert credentials, if a package is coming from a private repository. You can look here for more information.

Some hosting areas are not accessible by a terminal or SSH. Then it is not possible to use Composer.
To use Composer is sometimes complicated. Especially for beginners.
Composer needs much resources. Sometimes they are not available on a simple webspace.
If you are using private repositories you don't need to share your credentials. You can set up everything on our site and then you provide a simple download link to your team member.
Simplify your Composer build process. Use our own command line tool to download the vendor folder as binary. This makes your build process faster and you don't need to expose your credentials for private repositories.

Please rate this library. Is it a good library?

Example code of henryavila/codeguard

Informations about the package codeguard

CodeGuard

Laravel quality gates that survive your AI agent.

Consolidated install for Pint, PHPStan, Deptrac, Infection, and CaptainHook — with AI review where AST can't reach, multi-database schema dump, and honest best-effort Claude hooks.

Status: 0.2.0 is the first Packagist release. Pre-1.0 means the public API may shift; integrations should pin to a specific minor version (^0.2). Installs and runs on Laravel 11/12. Patterns engine, schema dump, and AI rules generator are roadmapped for later 0.x releases.

Why CodeGuard

You have a Laravel project. You want:

PHPStan catching type bugs
Deptrac enforcing architecture boundaries
Infection detecting assertTrue(true) type tests written by a contractor who doesn't use AI
CaptainHook blocking bad commits before they hit CI (PHP-native, auto-activated by composer install)
The same setup replicated across every project you own
Easy upgrade path (composer update) to evolve the standard over time

You don't want to hand-configure 7 tools in each project, drift between repos, or pretend your assertTrue(true) tests work.

CodeGuard is a Composer package that installs, configures, and runs these gates cohesively.

Quick Start

The installer auto-detects your environment, recommends a preset, shows you exactly what will be installed (with honest config-time estimates), asks Deptrac layer questions scanned from your app/ directory, and verifies CaptainHook is active (Composer's hook-installer plugin does the actual .git/hooks/* wiring).

Presets

Two presets, auto-selected by the installer based on Node.js presence in your project.

Preset	Tools	Requires Node?	Auto-selected when
`codeguard` (default)	Pint + PHPStan + Deptrac + Infection + CaptainHook	❌	No `package.json` or `node_modules/`
`codeguard-full`	+ jscpd + Insights + TestQualityTest	✅	`package.json` or `node_modules/` present

Philosophy: no "Minimal" starter preset that gives false comfort. Both presets enforce the gates you actually need for a team project. The only real decision axis is whether you already have Node.js (and you probably do if you're running Vite/Vue).

Override auto-selection:

Features

✅ Available in 0.2.0

codeguard:install — guided hybrid install with smart stubs (inline educational comments), auto-detection of preset, Deptrac layer suggestion from your app/ namespaces, CaptainHook auto-activated via Composer plugin, phpunit.xml strict-mode floor, and a minimal CI workflow stub
codeguard:install --refresh-stubs — diff-aware re-run that lets you keep, overwrite, or review full diff per file. No silent customization loss.
codeguard:install:override — register stub paths to keep across re-runs (--detect planned for 0.3.x)
codeguard:check — runs all enabled gates sequentially with fail-fast and consolidated report. Layer 3 telemetry per-gate.
codeguard:test — multi-stage test runner (Pest-first) driven by StageConfig in config/codeguard.php. Sequential or parallel stages, fail-fast modes, Layer 5 telemetry. Project-agnostic (no Playwright/MongoDB/Nova assumptions).
codeguard:telemetry:enable|disable|clear — opt-in JSONL telemetry stored under .codeguard/telemetry/ with field allowlist, rotation, and privacy-safe enums
TestQualityAssertions + ParallelSafetyAssertions Pest traits — anti-pattern arch-tests (tautological assertions, Eloquent mocking, bare assertNotNull, truncate in tests, eager factory creates)
Auto-detect Node — installer picks codeguard (PHP-only) or codeguard-full (+ jscpd + Insights + TestQualityTest) without asking
Honest estimates — per-gate config time and CI cost shown before you commit

🚧 Roadmapped post-0.2.0

codeguard:analyze — pattern engine (28 curated YAMLs) with LLM adjudicator for issues where AST can't reach
codeguard:prepare — multi-database schema dump (MySQL, PostgreSQL, SQLite :memory:, SQL Server PDO fallback, Windows without sqlite3 CLI)
AI rules generator — emit canonical .claude/rules/*.md from config('codeguard.ai_rules.targets')
Pest custom expectations beyond the two traits

🔮 Future

henryavila/codeguard-hooks — Claude plugin for best-effort config-protection nudges (separate repo, install via /plugin install)
Companion packages (codeguard-symfony, codeguard-python) if demand surfaces

Philosophy

Laravel-first, not language-agnostic. We tried the "agnostic core" approach in v0.x (npm package). The core was a thin shell with 90% of real value being Laravel-specific. Pivot rationale.

Best-effort Claude hooks, not hard enforcement. Claude Code has documented bypasses for Edit/Write matchers (via Bash, MCP tools, git commit --no-verify). We do not claim what we cannot deliver. Hooks reduce friction for honest mistakes. CI is the real gate.

Honest estimates, not marketing numbers. When you see "config: 30min" for Deptrac, that's calibrated to real projects, not "2-4 hours" inflated to sound cautious.

PHP-native core, Node opt-in. The package itself requires zero Node runtime. The codeguard-full preset references jscpd (Node) because no PHP CPD tool currently matches its quality — we document the requirement instead of hiding it.

Stack Requirements

PHP 8.3+
Laravel 11 or 12
Pest 3 or 4 (dev only)
Composer 2.x

Optional:

Node.js 18+ (only if using codeguard-full preset)
CaptainHook: installed automatically as a Composer dev dependency (no separate binary required)

Architecture

CodeGuard is a thin layer over best-in-class standalone tools, not a replacement:

Documentation

Architecture spec v5 — canonical design, ADRs, roadmap
Pivot rationale (Node → PHP) — why the rewrite
Legacy npm package — @henryavila/[email protected] reference

Migrating from npm v0.x?

0.2.0 is a complete rewrite from Node to PHP/Composer. No programmatic migration path.

If you use PHP/Laravel: install fresh and re-configure via php artisan codeguard:install.
If you use Node: continue with @henryavila/[email protected] on npm (no further updates planned). The PHP rewrite continues semver from 0.x: PHP 0.2.0 is unrelated to npm 0.1.1 other than the legacy version pointer.

Contributing

Currently in closed active development by @henryavila. Open issues welcome for questions and design feedback. PRs accepted now that 0.2.0 is tagged — but expect rapid breaking changes during the 0.x series.

License

All versions of codeguard with dependencies

PHP Build Version

Package Version

Version 0.2.0 Release 04. May 2026
create-project require 0 people chose require and
0 people chose create-project.

Download

Download latest version of codeguard from vendor henryavila

Requires php Version ^8.3
captainhook/captainhook Version ^5.29
captainhook/hook-installer Version ^1.0
illuminate/console Version ^11.0|^12.0
illuminate/support Version ^11.0|^12.0
illuminate/filesystem Version ^11.0|^12.0
laravel/prompts Version ^0.1.15|^0.3
symfony/process Version ^7.0|^8.0
symfony/yaml Version ^7.0|^8.0
symfony/finder Version ^7.0|^8.0
sebastian/diff Version ^5.1|^6.0|^7.0
phpstan/phpstan Version ^1.11|^2.0
larastan/larastan Version ^2.11|^3.0
phpstan/phpstan-phpunit Version ^1.4|^2.0
tomasvotruba/cognitive-complexity Version ^0.2|^1.0
shipmonk/dead-code-detector Version ^0.13|^0.15
spaze/phpstan-disallowed-calls Version ^3.0|^4.0
mrpunyapal/peststan Version ^0.2

Composer command for our command line client (download client) This client runs in each environment. You don't need a specific PHP version etc. The first 20 API calls are free. Standard composer command

The package henryavila/codeguard contains the following files

Loading the files please wait ...