Skip to content

kingkyylian/handoffkit

BranchesTags

Repository files navigation

HandoffKit

CI npm Node License: MIT

HandoffKit is the clean handoff packet for interrupted AI coding sessions.

It turns messy AI-assisted coding work into a safe resume packet you can paste into Codex, Claude Code, Cursor, Gemini, ChatGPT, or another agent. It is a local-first TypeScript CLI: it inspects the current git repository, summarizes the live branch state, detects agent instruction files, finds package verification scripts, redacts likely secrets, and prints compact Markdown by default. It does not call any LLM API.

Why It Exists

AI coding sessions get interrupted: context windows fill up, tools change, laptops sleep, a model gets stuck, or work needs to move from Claude Code to Codex or Cursor. The hard part is not feeding an entire repo to an agent. The hard part is explaining what happened on this branch and what the next agent should do.

HandoffKit creates a deterministic handoff packet with the pieces another assistant needs first:

  • current branch and git status
  • recent commits
  • staged and unstaged diff summaries
  • changed file list
  • detected instruction files such as AGENTS.md, CLAUDE.md, GEMINI.md, .cursor/rules, and .github/copilot-instructions.md, with compact redacted previews
  • package manager and common verification scripts from package.json
  • best-effort redaction for likely secrets

Positioning

HandoffKit is not a repo ingestion tool. It is not trying to replace Repomix, Gitingest, or long-lived repo instruction tools.

Its job is narrower: capture the live state of an interrupted AI coding session so another agent can resume without guessing.

Example Output

# HandoffKit Packet

Goal: Continue the profile README and repo metadata polish.

Repository: kingkyylian/handoffkit
Branch: main
Working tree: 2 modified files, 1 untracked file
Recent commits: release notes, cache resume support, secret scanner status
Detected instructions: AGENTS.md, CLAUDE.md, .github/copilot-instructions.md
Verification scripts: typecheck, lint, test, build, check
Risk notes: README/docs-only change; no runtime code changed.
Next step: review the README diff, then run pnpm check before publishing.

The packet is deterministic Markdown or JSON generated from local git and filesystem state. Full patches are included only when --include-diff is selected.

HandoffKit vs. Repo Instruction Tools

Repo instruction tools such as AgentFit help shape reusable project guidance for AI agents. HandoffKit has a different job: it captures the live state of a coding session right now.

Use repo instruction tools to maintain durable agent rules. Use HandoffKit when you need to hand off an in-progress branch, debugging session, or partially completed change to another assistant without pasting raw diffs and secrets by hand.

Current MVP

The first release focuses on the minimum useful handoff:

  • local git state
  • changed files
  • recent commits
  • diff summaries and optional patches
  • agent instruction file previews
  • package verification scripts
  • best-effort secret redaction

It is useful today, but the goal is to become more than a prettier git status. See ROADMAP.md for the next features that should make HandoffKit harder to replace with a manual paste.

Install

Run without installing:

pnpm dlx @kingkyylian/handoffkit pack --goal "Make your own goal"

Or install it globally:

pnpm add -g @kingkyylian/handoffkit

For local development:

pnpm install
pnpm build

Node.js 22 or newer is required.

Usage

From inside a git repository:

handoffkit pack --goal "Make your own goal"

Focus on the branch delta since a base ref:

handoffkit pack --since main --goal "Continue this branch"

Run safe verification scripts and include the result:

handoffkit pack --verify --goal "Fix remaining failures"

Run optional local secret scanners and include bounded redacted results:

handoffkit pack --scan-secrets --goal "Review before handoff"

Optimize the packet for a target agent:

handoffkit pack --for codex --goal "Resume implementation"

Target profiles keep the same collected facts but adjust the title, section order, and next-agent notes for the selected tool. They do not invent project state or call model-specific APIs.

During development:

pnpm dev pack --goal "Make your own goal"

Write to a file:

handoffkit pack --goal "Finish the CLI MVP" --output handoff.md

JSON output:

handoffkit pack --goal "Review this branch" --format json

Include full patch text:

handoffkit pack --goal "Continue implementation" --include-diff

Omit diff summaries and patches:

handoffkit pack --goal "Summarize repo state" --no-diff
handoffkit pack --goal "Continue from recent cache" --include-cache

Set a rough Markdown token budget:

handoffkit pack --goal "Prepare a compact handoff" --budget 3000

Run verification directly:

handoffkit verify
handoffkit verify --cache

Inspect deterministic risk notes:

handoffkit risk

Run optional local secret scanners directly:

handoffkit scan-secrets

Resume from a previous handoff or transcript:

handoffkit resume previous-handoff.md --goal "Continue from here"
handoffkit resume previous-handoff.md --goal "Continue from here" --cache
handoffkit resume --from-cache latest --goal "Continue cached session"

Inspect local cache artifacts:

handoffkit cache list
handoffkit cache show resume latest

CLI Options

Option Description
--goal <text> The handoff goal to place at the top of the packet.
--output <path> Write the packet to a file instead of stdout.
--format markdown|json Render Markdown or JSON. Defaults to Markdown.
--for generic|codex|claude|cursor Tune the packet heading and prompt shape for a target agent.
--budget <tokens> Rough Markdown token budget. Defaults to 4000.
--since <ref> Focus committed branch delta on a base ref such as main.
--verify Run safe verification scripts and include results in the packet.
--scan-secrets Run optional local secret scanners and include bounded redacted results.
--cache Explicitly write local verification or resume artifacts under .handoffkit/.
--include-cache Include recent .handoffkit artifact summaries in pack output.
--from-cache <ref> Resume from a cached resume artifact such as latest or resume/latest.
--include-diff Include full tracked patches and bounded untracked previews.
--no-diff Omit diff summaries and full patches.

Local Cache

Cache writes are opt-in. verify --cache, pack --verify --cache, and resume --cache write redacted JSON artifacts under .handoffkit/verification or .handoffkit/resume. Use cache list and cache show to inspect artifacts, resume --from-cache latest to continue from the latest cached resume source, and pack --include-cache to include recent cache summaries in a new handoff packet. The cache directory is ignored by default so repeated handoffs do not pollute git status or generated reports.

See docs/CACHE.md for the file layout.

What Gets Collected

HandoffKit reads local git and filesystem metadata from the current repository:

  • branch, status, recent commits, changed files, and diff summaries
  • full tracked patch text only when --include-diff is used
  • untracked file names in summaries, and untracked file preview content only when --include-diff is used
  • compact previews of detected instruction files
  • package manager and verification scripts from the root package.json
  • optional verification results when --verify is used
  • optional local cache summaries when --include-cache is used
  • deterministic risk notes from changed file paths
  • optional secret scanner availability, local config files, and install guidance for gitleaks and secretlint
  • bounded, redacted secret scan results when --scan-secrets is used

What Never Happens

  • No LLM API calls.
  • No network requests from the CLI.
  • No git writes, commits, staging, or branch changes.
  • No files are written unless --output or explicit --cache is provided.

Development

pnpm install
pnpm typecheck
pnpm lint
pnpm test
pnpm build
pnpm check
pnpm pack:dry-run

Release

Releases are manual and should happen only after CI, package dry-run, and install smoke tests pass. The preferred path is the GitHub Release workflow with an NPM_TOKEN repository secret that can publish from CI without an interactive OTP, so npm provenance is attached to the published package.

See docs/RELEASE.md for the release checklist.

Security Model

HandoffKit is local-first and deterministic. It reads local git and filesystem state, renders a report, and redacts likely secrets from generated output. Redaction is best effort, so review packets before pasting them into a third-party tool.

When --scan-secrets is used, HandoffKit runs installed local scanners only. It does not install scanners, send code to a service, or fail when gitleaks or secretlint is missing.

When scanner config files such as .gitleaks.toml, .gitleaksignore, .secretlintrc.*, or secretlint.config.* are present, HandoffKit reports them in the packet so the next agent knows which local policy files exist.

License

MIT

About

Clean handoff packets for interrupted AI coding sessions.

www.npmjs.com/package/@kingkyylian/handoffkit

Topics

resume cli typescript ai cursor handoff codex claude local-first session-handoff

Resources

Readme

License

MIT license

Code of conduct

Code of conduct

Contributing

Contributing

Security policy

Security policy
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases 5

HandoffKit v0.4.0 Latest
May 20, 2026
+ 4 releases

Packages

 
 
 

Contributors

Languages