lablup
diff --git a/‎.github/ISSUE_TEMPLATE/bug_report.yml‎
Lines changed: 116 additions & 0 deletions b/‎.github/ISSUE_TEMPLATE/bug_report.yml‎
Lines changed: 116 additions & 0 deletions
diff --git a/‎.github/ISSUE_TEMPLATE/config.yml‎
Lines changed: 11 additions & 0 deletions b/‎.github/ISSUE_TEMPLATE/config.yml‎
Lines changed: 11 additions & 0 deletions
diff --git a/‎.github/ISSUE_TEMPLATE/feature_request.yml‎
Lines changed: 74 additions & 0 deletions b/‎.github/ISSUE_TEMPLATE/feature_request.yml‎
Lines changed: 74 additions & 0 deletions
diff --git a/‎.github/PULL_REQUEST_TEMPLATE.md‎
Lines changed: 52 additions & 0 deletions b/‎.github/PULL_REQUEST_TEMPLATE.md‎
Lines changed: 52 additions & 0 deletions
diff --git a/‎.github/dependabot.yml‎
Lines changed: 97 additions & 0 deletions b/‎.github/dependabot.yml‎
Lines changed: 97 additions & 0 deletions
@@ -0,0 +1,116 @@
+name: Bug report
+description: Report something that is not working in mlxcel
+title: "fix: <short description>"
+labels: ["type:bug", "status:ready"]
+body:
+  - type: markdown
+    attributes:
+      value: |
+        Thanks for taking the time to file a bug report. The information below helps us reproduce the issue and ship a fix faster.
+
+        **Security issues**: Do **not** file security vulnerabilities here. See [SECURITY.md](https://github.com/lablup/mlxcel/blob/main/SECURITY.md) for the private reporting channel.
+
+  - type: textarea
+    id: summary
+    attributes:
+      label: Summary
+      description: A short, factual description of the bug.
+      placeholder: e.g. "mlxcel-server crashes on /v1/chat/completions when the prompt contains a 4-byte UTF-8 character"
+    validations:
+      required: true
+
+  - type: textarea
+    id: reproduction
+    attributes:
+      label: Reproduction steps
+      description: |
+        Minimal commands or HTTP requests that reproduce the issue. Include the prompt and seed if relevant.
+      placeholder: |
+        1. `mlxcel download mlx-community/Qwen3.5-0.8B-OptiQ-4bit`
+        2. `mlxcel generate -m models/Qwen3.5-0.8B-OptiQ-4bit -p "..." -n 100 --seed 42`
+        3. Observed: ...
+        4. Expected: ...
+      render: bash
+    validations:
+      required: true
+
+  - type: textarea
+    id: expected
+    attributes:
+      label: Expected behavior
+      description: What did you expect to happen?
+    validations:
+      required: true
+
+  - type: textarea
+    id: actual
+    attributes:
+      label: Actual behavior
+      description: What actually happened? Include error messages, panic backtraces, or unexpected output verbatim.
+      render: text
+    validations:
+      required: true
+
+  - type: input
+    id: version
+    attributes:
+      label: mlxcel version
+      description: Output of `mlxcel --version` or the commit SHA you built from.
+      placeholder: e.g. "v0.0.27" or "main @ abc1234"
+    validations:
+      required: true
+
+  - type: dropdown
+    id: install
+    attributes:
+      label: Install method
+      options:
+        - Homebrew (lablup/tap)
+        - Pre-built release binary (GitHub Releases)
+        - Built from source
+        - Other (please describe in Additional context)
+    validations:
+      required: true
+
+  - type: dropdown
+    id: platform
+    attributes:
+      label: Platform
+      options:
+        - macOS (Apple Silicon)
+        - Linux + CUDA (gb10)
+        - Linux + CUDA (gh200)
+        - Linux + CUDA (other — please specify in Additional context)
+        - Other
+    validations:
+      required: true
+
+  - type: input
+    id: model
+    attributes:
+      label: Model checkpoint
+      description: The Hugging Face repo ID or local path of the model you were running, if relevant.
+      placeholder: e.g. "mlx-community/Qwen3.5-0.8B-OptiQ-4bit"
+
+  - type: textarea
+    id: logs
+    attributes:
+      label: Relevant logs
+      description: Server / CLI output, ideally with `RUST_LOG=mlxcel=debug` set for stack traces.
+      render: text
+
+  - type: textarea
+    id: additional
+    attributes:
+      label: Additional context
+      description: Anything else that might help — workarounds you tried, related issues, screenshots, etc.
+
+  - type: checkboxes
+    id: checks
+    attributes:
+      label: Pre-submission checks
+      options:
+        - label: I searched existing issues and did not find a duplicate
+          required: true
+        - label: This is not a security vulnerability (those go to SECURITY.md instead)
+          required: true
@@ -0,0 +1,11 @@
+blank_issues_enabled: false
+contact_links:
+  - name: Security vulnerability
+    url: https://github.com/lablup/mlxcel/security/advisories/new
+    about: Report a security issue privately. Do not file these as public issues. See SECURITY.md for the full policy.
+  - name: Question or discussion
+    url: https://github.com/lablup/mlxcel/discussions
+    about: General questions, design discussion, or "is this supported?" go here instead of issues.
+  - name: Upstream MLX issues
+    url: https://github.com/ml-explore/mlx/issues
+    about: Bugs that reproduce against upstream MLX C++ libraries (not mlxcel-specific) should be reported upstream.
@@ -0,0 +1,74 @@
+name: Feature request
+description: Propose a new capability, model family, or behavior change for mlxcel
+title: "feat: <short description>"
+labels: ["type:enhancement", "status:ready"]
+body:
+  - type: markdown
+    attributes:
+      value: |
+        Thanks for proposing a feature. mlxcel tracks model coverage with [mlx-lm](https://github.com/ml-explore/mlx-lm) and [mlx-vlm](https://github.com/Blaizzy/mlx-vlm) where practical; the more upstream context you can provide, the easier it is to scope.
+
+  - type: textarea
+    id: problem
+    attributes:
+      label: Problem / motivation
+      description: What problem does this feature solve? Who is the user, and what are they trying to do today?
+      placeholder: |
+        e.g. "I want to serve LFM2-VL via mlxcel-server, but the architecture is not in the detection table."
+    validations:
+      required: true
+
+  - type: textarea
+    id: proposal
+    attributes:
+      label: Proposed solution
+      description: |
+        Describe what should be built. For new model families, include the upstream reference (mlx-lm / mlx-vlm path or HF architecture).
+        For new server features, sketch the CLI flag or API surface.
+    validations:
+      required: true
+
+  - type: textarea
+    id: alternatives
+    attributes:
+      label: Alternatives considered
+      description: Other approaches you considered, and why they were not chosen.
+
+  - type: dropdown
+    id: scope
+    attributes:
+      label: Scope
+      options:
+        - New model family
+        - Server / API surface (mlxcel-server)
+        - CLI behavior (mlxcel)
+        - Inference performance
+        - Surgery operation
+        - Tooling / documentation
+        - Other
+    validations:
+      required: true
+
+  - type: textarea
+    id: acceptance
+    attributes:
+      label: Acceptance criteria
+      description: How will we know this is done? List the conditions in checkbox form.
+      placeholder: |
+        - [ ] Model loads from `mlx-community/...` without conversion
+        - [ ] `mlxcel list` includes the new architecture
+        - [ ] End-to-end inference matches Python reference within RMS < 5e-3
+
+  - type: textarea
+    id: additional
+    attributes:
+      label: Additional context
+      description: Upstream PRs, papers, benchmark numbers, etc.
+
+  - type: checkboxes
+    id: checks
+    attributes:
+      label: Pre-submission checks
+      options:
+        - label: I searched existing issues and discussions and did not find a duplicate
+          required: true
@@ -0,0 +1,52 @@
+<!--
+Thanks for opening a pull request! Please fill out the sections below.
+For the full contributor contract see AGENTS.md and CONTRIBUTING.md.
+-->
+
+## Summary
+
+<!-- One or two sentences: what does this PR do, and why? -->
+
+## Related issues
+
+<!-- Use closing keywords ("Closes #123", "Fixes #456") so the issue auto-closes on merge.
+     For tracking-only references use "Refs #..." or "Part of #..." instead. -->
+
+Closes #
+
+## Type of change
+
+<!-- Tick all that apply. -->
+
+- [ ] `feat` — new user-visible feature
+- [ ] `fix` — bug fix
+- [ ] `perf` — performance improvement (include before/after numbers in the PR body)
+- [ ] `refactor` — internal restructuring without behavior change
+- [ ] `chore` — build, CI, dependencies, release infrastructure
+- [ ] `docs` — documentation only
+- [ ] `test` — tests only
+
+## Test plan
+
+<!--
+What did you run to convince yourself this works? Be specific.
+For inference changes, real-checkpoint validation is required — synthetic-only is not enough.
+-->
+
+- [ ] `cargo fmt --check`
+- [ ] `cargo clippy --all-targets -- -D warnings`
+- [ ] `cargo test --release`
+- [ ] `cargo deny check`
+- [ ] Validated with a real checkpoint (specify which, e.g. `mlx-community/Qwen3.5-0.8B-OptiQ-4bit`): ...
+
+## Notes for reviewers
+
+<!-- Anything reviewers should know: assumed invariants, follow-up work, risks, alternatives considered. -->
+
+## Checklist
+
+- [ ] PR title uses a Conventional Commits prefix (`feat:`, `fix:`, etc.)
+- [ ] One logical change per PR (split unrelated changes)
+- [ ] Updated `docs/` if user-facing behavior or supported models changed
+- [ ] Updated `// Used by: ...` comments on any shared function I modified (see `docs/code-guidelines.md`)
+- [ ] No secrets, credentials, or `.env` files committed
@@ -0,0 +1,97 @@
+# Dependabot configuration for automated dependency updates.
+# Docs: https://docs.github.com/en/code-security/dependabot/dependabot-version-updates
+
+version: 2
+updates:
+  # Cargo (Rust) dependencies — root `mlxcel` binary crate.
+  - package-ecosystem: "cargo"
+    directory: "/"
+    schedule:
+      interval: "weekly"
+      day: "monday"
+      time: "09:00"
+      timezone: "Asia/Seoul"
+    open-pull-requests-limit: 10
+    groups:
+      minor-and-patch:
+        patterns:
+          - "*"
+        update-types:
+          - "minor"
+          - "patch"
+    ignore:
+      - dependency-name: "*"
+        update-types: ["version-update:semver-major"]
+    labels:
+      - "type:dependency"
+    commit-message:
+      prefix: "deps"
+      include: "scope"
+
+  # Cargo (Rust) dependencies — `mlxcel-core` library crate (separate Cargo.lock).
+  - package-ecosystem: "cargo"
+    directory: "/src/lib/mlxcel-core"
+    schedule:
+      interval: "weekly"
+      day: "monday"
+      time: "09:00"
+      timezone: "Asia/Seoul"
+    open-pull-requests-limit: 10
+    groups:
+      minor-and-patch:
+        patterns:
+          - "*"
+        update-types:
+          - "minor"
+          - "patch"
+    ignore:
+      - dependency-name: "*"
+        update-types: ["version-update:semver-major"]
+    labels:
+      - "type:dependency"
+      - "area:core"
+    commit-message:
+      prefix: "deps(core)"
+      include: "scope"
+
+  # Cargo (Rust) dependencies — `mlxcel-surgery` library crate.
+  - package-ecosystem: "cargo"
+    directory: "/src/lib/mlxcel-surgery"
+    schedule:
+      interval: "weekly"
+      day: "monday"
+      time: "09:00"
+      timezone: "Asia/Seoul"
+    open-pull-requests-limit: 5
+    groups:
+      minor-and-patch:
+        patterns:
+          - "*"
+        update-types:
+          - "minor"
+          - "patch"
+    ignore:
+      - dependency-name: "*"
+        update-types: ["version-update:semver-major"]
+    labels:
+      - "type:dependency"
+      - "area:surgery"
+    commit-message:
+      prefix: "deps(surgery)"
+      include: "scope"
+
+  # GitHub Actions dependencies.
+  - package-ecosystem: "github-actions"
+    directory: "/"
+    schedule:
+      interval: "weekly"
+      day: "monday"
+      time: "09:00"
+      timezone: "Asia/Seoul"
+    open-pull-requests-limit: 5
+    labels:
+      - "type:dependency"
+      - "type:chore"
+    commit-message:
+      prefix: "ci"
+      include: "scope"