Appearance

Star
Claude
Cursor
Cline
OpenAI
GitHub Copilot
grekt
Open source MCP & AI artifact managerKnow your AI stack.

Audit, manage, and version your MCPs, agents, skills, and AI tools across Claude Code, Cursor, and more.

$npm i -g @grekt/cli
Get started
Trusted by

You are running AI tools you have never checked.

84%
of developers use AI tools
MCPs, agents, skills, hooks are everywhere in modern development workflows.
Stack Overflow 2025
29%
trust what they're running
Down from 40% last year. The gap between adoption and trust is growing.
Stack Overflow 2025
20%
of skills in registries are malicious
800+ malicious skills found in ClawHub in a single month.
The Hacker News 2026

Know what's running. Know it's safe. Know your stack.

01

See your stack

Full inventory of every AI tool in your projects. MCPs, agents, skills, hooks, commands -- everything visible from the CLI.

02

Check your stack

Every artifact audited for version locks, integrity, and drift. PASS, FAIL, or WARN -- no ambiguity.

03

Own your stack

Lock versions. Pin hashes. Your tools, your machine, your rules. Local-first, no cloud dependency.

grekt eval

Not all tools deserve an A.

Evaluate your AI artifacts before they reach production. Skills, agents, and commands get a grade based on structure, safety, and behavior.

Learn about evals →
auth-agentA
code-reviewB+
mcp-githubD
deploy-cmdF
refactor-skillA-
db-migrateC

Your artifacts. Your infrastructure. Free.

Public

Public registry

Discover and install open artifacts. Free forever.

Explore artifacts →
Private For teams

Self-hosted registry

Same CLI, same workflow. Your artifacts stay on your infrastructure. Zero external dependencies.

Learn more →
Offline

Offline mode

No registry needed. Add artifacts from local paths or Git repos. No versioning, no lockfile determinism.

Learn more →

Unmanaged context drifts. Versioned context stays aligned.

Install and verify once. The whole team gets the exact same version-locked artifacts.

ClaudeClaude
Commit my changes
I'll commit with:
"feat: add user authentication flow"
Who? When? What?
CodexCodex
Commit my changes
Done! Committed as:
"added the login stuff and fixed some things"

Pick the agents, skills, and hooks you need. Skip the rest.

Artifacts ship with skills, agents, hooks, commands. You decide what stays.

$
grekt.yaml
1targets:
2 - claude
3 - codex
4artifacts: {}
5customTargets: {}
6
7
8
9
10
11
12
13

Sync AI configurations to Claude Code, Cursor, and OpenCode

grekt keeps your context clean by default. When you need it, artifacts go straight into each AI tool's context folder, committed to your repo and shared with your entire team.

Project structure
$

Version-locked updates with rollback

One command. Previous selections preserved. Structure changes get flagged. No drift.

$

Configuration drift detection. Built in.

Someone edited a managed file? grekt knows. Run grekt check to detect local modifications and decide whether to restore or keep them.

.claude/skills/overseas_pirate-commits/SKILL.md
1---
2grk-type: skills
3description: Commit messages with pirate flair
4---
5
6# pirate-commits
7
8When the user asks you to commit changes,
9write the commit message in pirate speak.
10
11## Rules
12
13- Start with "Ahoy!" or "Arr!"
14- Replace "fix" with "patch the plank"
15- Replace "add" with "hoist aboard"
16- Keep the scope in parentheses
$

Security scanning for prompt injection and data exfiltration

Run grekt scan to audit artifacts for prompt injection and data exfiltration. Registry artifacts are scanned automatically.

$

Registries list tools. grekt audits them.

CapabilitygrektAlternatives
Security & Trust
Deterministic installsSame versions, same hashes, same result on every machine
Partial
SHA-verified lockfilesTamper-proof, integrity-checked artifacts
Security scanningAudit MCPs, skills, hooks for risks
Some
Drift detectionKnow when configs change under you
Workflow
Runs locallyNo cloud dependency, no data exposure
Some
Multi-tool syncClaude, Cursor, OpenCode in one config
Some
Selective installPick what you need, skip the rest
Infrastructure
Version managementPin, update, rollback artifacts
Partial
Self-hosted registryRun your own private registry

grekt is not a registry and not a cloud platform. It is infrastructure that runs on your machine.

Know your stack.

The answer to "what is running?" should never be "I don't know."

$npm i -g @grekt/cli
Documentation →GitHub →

Frequently Asked Questions

grekt is an open source MCP and AI tool manager. It audits, versions, and secures MCPs, agents, skills, hooks, and commands across Claude Code, Cursor, OpenCode, and more. Everything runs locally on your machine with no cloud dependency.

Install AI artifacts with a single CLI command. grekt downloads, organizes, and locks them with SHA-verified lockfiles for deterministic, reproducible installs. Sync versioned artifacts to specific AI tools or use lazy mode to load them on demand.

The CLI is source available and free. The public registry is free for open artifacts. Self-hosted registries run on your own infrastructure at no cost.

Claude Code, Cursor, OpenCode, and any tool that reads markdown files. Custom targets let you integrate any AI coding assistant into the grekt workflow.

Artifacts follow a versioned schema with support for agents, skills, hooks, and commands. Create them locally or publish to a registry for team-wide use.

grekt tracks every MCP server in your projects with version pinning and SHA integrity checks. Run grekt check to detect drift, grekt scan to audit for prompt injection, and grekt sync to distribute configurations across your AI tools.

grekt uses lockfile-based version management for all AI artifacts including prompts, rules, skills, and agent configurations. Pin specific versions, update with rollback support, and share exact configurations across your team.

Run grekt scan to check any artifact for prompt injection, data exfiltration, and other security risks. Artifacts published to the grekt registry are scanned automatically before listing.