Zing Forum

Forum HomeLLM Answers & Content StrategyReading

Reading

stamp-cli: A Local Code Review Protocol for Agent Workflows

stamp-cli is a local, UI-less code review system designed for AI agents. It enables secure code collaboration between agents through structured review processes and cryptographic signature mechanisms.

AI AgentCode ReviewGitCLIEd25519SecurityAutomationDevTools
Published 2026-04-20 06:43Recent activity 2026-04-20 06:54Estimated read 8 min
stamp-cli: A Local Code Review Protocol for Agent Workflows
1

Section 01

stamp-cli: Introduction to the Local Code Review Protocol for Agent Workflows

stamp-cli is a local, headless code review system designed for AI agents, aiming to solve efficiency and security issues in code reviews between agent clusters. It enables secure collaboration between agents through structured review processes and cryptographic signature mechanisms (Ed25519). It has no Web UI and runs on CLI and git hooks. Its core goal is to provide an efficient, verifiable, and auditable code review protocol for agents.

2

Section 02

Project Background and Core Issues

As AI agents play an increasingly important role in software development, traditional code review processes (relying on GitHub Web interfaces and human judgment) are neither efficient nor suitable for agent clusters. Thus, stamp-cli was born: it is a local headless pull request system designed specifically for agent-to-agent review workflows. The author agent opens a diff, the reviewer agent returns structured feedback, and after iterating until merge rules are met, it signs and merges before pushing—remote repositories will reject pushes that lack proper review and signature.

3

Section 03

Core Design Philosophy and Key Concepts

Design Philosophy

stamp-cli is not a GitHub replacement; it is designed for rapid iteration of agent clusters and keeping the main branch clean. It has no Web UI or human comment threads and relies only on CLI and git hooks. Design principles include: output as prose (easily understandable by LLMs), control flow via exit codes, state stored in files, and idempotent operations.

Key Concepts

  • Reviewer: Defined by .stamp/reviewers/.md prompt files; stamp init scaffolds three initial reviewers: security, standards, and product.
  • Verdict: The reviewer's judgment on the diff, recorded in .git/stamp/state.db by (base_sha, head_sha) to ensure traceability.
  • Gate: The latest verdict of required reviewers must be 'approved', configured in .stamp/config.yml.
  • Proof: stamp merge uses Ed25519 to sign the payload, which is attached to the merge commit's footer, providing non-repudiable audit trails.
  • Hook: stamp-verify runs in the server-side pre-receive phase, re-executing client-side checks to prevent bypasses.
4

Section 04

Typical Workflow and Exit Code Semantics

Typical Workflow

  1. Initialization: stamp init scaffolds the .stamp/ directory and key pair
  2. Review: stamp review --diff main..feature runs all configured reviewers in parallel
  3. Status Check: stamp status --diff main..feature checks the gate status
  4. Merge: stamp merge feature --into main creates a signed merge commit
  5. Push: stamp push main pushes the main branch; the remote advances after hook verification passes

Exit Code Semantics

Command Exit Code 0 Non-zero Exit
stamp review Reviewers ran and recorded Invocation failed (reviewer crash, DB error); follow with stamp status check
stamp status Gate is open (all required reviewers approved) Gate is closed
stamp merge Merge is signed and on main branch Gate closed, pre-merge check failed, or git conflict
stamp push Remote accepted Hook rejected or git error
stamp verify Proof is valid Verification step failed
5

Section 05

Security Model and Deployment Modes

Security Model

  • Protective Measures: Author agents cannot merge unreviewed code; cannot forge merges (signature keys are securely stored); cannot bypass remote verification (enforced by server-side hooks).
  • Security Boundary: Humans holding signature keys can generate valid signatures, but signatures provide non-repudiability (merge attribution is traceable).
  • Pre-merge Check Risks: required_checks run before signing; non-zero exit blocks merging; changes to .stamp/config.yml require review.

Deployment Modes

  1. Self-hosted Remote: User server runs git+sshd, installs pre-receive hooks, and rejects unsigned pushes.
  2. Self-hosted + GitHub Mirror: stamp server is the source of truth; post-receive hooks mirror to GitHub; GitHub branch protection restricts pushes.
  3. Pure Local: No server; generates signed merges, verifiable but cannot prevent bypasses; suitable for individuals or small teams.
6

Section 06

Practical Tools and Future Outlook

Reviewer Prompt Engineering Tools

  • stamp reviewers test --diff : Tune prompts without recording to DB
  • stamp reviewers show : View verdict history and statistics
  • stamp reviewers verify []: Check prompt/tool matching

Technical Dependencies and Licensing

  • Requires Node 22.5+ (uses node:sqlite and Ed25519 API)
  • MIT license, but depends on @anthropic-ai/claude-agent-sdk (Anthropic proprietary license)

Future Outlook

stamp-cli represents the direction of AI-native development tools: designing dedicated protocols for agents rather than adapting human tools. It will become an important part of the infrastructure for managing AI agent collaboration in the future.

Continue Reading

Keep going with more reads from the same topic.

01
Splinter: A Lock-Free Zero-Copy Shared Memory KV and Vector Storage Library That Eliminates Socket and Memcpy Overhead for LLM Inference

Splinter: A Lock-Free Zero-Copy Shared Memory KV and Vector Storage Library That Eliminates Socket and Memcpy Overhead for LLM Inference

Splinter is a minimalist, high-performance key-value (KV) and vector storage system enabling zero-latency inter-process communication via shared memory and atomic operations. With only 766 lines of core code, it supports millions of operations per second and 768-dimensional vector storage, offering a new architectural approach for local LLM inference and data-intensive applications.

Recent activity 2026-04-03 08:49
02
Folkering OS: When the Operating System Itself Is AI—A Self-Evolving Bare-Metal Rust System

Folkering OS: When the Operating System Itself Is AI—A Self-Evolving Bare-Metal Rust System

Folkering OS is the world's first AI-native bare-metal operating system, entirely written in Rust no_std without relying on Linux, POSIX, or libc. It can generate commands from scratch, compile them into WASM, and run them in 10 seconds, achieving true self-evolution.

Recent activity 2026-04-09 16:15
03
LLM-assisted-analysis: A New Approach to Detecting Logical Vulnerabilities in Smart Contracts Using Large Language Models

LLM-assisted-analysis: A New Approach to Detecting Logical Vulnerabilities in Smart Contracts Using Large Language Models

This project explores how to use Large Language Models (LLMs) to detect logical vulnerabilities in Ethereum smart contracts, especially business logic flaws that are difficult for traditional static analysis tools to capture, such as economic manipulation and execution order errors.

Recent activity 2026-04-09 16:18
04
Panorama of AI Image Generation Technology: A Complete Guide to Commercial APIs, Open-Source Models, and Developer Tools

Panorama of AI Image Generation Technology: A Complete Guide to Commercial APIs, Open-Source Models, and Developer Tools

This article provides an in-depth analysis of the awesome-image-generation project—an authoritative list maintained by Backblaze Labs. It comprehensively covers commercial services, open-source weight models, development frameworks, and deployment infrastructure in the AI image generation domain, offering a systematic reference for developers building visual applications.

Recent activity 2026-04-18 02:57