Neovim AI agent with customizable skill-based workflow

An experimental AI agent for experienced Neovim users that provides controlled code assistance via customizable SKILL/rules and cmp completion—suitable for developers willing to accept alpha-stage risk for trial and extension.

GitHub ThePrimeagen/99 Updated 2026-02-01 Branch main Stars 4.2K Forks 200

Neovim plugin AI agent Skill-based rules (SKILL.md) Completion & DX

💡 Deep Analysis

What are the main UX pain points users will encounter in practice, and how can they be mitigated?

Core Analysis ¶

Main UX Pain Points:
- Unclear context boundaries (visual mode may send entire file);
- Replacement robustness issues (misplaced replacements, duplicated comments);
- Configuration/environment sensitivity (cwd changes affect md-file discovery);
- Logging & privacy risks (debug logs may contain sensitive data).

Technical Analysis ¶

Context issues stem from the default strategy of sending files / cwd-based discovery, which can produce excessive or incorrect context.
Replacement errors are often caused by buffer state, completion interference, or unsynchronized cursor positions.
Dependency on opencode and cmp increases sensitivity to environment changes; logs help debugging but require sanitization.

Practical Recommendations ¶

Disable or limit auto-replace: Use a suggestion/preview mode and apply changes manually when uncertain.
Explicitly bound context: Define clear input boundaries in SKILL.md or explicitly select small regions before invoking an operation.
Fix project root / configure md_files explicitly to avoid missing context due to cwd changes.
Sanitize and manage logs: Filter sensitive data before writing logs and keep debug logs in temporary locations.

Important Notice: Enabling auto-replace directly on main branches is risky—validate skills on isolated branches first.

Summary: Most UX issues can be mitigated by configuration and workflow rules; do not rely solely on automated replacements—introduce manual review gates.

88.0%

How to safely introduce and manage SKILL.md in daily development workflows to avoid erroneous edits or difficult rollbacks?

Core Analysis ¶

Core Issue: SKILL.md enables powerful automation but mismanagement can lead to erroneous replacements, hard rollbacks, or sensitive data leaks.

Technical and Process Analysis ¶

Versioning SKILL.md in the repo is fundamental—PR reviews control skill changes.
Add basic validations in CI/precommit (SKILL.md schema, ban sensitive keywords, limit context size) to reduce misuse.
Default to suggestion/preview mode locally; apply changes only after human review.
Logging policy should include sanitization, retention limits, and writing debug logs to temporary locations only.

Practical Recommendations (Stepwise)¶

Repo-ify SKILL.md: Place skill directories in repo and review changes via PRs.
Create test matrix: Write small examples and regression cases to auto-validate skill outputs and boundaries.
Default to suggestion mode: Configure the plugin to generate suggestions rather than auto-replacements in uncertain scenarios.
Log & privacy policy: Sanitize logs before writing, limit retention, and keep debug logs outside the repo in temp paths.
Gradual roll-out: Start with a small set of developers/branches, iterate on SKILL.md templates.

Important Notice: Do not enable unattended auto-replace on main branches—governance and testing are key to risk mitigation.

Summary: Combining repo governance, CI validation, suggestion-mode defaults, and log sanitization enables safe adoption of SKILL.md with rollback and auditability.

87.0%

Why choose SKILL.md files and cmp completion as the architectural core? What are the pros and cons of this technical choice?

Core Analysis ¶

Rationale: Using SKILL.md files and triggering via cmp aims to make skills versionable, reusable, and invoked within the same completion UX developers already use, turning AI operations into routine coding actions.

Technical Analysis ¶

Pros:
Reusability & Auditability: File-based skills are easier to version, review, and share.
Low-friction Invocation: Integration with cmp allows quick invocation in a familiar completion flow.
Structured Constraints: SKILL.md enables encoding rules that limit model outputs and reduce uncontrolled edits.
Cons/Risks:
Limited compatibility: Currently supports only cmp; users of other completion engines will need adaptation.
Context robustness: MD-file discovery depends on cwd, so project structure changes can break rule loading.
Quality dependency: Reliability depends heavily on the quality of SKILL.md templates, raising authoring costs.

Practical Recommendations ¶

If you do not use cmp, evaluate moving to it or waiting for broader support.
Establish clear SKILL.md templates and review processes to reduce misbehaving rules.
Fix project root (cwd) or explicitly configure md_files paths to avoid discovery issues.

Important Notice: File-driven skill + completion integration yields productivity gains but requires investment in rule governance and loading strategies.

Summary: The architecture excels at integrating AI into daily editing but requires trade-offs for compatibility and rule quality governance.

86.0%

Technically, what are the pros and cons of the plugin's architecture separating it from opencode? Is it suitable for enterprise deployment?

Core Analysis ¶

Architectural Stance: The plugin delegates the model/request layer entirely to opencode while handling context management, rule injection, editor replacements, and logging—an intentional single-responsibility design.

Technical Pros & Cons ¶

Pros:
Single responsibility: The plugin focuses on editor integration, skill management, and auditing, making maintenance easier.
Model backend flexibility (conditional): In principle, different models/backends can be used via opencode without changing the plugin.
Faster iteration: Model capabilities and strategies can evolve in opencode without frequent plugin changes.
Cons / Enterprise Risks:
External dependency risk: Enterprises must evaluate opencode availability, SLA, compliance, and data handling.
Compliance & sanitization responsibility: Requests and logs can contain sensitive data; enterprises must implement sanitization and audit policies.
Integration cost: If opencode does not meet requirements, replacing or self-hosting a proxy adds integration work.

Suitability for Enterprise Deployment ¶

Suitable if: The enterprise can control/host opencode (or has a compliant vendor), and can implement data sanitization, credential, and network policies, using phased pilots.
Not suitable if: External services or compliance guarantees are unacceptable—then production use is not recommended.

Important Notice: Conduct a security audit (data flow, logging, credential management) and pilot in a controlled scope before enterprise roll-out.

Summary: Separation of concerns is sound technically, but enterprise adoption depends on opencode governance and compliance; without those, production deployment is risky.

84.0%

✨ Highlights

Skill-driven AI workflow for Neovim with customizable SKILL.md
Integrates with cmp, uses @-prefixed rule completion, supports TS/Lua
README repeatedly warns it's alpha; prompts and rules are currently temporary
Repository shows unknown license and no releases/contributors/commits — exercise caution

🔧 Engineering

Constrains AI requests via configurable skills to provide more controllable code assistance
Includes logging, keymaps, and automatic md file (AGENT.md) discovery for debugging and extension

⚠️ Risks

Features are rapidly evolving; prompt/completion behavior may change significantly
Absent clear license and release history poses legal and compliance risks for org/commercial use
Repo metadata shows 0 contributors, no releases, no commits; may indicate incomplete data or maintenance gaps

👥 For who?

Advanced Neovim users and plugin authors who can configure Lazy, cmp and external opencode tools
Developers who want AI requests constrained to auditable skill sets to reduce misuse