6 plugins · 39 skills · 17hooks · Free for personal use
Your code gets reviewed as it's written
Architecture enforcement, security scanning, and code quality — automated in real-time, not based on what AI was trained on. Issues are caught at write-time, not review-time.
AI agents write code fast.
But fast isn't careful.
Band-aid fixes
AI agents patch symptoms instead of solving root causes. Quick fixes pile up into technical debt.
Ignored architecture
Without guardrails, agents create monolithic files, skip decomposition, and ignore your project's patterns.
Security gaps
Hardcoded secrets, SQL injection, missing input validation — AI-generated code inherits the training data's worst habits.
Other tools catch this after you push. What if it never happened?
The difference is when it works
Traditional tools review after you push. Composure catches issues while you code.
Traditional (post-hoc review)
Composure (inline prevention)
Composure hooks run at the PostToolUse level — outside the LLM, can't be bypassed, zero token cost.
What you get
Six systems that work together. One install.
Understand before you touch
Composure builds a map of your codebase — every function, every import, every dependency. When you change something, it knows exactly what else might break.
Learn more$/composure:blueprint$# Scans code graph → finds related files$# → confirms scope → writes implementation specCatch problems before commits
PostToolUse hooks scan every file you touch — code quality, decomposition limits, naming conventions. Issues are flagged at write-time, not review-time.
Learn more$[composure:no-bandaids] File exceeds 200 lines.$Consider decomposing into smaller modules.$→ Added to tasks-plans/tasks.md [High]Reviews that actually help
PR reviews use the code graph to find blast radius, map callers, and detect untested changes. Not line-by-line nitpicks — structural analysis with receipts.
Learn more$/composure:review$# Impact: 3 files direct, 7 indirect$# Risk: Medium (auth module touched)$# Untested: handleLogin() — 12 callersTests that match your style
Testbench reads your existing tests first. Then it writes new ones that look like yours — same imports, same patterns, same style.
Learn more$/testbench:generate src/lib/auth.ts$# Read 3 existing test files for conventions$# Generated: 8 tests (4 happy, 2 edge, 2 error)$# Style: vitest + testing-library (matched)Deploy with confidence
Shipyard generates CI/CD workflows, validates Dockerfiles, and runs preflight checks. From zero to production pipeline in one command.
Learn more$/shipyard:ci-generate$# Detected: Next.js + pnpm + Vercel$# Generated: .github/workflows/ci.yml$# Stages: lint → typecheck → test → build → deployThe Composure Suite
Five specialized plugins and one brain — sharing one data model, one task queue, and one commit gate.
Composure
Architecture & code quality
17 skills
Sentinel
Security scanning
5 skills
Shipyard
CI/CD & deployment
6 skills
Testbench
Convention-aware testing
3 skills
Design Forge
Premium design patterns
2 skills
Cortex
AI memory & reasoning
4 skills
One install. Six systems. Zero configuration.
View all pluginsArchitecture-aware coding, priced for keeps.
Free forever for personal use. Pro at $39/mo ($19/mo annual founding rate). Team for orgs of any size. Template kits one-time.
Free
Forever free — personal use, all setup skills, 5 reviews/day.
- Code knowledge graph
- Architecture guides + audits
- Security scanning (OWASP)
- Test framework calibration
- Deployment readiness checks
Pro
Single dev — 22 DB patterns, unlimited reviews, commercial use.
- Everything in Free
- 22 multi-tenant DB patterns
- Blueprints + Backlog + Cortex memory
- Test generation + CI/CD generation
- Deep security + package risk
Team
Multi-seat — team management, no minimum seats.
- Everything in Pro
- Team admin + seat management
- Shared usage + billing
- 1+ seat, no minimum
- Commercial use (organization)
Enterprise
Compliance, SSO, dedicated support, custom rulesets.
- Everything in Team
- Compliance audit reporting
- Multi-surface doc composition
- SSO / SAML (forthcoming)
- Custom guardrail rulesets
Or skip the boilerplate. Start with the monorepo.
One-time purchase, lifetime updates. After checkout we send you the Composure installer — one command in your terminal drops the template into a new project folder.
Not sure where to start?
We'll set it up with you. From one-time audits to ongoing architecture partnership.
Get started in 2 minutes
Three commands. Two minutes. Free.
Install Composure
$pnpm dlx create-composureInitialize your project
$/composure:initializeRun your first audit
$/composure:auditTakes 2 minutes. Free. No credit card required.