Build production-ready APIs and apps with typed SDKs, out-of-the-box authentication, a portable architecture, AI tooling, and crypto integrations. Fastify • OpenAPI • Next.js • Expo — one stack, multiple platforms.
🚧 Active development — Explore, fork, and contribute. 🏗️
@repo/core API functionscaptureError, getErrorMessage)Run with pnpm <script>.
Setup
- setup — Full setup (install, hooks, gitleaks, osv, database)
- setup:gitleaks, setup:osv — Install Gitleaks, OSV scanner
- setup:database — Database tools (Docker, Supabase CLI)
- reset — Local API database: Supabase reset + Drizzle migrations + seed (pnpm --filter @repo/api reset). See apps/api/README.md
Primary
- build — Build packages and apps
- dev — Start dev (core, react, error, utils, api, web)
- qa — Full check: install → checktypes → lint → build → test (unit) → test:e2e (Fastify + Next, local spawn)
Format / Lint
- checktypes — Type-check all packages
- format — Format code (Biome)
- lint — Lint with Biome + ESLint
- lint:biome, lint:biome:fix — Biome check, fix
- lint:eslint, lint:eslint:fix — ESLint check, fix
- lint:fix — Fix both linters
Test
- test — Run unit tests (packages + apps)
- test:e2e — E2E (Fastify + Next)
CI
- Lint and security run on every PR. App E2E (web-e2e, api-e2e) and package tests (packages-test) run only when relevant code changes. Mobile: EAS build, preview on main, PR OTA—see GitHub Actions and Mobile CI/CD.
Security
- security:block-files — Block sensitive file patterns
- security:secrets — Scan staged files for secrets
- security:secrets:full — Full Gitleaks scan
- security:osv — OSV vulnerability scan
- security:audit — pnpm audit (high+)
- security:check — Run security check script
Hooks
- hooks:pre-commit — Pre-commit: security + Biome staged
- hooks:security — Block files, scan secrets, OSV
Misc
- update-deps — Update pnpm and all dependencies
Full docs: basilic-docs.vercel.app
start:localhost, start:tunnel)$ claude mcp add basilic \
-- python -m otcore.mcp_server <graph>