Everything Stout can do
A universal package registry with built-in supply chain security, community review, and first-class AI agent support.
Pull-Through Proxy
NewProxy upstream registries like npm, PyPI, and Docker Hub. Packages are scanned on first pull and gated by your configurable policies before reaching developers.
Upstream Mirroring
Configure upstream registry URLs per format. First pull fetches from upstream, scans, and caches locally.
Configurable Gates
Block packages that fail vulnerability scans or haven't met community review thresholds. Developers see a clear status until cleared.
Policy Engine
Set per-format policies: max CVE severity, minimum review score, required SBOM, and license compliance rules.
Transparent Caching
Scanned packages are cached locally. Subsequent pulls are instant with no upstream dependency.
All 15 Formats
Proxy mode works with every supported format — Go, npm, Helm, Docker, PyPI, Maven, NuGet, and more.
Audit Trail
Every proxied package is logged with scan results, policy decisions, and who pulled it.
$ npm install express --registry https://registry.stout.io/npm/myorg
Fetching from upstream (npmjs.org)...
Scanning for vulnerabilities... 0 critical
Checking license compliance... MIT (allowed)
Generating SBOM...
Evaluating gate policies... passed
Cached and served express@4.21.0
AI Agent Registry
NewThe first package registry with native support for AI agents, MCP servers, and skill bundles — with guardrail scanning built in.
agent.yaml Manifest
Declare kind (skill, mcp-server, agent-bundle), permission tier, dependencies, and entry points in a structured manifest.
LLM Guardrail Scanning
Every submission scanned for prompt injection, unicode trojans, and code obfuscation. Critical findings block publication.
MCP Server Support
Native mcp-server kind with permission tier filtering. Clients inspect requirements before install.
Permission Tiers
Five tiers from readonly to full. Tool declarations validated against tier — Bash requires execute, Write requires filesystem.
Agent Security Checks
Post-build scanning for credential harvesting patterns, data exfiltration attempts, and suspicious file access in entry points.
Publisher Verification
OAuth-linked publishers are verified against GitHub, GitLab, or Google. Verification status shown on every agent listing.
$ skillctl publish myorg https://github.com/myorg/my-agent v1.0.0
Validating agent.yaml manifest...
Scanning for guardrail violations... clean
Validating permission tier (network)...
Running agent security checks... passed
Signing with Sigstore (keyless)...
Published myorg/my-agent@1.0.0 (kind: mcp-server, tier: network)
Universal Package Registry
Fifteen package formats, one server. Native protocol support means your existing tools work without changes.
Go Modules
Full GOPROXY protocol. Set GOPROXY to your Stout instance and go get works out of the box.
npm Packages
Complete npm registry protocol with packument serving, scoped packages, and search.
Helm Charts
Native Helm chart repository with index.yaml, per-owner namespacing, and ETag caching.
Docker / OCI Images
Full OCI Distribution spec. Push source, get a signed container image. Works with docker pull.
Ruby Gems
Compact index and JSON API for RubyGems. Dependency resolution and gemspec metadata included.
Python Packages
PEP 503 Simple Repository API with wheels and sdists. pip install just works.
Terraform Modules
Terraform Module Registry Protocol with .well-known service discovery. terraform init just works.
Terraform Providers
Terraform Provider Registry Protocol with per-OS/arch download support and GPG signing metadata.
Rust Crates
Cargo sparse registry protocol with config.json and sparse index. cargo add just works.
Maven Packages
Maven repository protocol with POM/JAR serving, maven-metadata.xml, and checksum verification.
NuGet Packages
NuGet V3 API with service index, registration, flat container, and search. dotnet add package just works.
Swift Packages
Swift Package Registry protocol (SE-0292) with Package.swift manifest serving and version listing.
PHP / Composer
Composer v2 repository protocol with packages.json index and p2 metadata. composer require just works.
Dart Packages
pub API v2 protocol with pubspec.yaml metadata extraction. dart pub add just works.
Agent / Skill Packages
First-class agent.yaml manifest format for AI skills, MCP servers, and agent bundles.
Supply Chain Security
Every artifact — whether built from source or proxied from upstream — is scanned, signed, and given an SBOM before it reaches developers.
Sigstore Signing
Keyless signing via Fulcio with transparency log entries in Rekor. Verify provenance without managing keys.
Dual Vulnerability Scanning
Every build is scanned with both Grype and Trivy. Critical and high severity CVEs block publication.
SBOM Generation
Automatic Software Bill of Materials in both CycloneDX and SPDX formats via Syft, attached to every artifact.
Reproducible Builds
Artifacts are rebuilt from source a second time and SHA-256 digests compared. Mismatches block publication.
Source-Only Publishing
All formats reject pre-built artifact uploads. Every package is built from source in a sandboxed environment.
OpenTelemetry Tracing
Every pipeline step is traced with OTLP spans — from clone to publish. Full observability into every build.
AI Agent Reviews
NewAutomated, AI-powered package reviews that run on every publish and proxy pull. Use built-in review agents, subscribe to community agents, or bring your own.
Built-in Review Agents
Stout ships with security, quality, and compliance review agents. Enable them in your policy and every package is automatically evaluated.
Bring Your Own Agent
Publish a custom review agent with your own model, prompts, and logic. Runs sandboxed with the same permission tiers as all agents.
Subscribe to Agents
Subscribe to another user's review agent to apply their analysis to your packages. Results cached globally for efficiency.
Configurable Gates
Set review agents as advisory or as gates that block packages below your score thresholds. Multiple agents — all gates must pass.
3-Dimensional Scoring
Every review scores security, code quality, and compliance independently. Set per-dimension thresholds in your gate policies.
Configurable Triggers
Trigger reviews on publish, proxy pull, manually, or any combination. Configure per agent in your review policy.
review_agents:
- agent: "@stout/security-reviewer"
trigger: [publish, proxy]
mode: gate
threshold: { security: 3.5 }
- agent: "@acme-security/deep-scan"
trigger: [publish]
mode: advisory
cache: global
- agent: "~myorg/custom-compliance"
trigger: [publish, proxy, manual]
mode: gate
cache: per-run
Community & Trust
A reputation-weighted review system where verified humans score packages on security, quality, and documentation.
3-Dimensional Reviews
Community reviewers score packages on three axes: security posture, code quality, and documentation.
Reviewer Reputation
Reviewers earn reputation through helpful votes. Higher reputation means more weight in aggregate scores.
Identity Verification
KYC verification via Veriff ensures reviewers are real people. Required before submitting reviews.
Review Policies
Configurable per package type — minimum reviews, score thresholds, auto-publish rules, and stale review expiry.
Trust Levels
Four trust tiers — unverified, verified, trusted, and admin — control what actions users can perform.
License & Compliance
Automatic license detection and configurable policy enforcement across all your dependencies.
SPDX License Detection
Automatic license detection from go.sum, package-lock.json, and Chart.yaml across every dependency.
Policy Enforcement
YAML-configurable deny/warn/allow lists for SPDX license IDs. AGPL, SSPL, and BUSL blocked by default.
Developer Experience
A CLI, scoped tokens, organizations, OAuth login, and audit logging — everything you need to manage packages at scale.
skillctl CLI
Full-featured CLI with login, search, install, publish, verify, and review commands. Installs agents by kind.
Scoped API Tokens
Generate tokens with publish or admin scopes. SHA-256 hashed storage, expiry dates, and last-used tracking.
Organizations
Create org namespaces with owner, admin, member, and read-only roles. Publish under @org/ prefixes.
OAuth Login
Sign in with GitHub, GitLab, or Google. Link multiple providers to one account for publisher verification.
Audit Logging
Every action recorded server-side with actor, resource, and metadata. Client-side install audit log included.
Rate Limiting
Three-tier rate limiting — public, auth, and authenticated — protects the registry from abuse.
Ready to get started?
Join the waitlist for early access to Stout Cloud, or get started with the free Community plan.
You're on the list! We'll be in touch.