What is APKG?
APKG is a package manager designed from the ground up for AI tooling. Where traditional package managers deal in libraries and modules, APKG manages AI-specific artifacts with metadata and lifecycle requirements unique to the AI ecosystem.
The problem
Section titled “The problem”NPM, pip, and other established package managers were not designed for the demands of AI artifacts. They lack native support for:
- Model compatibility declarations — specifying which LLM families, versions, and context-window sizes a package supports.
- Runtime constraints — declaring GPU requirements, memory floors, and provider availability.
- Capability negotiation — describing what tools, resources, and prompts an MCP server exposes so that consumers can match at install time.
- Provenance and signing — guaranteeing that the package you install was built from the source it claims, by the author it claims.
APKG addresses these gaps head-on with a metadata model that treats AI-specific concerns as first-class citizens rather than afterthoughts.
What APKG manages
Section titled “What APKG manages”The current documentation focuses on four common package types, each tailored to a different kind of AI artifact:
- Skills — Discrete AI capabilities with defined inputs and outputs, such as text summarization or code review.
- Agents — Autonomous or semi-autonomous AI agents with tool bindings, like a research assistant or deployment bot.
- Commands — Slash commands for AI coding assistants, like an audit trigger or deployment command.
- Rules — Guidelines and constraints that shape AI assistant behavior, like coding standards or security policies.
A single command installs a package, verifies its provenance, checks model compatibility, and wires it into your project:
{ "dependencies": { "@acme/code-review-agent": "^2.1.0", "@acme/summarization-skill": "^1.4.0", "@openai/mcp-tool-server": "^3.0.0" }}Key features
Section titled “Key features”- Sub-second installs — Every tarball is stored and retrieved by its SHA-256 digest, enabling global deduplication and zero-copy installs via hard-linking from cache.
- Cryptographic signing and provenance — Ed25519 signatures and SLSA-compliant provenance attestations give you a verifiable chain from source commit to published artifact.
- Sandboxed lifecycle hooks — Pre-install, post-install, and custom hooks execute inside a WASM-based sandbox with an explicit capability policy. No network access, no filesystem escape.
- AI-native metadata — Manifests declare model compatibility matrices, GPU and memory requirements, MCP capability surfaces, and prompt variable schemas.
- First-class MCP support — The Model Context Protocol is part of APKG’s broader AI-native metadata model and ecosystem integration story.
How it works
Section titled “How it works”Every APKG package starts with an apkg.json manifest at its root. This file declares the package’s type, dependencies, runtime requirements, and metadata. When you run apkg install, the CLI resolves the full dependency tree, downloads signed tarballs from the registry, verifies integrity and provenance, and links packages into your project. An apkg-lock.json lockfile captures the exact resolved state so that installs are reproducible across machines and CI environments.
When you’re ready to share your work, apkg publish signs your package, uploads it to the registry, and makes it discoverable to others through search and compatibility filtering.
Next steps
Section titled “Next steps”- Installation — How to install the APKG CLI on your machine.
- Quick Start — Create, install, and publish your first package.
- Reference — Manifest, lockfile, and configuration reference docs.
- CLI Reference — A complete reference for all APKG commands.