mano-afk

Fully automated pipeline that builds, deploys, and tests applications from a natural language description. The user is AFK for the entire duration. The skill learns from each project — build rules (references/rules.md) and user preferences (references/preferences.md) are updated inside the skill's own references/ directory after each build. No files are written outside the skill folder or the target project directory.

Data, Privacy & Safety

• What it does: Creates a new project directory, installs dependencies, starts local dev servers, and runs tests via curl and mano-afk run. All actions are confined to the project directory. The tech stack (and therefore which toolchain binaries are used — e.g., node/npm for JS projects, python3/pip for Python projects) is determined at build time based on the user's request. These are standard development tools, not fixed dependencies of the skill itself — only curl is always required.
• What it does NOT do: Does not read or transmit local files outside the project, does not access clipboard or browser history, does not modify system configuration, and does not send data to any external service (except standard package registries like npm/PyPI during dependency install).
• Persistence: Build rules (references/rules.md) and user preferences (references/preferences.md) are stored inside the skill's own references/ directory — never in global paths, home directory dotfiles, or other skills' directories.
• Credentials: No API key is required to use the skill. ANTHROPIC_API_KEY is optional (only for cloud E2E testing) and stored in the project's deploy/.env (gitignored), never in the user's shell profile.
• Supply chain: The mano-afk CLI is open source (GitHub). The Homebrew formula (formula source) builds directly from the public source. Prebuilt binaries are available on GitHub Releases.
• User control: Step 0 is the only interactive step — the user confirms scope before autonomous execution begins. The build stops automatically if 10 fix iterations are exhausted or if it encounters missing permissions.

Optional environment variables

These are not required to use the skill. The skill asks the user during Step 0 whether to configure them. If declined, the corresponding features are skipped.

Variable	When needed	Purpose
ANTHROPIC_API_KEY	Only if E2E test mode is set to cloud	Powers cloud-based visual E2E testing via mano-afk run

This variable is not read by the skill itself at install time. It is configured interactively during Step 0 and stored in the project's deploy/.env (gitignored, never in the user's shell profile).

Claude Code users: Use the Claude Code-specific skill at skill/.

Architecture

Three roles collaborate to deliver the application:

• Main Agent (you): orchestration, test execution, fix coordination, user communication
• Build Sub-agent: requirements → architecture → code → deploy → bug fixes (when given specific errors)
• Adversary Sub-agent: independent test case design (does not execute tests)

The main agent delegates code generation to the build sub-agent (the longest phase) and stays free during that time. The main agent runs all tests directly for full visibility into results. The build sub-agent (defined in references/build-pipeline.md) never runs tests — it only writes code and deploys.

Orchestration

AFK rule: Step 0 is the only user interaction window. From Step 1 onward, make all decisions autonomously — never ask the user. Ambiguous decisions (8bit vs float, React vs Vue, port selection) use the most reasonable default and document in PRD.md. Only stop if completely infeasible (missing hardware, no permissions, 10 fix iterations exhausted).

Step 0: User Setup (interactive)

This is the only step where the agent may ask the user questions.

Requirements triage: If the request is too vague to determine core functionality (e.g., "build me an app"), or contains ambiguous requirements that could lead to fundamentally different products, ask the user to clarify — keep it to 1-2 focused questions, not a long interview. Non-critical gaps (visual design, validation rules, tech stack, layout) are filled autonomously by the build sub-agent.

E2E test mode: Check mano-afk config --get e2e-mode (local or cloud).

• local — requires default-model-path to be configured via mano-afk config --set default-model-path <path>.
• cloud — requires ANTHROPIC_API_KEY environment variable to be set.
• Not set — first-time setup. Check the platform:
  • macOS: ask the user: Local (Mano-P) or Cloud (Anthropic API key) or Skip?
  • Other platforms: Local is not available. Ask the user to configure Cloud or Skip.
  • If Local: run mano-afk check to verify SDK and model. Follow the printed guidance to resolve any missing components (install SDK, set model path, etc.).
  • If Cloud: ask the user to provide their Anthropic API key. Write it to the project's deploy/.env as ANTHROPIC_API_KEY=<key>. Run mano-afk check to confirm.
  • If mano-afk run or mano-afk check prints setup guidance (missing model path, missing API key), follow the instructions in the output to help the user complete configuration.
  • If the user declines both → Skip E2E tests (logged in report.md).

When Step 0 completes, tell the user: "Hold the beer. AFK from now on."

Step 1: Prepare (autonomous — no user interaction)

Derive a short, kebab-case project name from the request (e.g., "make me a todo app" → todo-app).

Project directory: Read the configured project root via mano-afk config --get projects-dir (default: ~/Projects/). Project directory: {projects-dir}/{project-name}/.

Read references/report-template.md — you will use it in Step 4 to write report.md. Note the absolute path to the references/ directory — it will be passed to sub-agents for the remaining reference files.

Step 2: Build (sub-agent)

Spawn a build sub-agent via sessions_spawn with runtime="subagent". Construct the prompt with:

1. The absolute path to build-pipeline.md — instruct the sub-agent to read and follow it
2. The absolute path to this skill's references/ directory — the sub-agent reads rules.md, preferences.md, and templates as needed
3. The user's original request, verbatim
4. The project directory path

Respond to the user immediately with what is being built and the project directory. The build sub-agent follows 4 phases internally: Phase 1 generates PRD.md (product requirements with acceptance criteria), Phase 2 designs architecture and generates README.md (with test cases derived from PRD), Phase 3 writes code, Phase 4 deploys. Wait for progress.md to show status: ready_for_testing.

Timeout: Build tasks (dependency installation, compilation, deployment) can take a long time. Set a generous timeout when spawning the sub-agent — at least 30 minutes, or no timeout if the platform supports it.

Step 3: Verify Deployment

Before testing, confirm the app is accessible:

1. Check that deploy/start.sh exists in the project
2. Run it if servers are not already running
3. Verify with curl or port check
4. If deployment fails (start.sh missing, server crashes, port unreachable), read deploy/backend.log and deploy/frontend.log, then go to Step 5 (Fix Loop) with the deployment error as the failure description

Step 4: Test

Execute every test case defined in the README across all categories. No test case may be skipped or deferred.

Before starting each category, count the total test cases from the README. Print a progress counter for each test: [3/18] api_3 PASS or [5/18] api_5 FAIL. This makes skipped tests visible — if the counter jumps from 3 to 7, tests 4-6 were skipped.

Record results in report.md (use the report template). On failure, include full error output (response body, stderr, logs).

Headless environments: If no graphical desktop is available, skip VLA tests (4.3). Adversary review (4.4) still runs — triage uses code inspection and curl, not mano-afk.

4.1 Lint

Run the linter configured by the build sub-agent. Auto-fix what's possible (--fix), then report remaining errors.

4.2 API Tests

Run every API test case defined in the README. Use curl -s -w "\nHTTP_STATUS:%{http_code}\n" to capture response body and status code. Print full response body on failure.

mano-afk requirement (4.3): mano-afk is required only for E2E visual tests. Install if missing: macOS: brew install Mininglamp-AI/tap/mano-afk. If the user declines installation or it fails, skip 4.3 and log the reason — all other test categories still run.

4.3 VLA Tests (E2E)

Read mano-afk config --get e2e-mode. If local → use Local mode. If cloud → use Cloud mode. If not set → Skip (record reason in report.md).

Database reset: Before running the first E2E test, clear all application tables (e.g., DELETE FROM each app table, or delete and re-initialize the SQLite file). This removes residual data from API tests. Do NOT reset between individual E2E tests — they run sequentially and may depend on state created by prior tests.

Run every E2E test case defined in the README using the chosen mode:

mano-afk run "{steps}" --url "{url}" --expect "{expected}"

--url opens the target page in the default browser before the agent starts. The agent sees the page already loaded — do NOT include "Open localhost:..." in the task steps.

All execution parameters (--local/--cloud, --max-steps, --minimize) are read from mano-afk config. CLI flags override config when specified. Use mano-afk config --list to see current values.

Execution rules:

• Run each test sequentially
• Each mano-afk task can take up to 30 minutes. Set exec timeout to at least 1800s, or use background: true with yieldMs: 1800000. Never use a short timeout
• Do not use mouse/keyboard while a test is running
• Use mano-afk stop to: resolve 409 session conflicts, clean up after a killed process, or abort a running task

4.4 Adversary Review

After all previous tests pass, spawn an adversary sub-agent via sessions_spawn with runtime="subagent". Construct the prompt with:

1. Role: "You are an independent QA reviewer. Your job is to identify potential problems the builder likely missed."
2. The full content of the project's PRD.md (requirements and acceptance criteria) and README.md (architecture and test cases)
3. The project directory path (the adversary reads source code for code-level findings)

The adversary does NOT interact with the running app — it reviews requirements and code only.

The adversary sub-agent identifies potential problems only — it does NOT execute anything. It returns findings in two layers, each as a table with columns: ID, Finding, Severity, Suggested Verification.

• Layer 1 — User perspective: usability gaps, cross-feature consistency, confusing flows, poor UX
• Layer 2 — Code perspective: data integrity, missing validation, error handling, state consistency

Constraints: cover both layers, do NOT repeat issues already in README test cases, do NOT flag security vulnerabilities (XSS, SQL injection, CSRF).

Triage each finding yourself using the appropriate method: code inspection (schema/config issues), API test (backend behavior via curl), or E2E test (UI rendering, user flows, visual state). At least 2-3 findings must be verified via E2E test. Reset the database before running adversary E2E verifications to avoid pollution from prior tests. Record each verdict in report.md: confirmed (→ fix loop) or dismissed (with reason).

Completion Checklist (before proceeding to Step 5 or 6)

Before moving forward, verify each item. If any is "no", go back and complete it.

• Every API test case in README executed and recorded
• Every E2E test case in README executed and recorded
• Adversary review completed with findings from both layers
• At least 2-3 adversary findings verified via E2E test
• All confirmed adversary findings entered into fix loop

Step 5: Fix Loop

If any test fails:

1. Collect all failures with full error output (response body, stderr, logs, mano-afk output)
2. Spawn a new build sub-agent in fix mode via sessions_spawn with runtime="subagent" — provide:
   • The absolute path to build-pipeline.md (fix mode does not need other reference files)
   • Project directory path
   • Detailed failure descriptions: test ID, command run, expected result, actual result, full error output
3. Wait for the sub-agent to fix and re-deploy (progress.md shows status: ready_for_testing)
4. Re-run failed tests with the same tool and method used in the original test. A test verified via E2E test must be re-verified via E2E test.
5. Repeat until all pass (max 10 iterations)

E2E false positives: If an E2E test fails but you inspect the code and confirm the implementation is correct (the failure is a vision model misinterpretation), dismiss it as a false positive in report.md with your reasoning. Do not enter the fix loop for false positives — fixing correct code wastes iterations.

Step back on repeated failures: If the same test fails 2+ times, include a note in the fix prompt: "This test has failed N times. Previous fix attempts: [descriptions]. Consider a structural fix rather than a patch."

Exhausted iterations: If 10 iterations are reached and failures remain, proceed to Step 6 with current results. Finalize report.md with all remaining failures, iteration history, and a summary of what was attempted.

Step 6: Completion

• Summarize to the user: total tests, pass/fail, project directory
• Update rules: Review the fix loop history. If any error pattern would prevent the same class of bug in a future project, add a general rule to references/rules.md (max 100, remove least valuable if full). Also merge any new-rules.md the build sub-agent wrote in the project root.
• Update preferences: If the user gives follow-up feedback (styling, features), update references/preferences.md

Reference Directory

The references/ directory contains files that evolve across projects:

File	Purpose	Max entries
build-pipeline.md	Build sub-agent instructions (phases 1-4 + fix mode)	—
rules.md	General build rules, lessons learned	100
preferences.md	User styling/UX preferences	50
prd-template.md	PRD generation template (5 chapters)	—
project-structure.md	Standard directory layout template	—
readme-template.md	README.md generation template	—
report-template.md	report.md generation template	—

Rules and preferences are updated during execution (fix loop lessons, post-completion feedback) and persist across projects. All persistent state lives inside this references/ directory — the skill never writes to global paths, home directory, or other skills' directories.