L1 · Capability layer

Plugins.
Plug, configure, ship.

A tool, a guardrail, a compliance check, an evaluator. Drops into any workspace in any runtime. The smallest unit of capability you can buy.

L1Browse

17 plugins, runtime-neutral.

Filter by category. Click a card to see permissions, supported runtimes, changelog, and full description.

12first-party · 5 community
OFFICIAL
OWASP Agentic Top 10
molecule/owasp-agentic

Real-time scanning against the OWASP Agentic Top 10 attack vectors. Blocks prompt injection, tool poisoning, and lateral A2A escalation before execution.

securityFREE
OFFICIAL
§
EU AI Act · Art. 12/13/17
molecule/eu-ai-act

Auto-generates audit trails, transparency disclosures, and human oversight records mapped to specific EU AI Act articles. Export-ready PDF & JSON.

compliance$49/mo
Bash Destructive Guard
molecule/bash-guard

Refuses rm -rf, chmod 777, fork bombs, and 60+ destructive shell patterns. Hard block, no override.

guardrailFREE
16-Dimension Code Review
molecule/code-review-16d

Multi-dimensional review — security, performance, readability, test coverage, dependency hygiene, license compatibility, and 10 more.

workflow$19/mo
Cross-Model Adversarial Review
community/adversarial-xreview

Routes the same diff to Claude, GPT-5, and Gemini. Surfaces disagreements as review comments — consensus or escalation.

workflow$29/mo
CVE Supply-Chain Gate
molecule/cve-gate

Blocks any agent from importing dependencies with known CVEs above your configured CVSS threshold. NIST + GHSA feeds.

security$39/mo
Path Freeze
molecule/path-freeze

Lock workspace filesystem access to declared paths. Anything outside throws EACCES at the runtime layer.

guardrailFREE
HITL Approval Router
molecule/hitl-router

Tiered human approval — single reviewer, dual sign-off, or executive override. Routes by risk score and org topology.

HITL$24/mo
Cron-Tick Learner
community/cron-learner

Hourly memory consolidation. Promotes repeated successful patterns into Hermes skills. Set-and-forget.

memory$15/mo
Doc Sync on Diff
molecule/doc-sync

Watches code diffs, regenerates the corresponding docs section, opens a PR. Keeps docs.* and src/* in lockstep.

docsFREE
Browser Automation Kit
community/browser-kit

Headless Chromium under HITL gating. Form fill, scrape, screenshot, PDF export — with a kill switch on every action.

workflow$19/mo
PR Seven-Gate Validator
molecule/pr-7gate

Lint, type, test, coverage, security, license, signoff. Seven mandatory gates before any agent-authored PR can merge.

workflow$29/mo
Secret Redactor
molecule/secret-redactor

Redacts API keys, tokens, and PII from agent prompts and outputs. Pattern library updated nightly.

securityFREE
Datadog Trace Bridge
community/datadog-tracer

Streams every tool call as a Datadog span. Latency, error rate, and cost all flow into your existing dashboards.

observability$12/mo
License Compatibility Gate
molecule/license-gate

Blocks GPL/AGPL contamination of proprietary code. Per-package allowlist. SPDX-compliant.

compliance$14/mo
Dual Sign-off Enforcer
community/dual-signoff

Two-key HITL — production diffs require two distinct human approvers. Enforces separation of duties.

HITL$19/mo
Episodic Memory Layer
molecule/episodic-memory

Long-term memory with TTL, scoping, and decay. Drops in any agent; backed by pgvector.

memory$9/mo