Forge is the delivery engine that takes AI-generated code from prototype to production. It provides security scanning, quality gates, file locking, knowledge capture, and governance automation for Claude Code, Codex CLI, and Gemini CLI.

How do I install Forge?

L1 (Vibe Coder): Run "claude plugin marketplace add nxtg-ai/forge-plugin && claude plugin install forge" for governance in Claude Code. L2 (Pro Builder): Run "curl -fsSL https://forge.nxtg.ai/install.sh | sh" for multi-tool coordination. L3 (Ship Lord): Clone the forge-ui repo for visual dashboards.

Is Forge open source?

Yes. Forge is MIT licensed and available on GitHub. The plugin, orchestrator, and UI are all open source. State lives in plain files in .forge/, fully portable.

Open Source

From prototype to production.

Name: NXTG-Forge
Author: NXTG.ai

The delivery engine your AI tools are missing.

AI gets you to "it compiles" in minutes. The last 20% (tests, security, deployment, governance) is where it falls apart. 45% of AI-generated code contains security flaws. 86% fails to defend against XSS. Forge closes the gap.

$claude plugin marketplace add nxtg-ai/forge-plugin && claude plugin install forge

4,434+

Tests

31/31

Launch Gates

4MB

Binary Size

Dependencies

293

Rust Tests

Tool Adapters

87%

UI Coverage

The Last Mile Problem

Why AI Code Compiles But Doesn't Ship

The illusion of correctness: code that looks polished but conceals serious flaws.

45% have security flaws

Nearly half of all AI-generated code contains security vulnerabilities. Not edge cases. Documented across multiple research studies.

86% fail XSS defense

AI-generated code is 2.74x more likely to introduce cross-site scripting. The AI can explain XSS perfectly. It just doesn't enforce the defense.

The Kafka handler story

An AI-generated event handler passed unit tests and integration tests. Under production traffic, it failed. The tests never simulated the load patterns production actually generated.

Knowledge amnesia

Claude refactors your auth module. Codex updates tests against the pre-refactor interface. Both save. Tests fail. Neither tool knows the other exists.

The illusion of correctness

Code that compiles. Tests that pass. A polished surface that conceals vulnerabilities. Developers using AI were 19% slower but convinced they were faster.

One Product

Three Depths

Start where it hurts. Go deeper when you're ready.

L1: Vibe Coder

Forge Plugin

Zero-dependency governance for Claude Code.

$claude plugin marketplace add nxtg-ai/forge-plugin && claude plugin install forge

-21 slash commands: /[FRG]-status, /[FRG]-feature, /[FRG]-gap-analysis, and 18 more
-22 specialized agents: builder, guardian, planner, detective, security, testing
-29 knowledge skills: architecture, coding standards, testing strategy, security patterns
-6 governance hooks: pre-task validation, post-task quality, file placement enforcement
-Continuous security scanning, quality gates, drift detection

"I built this with Claude over the weekend and it passed a security review."

30 seconds to install. Nothing to configure.

L2: Pro Builder

+ Forge Orchestrator

Production-grade multi-tool coordination.

$curl -fsSL https://forge.nxtg.ai/install.sh | sh

-File locking across AI tools: prevents simultaneous edit conflicts at the Rust level
-Knowledge flywheel: captures decisions, patterns, and learnings from every session
-Plan generation from specs: forge plan --generate turns a spec into a task board
-Multi-AI support: Claude Code, Codex CLI, Gemini CLI through a single state file
-TUI dashboard with live agent panes, health scores, drift detection
-Headless autonomous mode: forge run for CI/CD pipelines

"We run three AI tools on the same repo and nothing steps on anything."

One binary. 4MB. 293 tests. Zero runtime dependencies.

L3: Ship Lord

+ Forge Dashboard

The Portfolio Architect's lens.

$git clone https://github.com/nxtg-ai/forge-ui && npm install && npm run dev

-Real-time governance dashboard: health score A/B/C/D/F with 8 quality checks
-Agent activity feed: watch 22 agents coordinate in real-time
-Infinity Terminal: survives browser close, network drops, server restarts
-Multi-device access: phone, tablet, remote machine. Sessions never die.

"I can see every AI agent working across every repo from my phone."

58 React components. 4,146 tests. 87% coverage.

The Builder

Built by a Portfolio Architect

Asif Waliuddin has spent 23 years as a Portfolio Architect: building automation frameworks, governance systems, and team cultures for enterprise-scale programs. The coordination failures he watched happen with human teams (knowledge lost in handoffs, conflicting decisions, governance enforced after the fact) are exactly the failures that appear when you run multiple AI tools without coordination infrastructure.

The lineage is direct. Spreadsheets in the dot-com era. Access databases for rule encoding. Power Automate for workflow automation. Each era, the same goal: encode coordination into systems so teams can focus on building.

Every feature in Forge maps to a specific failure mode. File locking exists because teams lose days to conflicting edits. The knowledge flywheel exists because decisions evaporate between sprints. Governance hooks exist because quality checks happen at audit time instead of during the work.

Forge is the AI-native chapter of a 23-year automation lineage. Not a framework built by an engineer who read about coordination. Coordination infrastructure built by someone who has lived it.

Get Started

# L1: Vibe Coder (30 seconds)

$claude plugin marketplace add nxtg-ai/forge-plugin && claude plugin install forge

# L2: + Pro Builder

$curl -fsSL https://forge.nxtg.ai/install.sh | sh

# L3: + Ship Lord

$git clone https://github.com/nxtg-ai/forge-ui && npm install && npm run dev