Codify standards. Enforce automatically.

Install best practices. Enforce on every commit.

Every team has unwritten rules — “auth on all routes,” “no secrets in code,” “queries go through the data layer.” Axiomatic turns them into tests that an AI agent enforces on every PR.

axiomatic/auth-required.yml

condition: >
  All route handlers that access user data
  must require authentication.
on: ["app/api/**/*.ts"]
severity: error

curl -fsSL https://axiomatic.sh/api/install | sh

Get Started Read the Docs

See it in action

Your standards, verified by an AI agent that explores your codebase and reports violations with file-level precision.

Terminal

$ axm run

  Running 4 tests against 38 files...

  auth-required      ✓ pass  (0.95 confidence, $0.03)
    Checked 14 route handlers. All use getServerSession().

  no-hardcoded-secrets ✗ fail  (0.92 confidence, $0.04)
    Violations:
      src/lib/stripe.ts:8 - Contains "sk_live_" API key
      src/config.ts:23 - Hardcoded database password

  db-layer-boundary  ✓ pass  (0.88 confidence, $0.05)
    No direct Prisma imports found outside src/data/.

  error-handling     ✓ pass  (0.91 confidence, $0.03)

  3 passed, 1 failed · $0.15 total · 12.4s

How it works

From zero to automated enforcement in three steps.

Install proven standards

Start with curated packs — OWASP security, API design, React architecture — or write your own rules in plain English. Axiomatic auto-adapts each test to your codebase.

Run the CLI

An AI agent analyzes your codebase against each rule, identifies violations with file-level precision, and reports results with confidence scores.

Enforce on every PR

Add to CI and Axiomatic checks every pull request automatically. Standards stay enforced as your team and codebase grow.

Enforce what other tools can't check

Unit tests verify functions. Linters match syntax. Neither can enforce the architectural and security standards that span your entire codebase.

Tool	Strength	Limitation
Linters (ESLint)	Fast syntactic patterns	Cannot reason across files or about behavior
Semgrep	Structural AST matching	Matches patterns, not behavioral intent
Unit tests	Individual function correctness	Cannot verify cross-cutting properties
Code review	Catches nuanced issues	Inconsistent, expensive, doesn't scale
Axiomatic	Cross-cutting standards enforcement	LLM-based ($0.01-0.05/test with caching)

Up and running in under five minutes

Install the CLI, add best-practice packs for your stack, and run them. A typical test costs $0.01-0.05 — caching makes re-runs near free.

Quick start

$ curl -fsSL https://axiomatic.sh/api/install | sh
$ axm login          # Sign in for free credits
$ axm install --suggest  # Install packs for your stack
$ axm run            # Enforce your standards

Install best practices

Get a head start with preconfigured packs from our library. Install a pack and Axiomatic tailors each test to your codebase.

OWASP Security

5 tests

Injection prevention, auth checks, secrets detection, XSS protection

securityowasp

axm install owasp-security

API Design Standards

5 tests

Consistent error responses, input validation, status codes, rate limiting

apirest

axm install api-design

React Architecture

5 tests

Component boundaries, error boundaries, accessibility, state management

reactfrontend

axm install react-architecture

Next.js Best Practices

4 tests

Server/client boundaries, metadata, loading states, secret isolation

nextjsfullstack

axm install nextjs-best-practices

Runtime Safety

4 tests

External data validation, error recovery, exhaustive dispatch, config at startup

typescriptruntime-safety

axm install runtime-safety

Django Essentials

4 tests

CSRF protection, ORM safety, mass assignment, user data isolation

pythondjango

axm install python-django

Go Production Readiness

4 tests

Error handling, context propagation, goroutine safety, graceful shutdown

gobackend

axm install go-production

Node.js / Express

4 tests

Async error handling, security headers, no sync I/O, config validation

nodejsexpress

axm install node-express

Rust Safety Patterns

3 tests

No unwrap in production, documented unsafe blocks, clone efficiency

rustsafety

axm install rust-safety

Browse all packs

Simple, transparent pricing

Both plans include LLM credits. Intelligent caching means you only pay when code actually changes.

Free

$0/month

For open-source projects and getting started.

3 public repositories
10 runs per day
30-day result history
Shared agent memory

LLM Usage

$5/mo included credits
BYO API key supported

Get Started

Recommended

Cloud

$10/month

For teams shipping production software.

Unlimited repositories
Private repo support
1-year result history
Shared agent memory

LLM Usage

$10/mo included credits
BYO API key supported

Start Free Trial

Your team's standards, enforced on every commit.

That's axiomatic. Free to start. Set up in under five minutes.