What does this repo signal mean?

Microsoft published microsoft/apm (Python). This repository signal exposes tooling, eval, infrastructure, or model-adjacent work before it may appear in a launch post. High-signal details: repo microsoft/apm · language Python · New repo from Microsoft with 2.7k stars.. onlylabs links this event to 1 captured evidence page and 6 related repo signals.

Microsoft Repo: microsoft/apm

Captured source

source ↗

GitHub/github.com/microsoft/apm

microsoft/apm repository metadata

Source ↗

published Sep 18, 2025seen 5dcaptured 10hhttp 200method plain

microsoft/apm

Description: Agent Package Manager

Language: Python

License: MIT

Stars: 2815

Forks: 233

Open issues: 96

Created: 2025-09-18T13:45:22Z

Pushed: 2026-06-11T00:04:44Z

Default branch: main

Fork: no

Archived: no

README:

APM – Agent Package Manager

An open-source, community-driven dependency manager for AI agents.

Think package.json, requirements.txt, or Cargo.toml — but for AI agent configuration.

GitHub Copilot · Claude Code · Cursor · OpenCode · Codex · Gemini · Windsurf

[Documentation](https://microsoft.github.io/apm/) · [Quick Start](https://microsoft.github.io/apm/getting-started/quick-start/) · [CLI Reference](https://microsoft.github.io/apm/reference/cli-commands/) · [Roadmap](https://github.com/orgs/microsoft/projects/2304)

---

> Portable by manifest. Secure by default. Governed by policy. > One file describes every agent's context; one command reproduces it everywhere; one policy controls what an org will allow.

Why APM

AI coding agents need context to be useful — standards, prompts, skills, plugins — but today every developer sets this up manually. Nothing is portable nor reproducible. There's no manifest for it.

APM fixes this. Declare your project's agentic dependencies once in apm.yml, and every developer who clones your repo gets a fully configured agent setup in seconds — with transitive dependency resolution, just like npm or pip. It's also the first tool that lets you author plugins with a real dependency manager and export standard plugin.json packages.

# apm.yml — ships with your project
name: your-project
version: 1.0.0
dependencies:
apm:
# Skills from any repository
- anthropics/skills/skills/frontend-design
# Plugins
- github/awesome-copilot/plugins/context-engineering
# Specific agent primitives from any repository
- github/awesome-copilot/agents/api-architect.agent.md
# A full APM package with instructions, skills, prompts, hooks...
- microsoft/apm-sample-package#v1.0.0
mcp:
# MCP servers -- installed into every detected client
- name: io.github.github/github-mcp-server
transport: http # MCP transport name, not URL scheme -- connects over HTTPS

git clone && cd
apm install # every agent is configured

Coming from `npx skills add`? Drop-in:

apm install vercel-labs/agent-skills # whole bundle, like npx skills add
apm install vercel-labs/agent-skills --skill deploy-to-vercel # one skill, persisted to apm.yml

Same install gesture. You also get a manifest, lockfile, and reproducibility.

Zero-config Copilot:

apm compile -t copilot # writes .github/copilot-instructions.md

One command, no configuration -- VS Code and GitHub Copilot read the file automatically. APM dogfoods this target on its own repository.

The three promises

1. Portable by manifest

One apm.yml describes every primitive your agents need — instructions, skills, prompts, agents, hooks, plugins, MCP servers — and apm install reproduces the exact same setup across every client on every machine. apm.lock.yaml pins the resolved tree the way package-lock.json does for npm.

[One manifest for everything](https://microsoft.github.io/apm/reference/primitive-types/) — declared once, deployed across Copilot, Claude, Cursor, OpenCode, Codex, Gemini, Windsurf
[Install from anywhere](https://microsoft.github.io/apm/guides/dependencies/) — GitHub, GitLab, Bitbucket, Azure DevOps, GitHub Enterprise, Gitea, Gogs, any git host
[Transitive dependencies](https://microsoft.github.io/apm/guides/dependencies/) — packages can depend on packages; APM resolves the full tree
[Author plugins](https://microsoft.github.io/apm/guides/plugins/) — build Copilot, Claude, and Cursor plugins with dependency management, then export standard plugin.json
[Marketplaces](https://microsoft.github.io/apm/guides/marketplaces/) — install plugins from curated registries in one command, deployed across all targets and locked
[Pack & distribute](https://microsoft.github.io/apm/guides/pack-distribute/) — apm pack bundles your configuration as a zipped package or a standalone plugin
[CI/CD ready](https://github.com/microsoft/apm-action) — GitHub Action for automated workflows

2. Secure by default

Agent context is executable in effect — a prompt is a program for an LLM. APM treats it that way. Every install scans for hidden Unicode that can hijack agent behavior; the lockfile pins integrity hashes; transitive MCP servers are gated by trust prompts.

[Content security](https://microsoft.github.io/apm/enterprise/security/) — apm install blocks compromised packages before agents read them; apm audit runs the same checks on demand
[Lockfile integrity](https://microsoft.github.io/apm/enterprise/governance/) — apm.lock records resolved sources and content hashes for full provenance
[Drift detection](https://microsoft.github.io/apm/guides/drift-detection/) — apm audit rebuilds your agent context in scratch and diffs it against your working tree to catch hand-edits before they ship
[MCP trust boundaries](https://microsoft.github.io/apm/guides/mcp-servers/) — transitive MCP servers require explicit consent

3. Governed by policy

apm-policy.yml lets a security team say *"these are the only sources, scopes, and primitives this org will allow"* and have every apm install enforce it — with tighten-only inheritance from enterprise to org to repo, a published bypass contract, and audit-mode CI gates.

[Governance Guide](https://microsoft.github.io/apm/enterprise/governance-guide/) — the canonical enterprise reference: enforcement points, bypass contract, air-gapped story, failure semantics, rollout playbook
[Policy reference](https://microsoft.github.io/apm/enterprise/policy-reference/) — every check, every field, every default
[Adoption playbook](https://microsoft.github.io/apm/enterprise/adoption-playbook/) — staged rollout from warn to block across hundreds of repos
[GitHub rulesets integration](https://microsoft.github.io/apm/integrations/github-rulesets/) — wire apm audit --ci into branch protection

Get Started

Linux / macOS

curl -sSL https://aka.ms/apm-unix | sh

Windows

irm https://aka.ms/apm-windows | iex

Native release binaries are…

Excerpt shown — open the source for the full document.

Notability

notability 6.0/10

New repo from Microsoft with 2.7k stars.