Safora Docs
What is Safora?
The high-level concept
How it works
GitHub App + Knowledge Pack + Claude
The Knowledge Pack
Format, modules, ingestion
@safora commands
audit, fix, mute, pause, resume
Privacy & security
No code training, signed commits, no auto-merge
Admin API
For dashboards and ops
What is Safora?
Safora is an autonomous design-system agent. It lives on GitHub as an App, watches every PR on the repos it's installed on, and reviews each one against your design system — flagging violations, posting inline comments, and (when fixes are unambiguous) opening fix-PRs.
Think of it as a tireless DS owner who reads every PR before you do, and only escalates the ones that need a human.
How it works
- Install the GitHub App on your org. One-click.
- Build a Knowledge Pack from your sources (Figma, repo, public DS docs, manual). This is your DS in machine-readable form.
- Open a PR. Webhook fires. Safora fetches the diff, loads your Knowledge Pack into Claude's context, runs the review, posts inline comments.
- Fix-PRs. For HIGH violations that are unambiguous, Safora opens a
safora/fix/<sha>branch with the patch. You review, you merge.
The Knowledge Pack
A Knowledge Pack is a structured bundle the agent reads on every review. It has 7 modules:
foundations/tokens.md— semantic colors, typography, spacing, radiusux-patterns/ux-rules.md— color-state coherence, button hierarchy, feedback statesui-patterns/patterns.md— page templates, common compositionscomponents/components.md— component catalogbrand/brand.md— brand identity rulesanti-patterns.md— what NOT to doimmutable-rules.md— rules the agent never violates, even on user override
@safora commands
Mention @safora in any PR or issue to trigger ad-hoc behavior:
@safora audit— re-review the current PR@safora fix— open a fix-PR for the current HIGH violations@safora explain <rule>— get the rationale + good/bad examples for a rule@safora mute <rule>— suppress a rule for this PR (Team+)@safora pause— stop the agent on this repo for 24 hours (any user)@safora resume— undo a pause
Privacy & security
- No training on your code. Safora calls the Anthropic API with your code in context — Anthropic does not train on API customer data.
- Signed commits. Every fix-PR commit is attributed via the GitHub App identity, signed.
- No auto-merge, ever. Humans always review and merge.
- No direct push to main. Every change is a PR.
- Kill switch.
@safora pausestops the agent globally for 24h on any repo.
Admin API
The DSM exposes an admin API for dashboards and ops. See the safora-dsm repo for the OpenAPI spec.