Formal verification skills for Claude Code, OpenCode, and Gemini. Rust -> Lean 4 via Aeneas.
npm install fv-skills-baifFormal verification of Rust code with AI-assisted specification and proof. Multi-framework, multi-runtime.
``bash`
npx fv-skills-baif
Works on Mac, Windows, and Linux. Supports Claude Code, OpenCode, and Gemini CLI.
---
FVS encodes the expert formal verification workflow into skills for AI coding assistants. It takes Rust code through a structured pipeline — dependency analysis, deep code understanding, specification generation, and proof — using the AI to handle the tedious parts while you stay in control of the verification strategy.
v1 focuses on Lean 4 via Aeneas (Rust → Charon → LLBC → Aeneas → Lean 4). Verus and other verification frameworks are planned for v2.
Some capabilities are framework-agnostic and work regardless of your verification target:
- Dependency mapping builds function call graphs from any extracted code
- Verification planning picks optimal targets using greedy graph traversal
- Natural language explanation produces human-readable summaries of Rust functions with pre/post conditions
Framework-specific commands (currently Lean) handle the actual specification and proof generation.
---
`bash`
npx fv-skills-baif
The installer prompts you to choose:
1. Runtime — Claude Code, OpenCode, Gemini, or all
2. Location — Global (all projects) or local (current project only)
Verify with /fvs:help inside your chosen runtime.
- A Lean 4 project with lakefile.toml and lean-toolchain
- Aeneas-generated output (, Funs.lean) from your Rust source
- Lean 4 toolchain installed and working
`bash`
npx fv-skills-baif@latest
Non-interactive Install (Docker, CI, Scripts)
`bashClaude Code
npx fv-skills-baif --claude --global # Install to ~/.claude/
npx fv-skills-baif --claude --local # Install to ./.claude/
Use
(-g) or --local (-l) to skip the location prompt.
Use --claude, --opencode, --gemini, or --all to skip the runtime prompt.---
Commands
$3
| Command | Description |
|---------|-------------|
|
/fvs:map-code | Build function dependency graph from extracted code and Rust source |
| /fvs:plan | Pick next verification targets via greedy dependency graph traversal |
| /fvs:natural-language | Generate natural language explanation of module or function with pre/post conditions |
| /fvs:help | Show available FVS commands and usage guide |
| /fvs:update | Self-update to latest version via npx |$3
| Command | Description |
|---------|-------------|
|
/fvs:lean-specify | Generate Lean spec skeleton with @[progress] theorem pattern |
| /fvs:lean-verify | Attempt proof using domain tactics (progress, simp, ring, omega) |---
How It Works
FVS follows a four-stage workflow. Each stage builds on the previous.
$3
/fvs:map-code — Analyze extracted code and Rust source to build a function dependency graph. Produces CODEMAP.md with every function, its dependencies, and verification status. Works with any extraction pipeline.$3
/fvs:plan — Walk the dependency graph bottom-up to find optimal verification targets. Prioritizes leaf functions (no unverified dependencies) using greedy traversal. Performs deep Rust source analysis to reason about pre/post conditions and bounds.$3
/fvs:lean-specify — Generate a specification skeleton for the target function. For Lean 4: uses the @[progress] theorem fn_spec pattern with preconditions from Rust source analysis and postconditions matching function behavior.$3
/fvs:lean-verify — Attempt to prove the specification. For Lean 4: uses domain-specific tactics (progress, simp, ring, field_simp, omega). Reports proof status and remaining goals if incomplete.---
Uninstalling
`bash
Global
npx fv-skills-baif --claude --global --uninstall
npx fv-skills-baif --opencode --global --uninstallLocal (current project)
npx fv-skills-baif --claude --local --uninstall
``Removes all FVS commands, agents, hooks, and settings entries. Does not affect other installed tools.
---
The architecture and plugin infrastructure of this project is heavily inspired by — and in parts directly adapted from — Get Shit Done (GSD). Thanks to the GSD maintainers for building such a solid foundation.
---
MIT License. See LICENSE for details.