Linter for AI agent tool descriptions, system prompts, and configs. Catches vague instructions, missing constraints, and schema mismatches.
Project description
lintlang
Static linter for AI agent tool descriptions, system prompts, and configs.
Most AI agent bugs aren't code bugs — they're language bugs. Vague tool descriptions make agents pick the wrong tool. Missing constraints cause infinite loops. Schema mismatches break structured output. lintlang catches these at authoring time, in CI, with zero LLM calls.
Install
pip install lintlang
Requires Python 3.10+. One dependency (pyyaml).
Quick Start
# Scan a single file
lintlang scan agent_config.yaml
# Scan a directory
lintlang scan configs/
# JSON output for CI
lintlang scan config.yaml --format json
# Fail CI if score drops below 80
lintlang scan config.yaml --fail-under 80
Example Output
LINTLANG REPORT (HERM v1.1)
bad_tool_descriptions.yaml
──────────────────────────────────────────────────
Hermeneutical Dimensions
HERM-1 Interpretive Ambiguity ██████████ 100.0
HERM-2 User-Intent Misalignment Risk █████████░ 88.0
HERM-3 Input-Driven Misinterpretation ████████░░ 80.0
HERM-4 Instruction Conflict/Polysemy █████████░ 92.0
HERM-5 Pragmatic Drift Risk ██████████ 100.0
HERM-6 Adversarial Reframing ██████████ 100.0
Coverage: 90% | Confidence: high
Structural Issues (1 critical, 2 high, 6 medium, 3 low)
H1: Tool Description Ambiguity (5 findings)
!! [CRITICAL] tool:process_ticket
Tool 'process_ticket' has no description.
Fix: Add a specific description explaining WHEN to use this tool.
! [HIGH] tool:get_user_info
Tool 'get_user_info' has a very short description (13 chars)
Fix: Expand to include purpose, when to use, expected input/output.
──────────────────────────────────────────────────
HERM Score: 92.0/100
How Scoring Works (HERM v1.1)
lintlang uses the HERM v1.1 (Hermeneutical Evaluation and Risk Metrics) scoring engine. It evaluates 6 dimensions of linguistic quality:
| Dimension | What It Measures |
|---|---|
| HERM-1 Interpretive Ambiguity | How many vague qualifiers like "as needed", "when appropriate" |
| HERM-2 User-Intent Misalignment Risk | Ambiguity density + whether priority ordering exists |
| HERM-3 Input-Driven Misinterpretation | Input surface signals + task boundary language |
| HERM-4 Instruction Conflict/Polysemy | Excessive negatives + missing priority signals |
| HERM-5 Pragmatic Drift Risk | Ambiguity + negative directive density |
| HERM-6 Adversarial Reframing | Hijack phrases, coercive pressure, unbounded repeats |
The final score (0-100) is the coverage-weighted mean of all 6 dimensions. Files that don't look like prompts or configs receive lower coverage (and thus a score cap), preventing false confidence.
Coverage (55-100%) reflects how much of the file lintlang could meaningfully evaluate. Confidence (high/medium/low) summarizes coverage for quick triage.
The --fail-under flag checks the HERM score (lowest across all files). Exit code 0 = pass, 1 = fail.
Structural Detectors (H1-H7)
On top of HERM scoring, lintlang runs 7 structural detectors that catch issues HERM can't — like empty tool descriptions, duplicate names, phantom schema fields:
| Pattern | Name | What Users Report | Severity |
|---|---|---|---|
| H1 | Tool Description Ambiguity | "Agent picks wrong tool" | CRITICAL-MEDIUM |
| H2 | Missing Constraint Scaffolding | "Agent loops infinitely" | CRITICAL-HIGH |
| H3 | Schema-Intent Mismatch | "Structured output broken" | CRITICAL-LOW |
| H4 | Context Boundary Erosion | "Agent leaks state across tasks" | HIGH-MEDIUM |
| H5 | Implicit Instruction Failure | "Model doesn't follow instructions" | MEDIUM-LOW |
| H6 | Template Format Contract Violation | "Agent broke after prompt change" | MEDIUM-INFO |
| H7 | Role Confusion | "Chat history is messed up" | CRITICAL-MEDIUM |
Usage
# Scan files (YAML, JSON, or plain text)
lintlang scan config.yaml prompt.txt tools.json
# Scan a directory recursively
lintlang scan configs/
# Check only specific patterns
lintlang scan config.yaml --patterns H1 H3
# Filter by minimum severity
lintlang scan config.yaml --min-severity high
# Markdown report
lintlang scan config.yaml --format markdown
# Hide fix suggestions
lintlang scan config.yaml --no-suggestions
# List all patterns and dimensions
lintlang patterns
Programmatic API
from lintlang import scan_file, scan_directory
# Scan a single file
result = scan_file("config.yaml")
print(f"HERM Score: {result.score}/100")
print(f"Coverage: {result.herm.coverage}, Confidence: {result.herm.confidence}")
for dim, score in result.herm.dimension_scores.items():
print(f" {dim}: {score}")
for finding in result.structural_findings:
print(f" [{finding.severity.value}] {finding.description}")
# Scan a directory
results = scan_directory("configs/")
for path, result in results.items():
print(f"{path}: {result.score}")
Supported Formats
lintlang auto-detects file format:
- YAML (
.yaml,.yml) — OpenAI function-calling format, tool definitions - JSON (
.json) — OpenAI and Anthropic tool schemas, message arrays - Plain text (
.txt,.md,.prompt) — System prompts, instruction docs
Unknown extensions: tried as JSON, then YAML, then plain text.
CI Integration
GitHub Actions
- name: Lint agent configs
run: |
pip install lintlang
lintlang scan configs/ --fail-under 80
Pre-commit
lintlang scan src/agent/config.yaml --fail-under 80 || exit 1
Exit code 0 = all files pass. Exit code 1 = score below threshold or scan failure.
How Is lintlang Different?
| Tool | What It Does | How lintlang Differs |
|---|---|---|
| promptfoo | Tests prompts via eval suites at runtime | lintlang is static analysis — catches issues at authoring time, no LLM calls |
| guardrails-ai | Validates LLM outputs at runtime | lintlang catches the root cause (bad instructions), not symptoms (bad outputs) |
| NeMo Guardrails | Runtime dialogue rails (Colang DSL) | lintlang operates on config files, not live conversations |
| eslint / ruff | Lints source code syntax | lintlang lints natural language in agent configs |
| semgrep | Code pattern matching (SAST) | lintlang matches linguistic patterns in prose |
lintlang is the only tool that treats tool descriptions, system prompts, and agent configs as lintable artifacts — applying static analysis to natural language the same way eslint applies rules to JavaScript.
Development
git clone https://github.com/roli-lpci/lintlang.git
cd lintlang
pip install -e ".[dev]"
pytest
License
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file lintlang-0.1.0.tar.gz.
File metadata
- Download URL: lintlang-0.1.0.tar.gz
- Upload date:
- Size: 35.7 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.12.12
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
cb9717de52f984e91599e8d8a698a342e7a70ee61837212d973ef73f7a24b73f
|
|
| MD5 |
2afcee2f4b54c6e6f610b6fb08467995
|
|
| BLAKE2b-256 |
927ab0ce6cbc624aed078c79293df9fdfddeda23d599e763ca67eefe4f98b235
|
File details
Details for the file lintlang-0.1.0-py3-none-any.whl.
File metadata
- Download URL: lintlang-0.1.0-py3-none-any.whl
- Upload date:
- Size: 26.4 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.12.12
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
a38655c17d4c944e611d80109e774311b81e3ea12f679aa8f7ee758c3453e70a
|
|
| MD5 |
55193a4e647ace6f697ee8d00dad2268
|
|
| BLAKE2b-256 |
40df0b4b83152b5ecf7921bfd2aec3e3da8382a7faec172a39773ca4f7a7616c
|
