README.md

Bash Coding Standard (BCS)

Concise, actionable coding rules for Bash 5.2+

Designed by Okusi Associates for the Indonesian Open Technology Foundation (YaTTI).

Quickstart

git clone https://github.com/Open-Technology-Foundation/bash-coding-standard.git
cd bash-coding-standard && sudo make install

bcs                                                  # View the standard
bcs template -t complete -n deploy -o deploy.sh -x   # Scaffold a script
bcs check deploy.sh                                  # AI-powered compliance check
bcs codes                                            # List all 110 BCS rule codes

You now have:

Tool	Purpose
bcs	CLI for the standard (display / template / check / codes / generate)
bcscheck	Convenience shim for bcs check (defaults configured in bcs.conf)
man bcs, man BCS-bash	Manpages for the CLI and a strict-mode Bash 5.2 reference

For AI Readers

Programmatic anchors for machine consumption:

Resource	Path / Command	Use
Standard document	data/BASH-CODING-STANDARD.md	Single assembled doc; ## BCS#### headers
Section sources	data/01-*.md ... data/12-*.md	Edit these, never the assembled doc
Rule codes	bcs codes / bcs codes -E BCSdddd	List all, or explain one
AI tooling inventory	ai-agents/AGENTS.md	Flat inventory of agents, slash commands, rule snapshots

Canonical command phrasings: bcs check <path>, bcs codes [-E BCSdddd], bcs template -t <type> -n <name> -o <path>, man bcs, man BCS-bash. Rule references in body text use the bare form BCSdddd; in links use [BCSdddd](data/<section>.md).

Why BCS

Bash is a battle-tested programming language deployed on virtually every Unix-like system. When wielded with discipline it delivers production-grade automation, data processing, and infrastructure orchestration. KISS -- keep it simple.

• Targets Bash 5.2+ exclusively (not a compatibility standard)
• Strict error handling with set -euo pipefail
• Explicit variable declarations and scoping
• Mandatory ShellCheck compliance
• Standard utility functions for consistent messaging
• AI-powered compliance checking across five LLM backends

Audience: human developers writing production-grade Bash, AI assistants generating or analysing Bash code, DevOps engineers and organisations needing standardised guidelines.

Installation

git clone https://github.com/Open-Technology-Foundation/bash-coding-standard.git
cd bash-coding-standard
sudo make install              # Install to /usr/local (default)
sudo make PREFIX=/usr install  # System-wide
sudo make uninstall            # Uninstall

Installs bcs, bcscheck, data files, bash completions, and the bcs(1) and BCS-bash(1) manpages.

Prerequisites: Bash 5.2+ (bash --version) and ShellCheck 0.8.0+ (shellcheck --version).

LLM backends (optional, for bcs check) -- at least one of:

Backend	Requirement
Anthropic API	ANTHROPIC_API_KEY + curl + jq
OpenAI API	OPENAI_API_KEY + curl + jq
Google Gemini API	GOOGLE_API_KEY + curl + jq
Ollama (local or cloud)	Running Ollama server
Claude Code CLI	claude installed on PATH

See Compliance Checking for backend trade-offs.

The Standard

The Bash Coding Standard defines 98 substantive rules plus 12 section overviews (110 total codes) across 12 sections in a single ~3,000-line document. Every rule carries examples, a **Tier:** label, and a BCS code (BCSssrr, four digits, zero-padded).

#	Section	Focus
1	Script Structure & Layout	Shebang, strict mode, metadata, function organisation
2	Variables & Data Types	Type declarations, scoping, naming, arrays
3	Strings & Quoting	Single vs double quotes, conditionals, here-docs
4	Functions & Libraries	Definition, organisation, export, library patterns
5	Control Flow	Conditionals, case, loops, arithmetic
6	Error Handling	Exit codes, traps, return-value checking
7	I/O & Messaging	Standard messaging functions, colours, TUI
8	Command-Line Arguments	Parsing patterns, option bundling, validation
9	File Operations	File testing, wildcards, process substitution
10	Security	PATH, eval avoidance, input sanitisation
11	Concurrency & Jobs	Background jobs, parallel execution, timeouts
12	Style & Development	Formatting, debugging, dry-run, testing

Tier distribution -- bcs check maps tier to severity:

Tier	Count	Severity	Behaviour
core	33	[ERROR]	Real correctness/safety bugs. Non-zero exit if any are found.
recommended	42	[WARN]	Bash hygiene; prevents subtle issues.
style	23	[WARN]	Taste; no correctness impact.
disabled	--	(silent)	Applied only via policy.conf; never reported.

CLI Reference

Subcommands, frequency-ordered:

Command	Purpose
bcs check	AI-powered compliance check against the full standard
bcs template	Generate BCS-compliant script templates
bcs codes	List rule codes; -E BCSdddd to explain one
bcs display	View the standard (default when no subcommand)
bcs generate	Reassemble BASH-CODING-STANDARD.md from section files (maintainer)
bcs help [CMD]	Per-command help

bcs check

bcs check myscript.sh                      # Auto-detect backend (balanced tier)
bcs check -m claude-sonnet-4-6 deploy.sh   # Anthropic API
bcs check -m claude-code:thorough ci.sh    # Claude Code CLI, thorough tier
bcs check --strict -T core deploy.sh       # CI gate: core-only, warnings fatal
bcs check --no-shellcheck myscript.sh      # Skip the shellcheck static-analysis prelude
bcscheck myscript.sh                       # Equivalent shim (defaults from bcs.conf)

When shellcheck is on PATH, bcs check prepends its --format=json -x output to the LLM prompt as deterministic static-analysis context (cheap, precise AST-level findings that the LLM would otherwise rediscover). Disable per-call with --no-shellcheck or globally via BCS_SHELLCHECK=0 in bcs.conf.

bcs template

bcs template -t complete -n deploy -d 'Deploy script' -o deploy.sh -x

Type	Lines	Use
minimal	~16	Bare essentials
basic	~26	Standard with metadata (default)
complete	~119	Full toolkit (main, args, messaging, cleanup)
library	~40	Sourceable library (no main)

bcs codes

bcs codes                  # All rules, tier-decorated
bcs codes -T core          # Only core-tier rules (33)
bcs codes -E BCS0101       # Explain one rule
bcs codes -p               # Plain output (no tier decoration)

bcs display & bcs generate

bcs (no args) renders the standard via md2ansi + less in a terminal. Flags: -c plain, -S symlink the standard into cwd, -f print its path. bcs generate rebuilds data/BASH-CODING-STANDARD.md from the data/[0-9]*.md section files -- maintainer-only; never edit the assembled document directly.

Compliance Checking

bcs check analyses a script with an LLM and reports findings keyed to BCS codes. The backend is resolved entirely from the -m model name -- there is no separate --backend flag.

Backend routing

-m value	Backend	Notes
fast / balanced / thorough	Probe order: claude, ollama, anthropic, openai, google	First reachable wins; tier's default model
claude-* (e.g. claude-opus-4-6)	Anthropic API	Pass-through
gemini-* (e.g. gemini-2.5-pro)	Google Gemini API	Pass-through
gpt-* / o[0-9]* (e.g. gpt-5.4, o3-mini)	OpenAI API	Pass-through
claude-code	Claude Code CLI	balanced tier default
claude-code:<tier-or-model>	Claude Code CLI	Suffix stripped before resolution
anything else (e.g. minimax-m2:cloud)	Local Ollama	Pass-through

▲ Local Ollama models whose names match claude-*, gemini-*, gpt-*, or o[0-9]* are unreachable through -m -- rename the local model.

Tiers per backend

Tier	Ollama	Anthropic	Google	OpenAI	Claude Code
fast	qwen3.5:9b	claude-haiku-4-5	gemini-2.5-flash-lite	gpt-4.1-mini	claude-haiku-4-5
balanced	qwen3.5:14b	claude-sonnet-4-6	gemini-2.5-flash	gpt-5.4-mini	claude-sonnet-4-6
thorough	qwen3.5:14b	claude-opus-4-6	gemini-2.5-pro	gpt-5.4	claude-opus-4-6

Effort levels

-e	Max tokens	Prompt guidance
low	4000	Clear violations only; concise
medium (default)	8000	Violations and significant warnings
high	32000	All violations and warnings
max	64000	Exhaustive line-by-line audit

Recommended defaults

Use case	Setting
Quick sanity check	-m gpt-5.4 -e medium
Daily development	-m claude-sonnet-4-6 -e medium
Pre-commit review	-m claude-sonnet-4-6 -e high
Thorough audit	-m claude-sonnet-4-6 -e max
Pre-release audit	-m claude-code -e max

Filtering, CI gates, suppression

• -T <tier> -- only findings at that tier (e.g. bcscheck -T core deploy.sh as a CI gate).
• -M <tier> -- that tier or stricter (-M recommended excludes style).
• --strict -- treat warnings as violations (non-zero exit on any finding).
• #bcscheck disable=BCSdddd on its own line suppresses a rule for the next command, function, or { ... } block -- same scope rules as shellcheck directives.

Accuracy data -- backend accuracy is measured against four BCS-compliant scripts (cln, md2ansi, which, tests/accuracy/bcs-check-accuracy.sh) across multiple models and effort levels. See tests/accuracy/LLM-ACCURACY.md for the current scoring matrix and refresh date.

Customisation

Policy Overrides (policy.conf)

Reclassify or disable any rule:

# ~/.config/bcs/policy.conf  -- or .bcs/policy.conf per repo
BCS0301 = style        # downgrade single-quote dogma
BCS0109 = disabled     # silence #fin end-marker noise
BCS9801 = core         # classify a user rule

Cascade, later wins: /etc/bcs/policy.conf → ~/.config/bcs/policy.conf → .bcs/policy.conf. Parsed with a strict regex, never sourced as shell. See bcs.policy.sample.

Custom Rules (BCS9800--BCS9899)

The BCS98xx namespace is reserved for user rules. Place markdown files (same structure as any BCS rule) at data/98-user.md (single file) or data/98-user.d/*.md (drop-in directory); both may be symlinks. bcs generate splices them into BASH-CODING-STANDARD.md after section 12. Both paths are .gitignored so user rules never ship upstream.

Configuration (bcs.conf)

Cascading bash-sourced config, later wins: /etc/bcs.conf → /etc/bcs/bcs.conf → /usr/local/etc/bcs/bcs.conf → ~/.config/bcs/bcs.conf (XDG).

BCS_MODEL=balanced        # fast, balanced, thorough, or a direct model name
BCS_EFFORT=medium         # low, medium, high, max
BCS_STRICT=0              # 0 or 1
BCS_OPENAI_MODEL=gpt-5.4  # Per-backend override; bypasses tier mapping

CLI flags override config; config overrides environment. See bcs.conf.sample for all options including per-tier array overrides.

Examples

Standalone Scripts

examples/ contains exemplar BCS-compliant scripts:

Script	Lines	Demonstrates
cln	246	File operations, argument parsing, arrays
md2ansi	1430	Large-scale text processing, ANSI formatting
which	111	Dual-purpose script pattern

Reference Codebase Library & Templates

examples/lib/ is a curated set of working, BCS-compliant reference codebases organised by domain (file/, math/, str/, sys/, time/) -- see the index for an annotated tour of each project. Generate fresh BCS-compliant skeletons with bcs template -t {minimal,basic,complete,library} (see CLI Reference).

AI Tooling (ai-agents/)

The ai-agents/ package bundles BCS-aware agents, slash commands, and rule snapshots for Claude Code, opencode, and codex. Drop them into ~/.claude/, ~/.config/opencode/, or ~/.codex/ to give any AI session BCS-aware scaffolding, auditing, and ShellCheck remediation.

Component	Inventory	Use
Agents	bash-expert, bcs-auditor, script-scaffolder, shellcheck-fixer, documentation-writer	Autonomous BCS-aware sub-agents
Slash commands	/audit-bash, /bcs-check, /bcs-codes, /fix-shellcheck, /scaffold, /pfu, /update-docs, /update-internal-docs	Single-shot operations
Rule snapshots	bash-coding-standard.md, coding-principles.md, documentation.md, ...	Drop-in rule files

See ai-agents/AGENTS.md for the flat file inventory.

Bash 5.2 Reference (BCS-bash)

BCS includes a rewritten Bash 5.2 reference manpage tailored for strict-mode scripting. It removes legacy syntax (backtick substitution, [ ] tests), POSIX compatibility modes, and sh-emulation caveats -- leaving a clean, modern reference that assumes set -euo pipefail and [[ ]] throughout.

man BCS-bash    # Also: man bcs-bash

Source lives in docs/BCS-bash/ as structured Markdown mirroring the original bash(1) man page sections.

Testing & Self-Compliance

./tests/run-all-tests.sh             # Run all suites
./tests/test-subcommand-template.sh  # Run a single suite
shellcheck -x bcs bcscheck           # Mandatory static check
make check && make test              # Equivalent shortcuts

✓ Self-compliance: bcs check bcs passes -- the bcs script is itself BCS-compliant. The invariant is enforced by tests/test-self-compliance.sh and runs as part of every test suite invocation.

Related Resources

• ShellCheck -- Static analysis for shell scripts
• Google Shell Style Guide -- Google's conventions
• Bash Reference Manual -- Official GNU Bash documentation

License & Acknowledgments

BCS is dual-licensed to suit the two kinds of material it contains:

• The BCS CLI tooling (bcs, bcscheck, tests, Makefile, templates, man pages, first-party examples) is licensed under GPL-3.0-or-later.
• The Bash Coding Standard document (data/*) -- prose, a creative work -- is licensed under CC BY-SA 4.0.
• Bundled reference implementations under examples/lib/**/ ship with their own per-project LICENSE files (predominantly GPL-3).

See COPYING for a plain-English summary of the split. Every first-party file carries an SPDX-License-Identifier header so tooling (e.g. REUSE) can identify each file's licence unambiguously.

Developed by Okusi Associates for the Indonesian Open Technology Foundation (YaTTI).