AI code goes off the rails
AI generates modules quickly, but it will also cross module boundaries, skip permission checks and leave out tests.
Spring Boot · Vue · AI guardrails
The AI-native Java enterprise app platform.
Generate business modules that already include RBAC, audit, OpenAPI and tests. Codex, Cursor and Claude Code can build real enterprise Java apps without breaking your architecture or skipping permissions and tests.
AI 原生的 Java 企业应用工程基座
Start a real enterprise app in 10 minutesgit clone https://github.com/zkmall/stackrivet-server.gitcd stackrivet-serverdocker compose up -d mysql redismvn -pl stackrivet-app spring-boot:run ✓ api http://localhost:8080✓ openapi http://localhost:8080/swagger-ui.html- Generate complete modules, not loose CRUD.
- RBAC, audit, OpenAPI, tests and the Asset Service are built in.
- A redesigned Element Plus theme, so it doesn't look like a stock admin.
- Built for Codex, Cursor and Claude Code from day one.
The problem
AI writes code faster. Enterprise projects still need guardrails.
Generating code was never the hard part. The hard part is permissions, tests, audit and keeping the result upgradeable.
CRUD isn't the whole job
A table-to-CRUD generator still leaves you the menus, permissions, OpenAPI, audit and deployment.
Forks drift from upstream
Most customized admin templates drift away from upstream after the first real project, and then upgrades hurt.
What you get
From scaffold to engineering base.
The parts that make generated code something you can actually ship and keep maintaining.
AI Guardrails
Machine-readable rules, module boundaries and test requirements keep AI-generated changes inside your team's conventions.
Governed code generation
Generate the backend, frontend, menus, permissions, OpenAPI and test samples together, one module at a time.
Production-ready Asset Service
Object storage from day one: S3-compatible, Aliyun OSS, signed URLs and private download authorization.
Upgradeable customization
Module manifests, Flyway migrations, template versions and file hashes keep your fork upgradeable.
Enterprise delivery kit
Docker, deployment SOPs, a security baseline, an SBOM, delivery checklists and enterprise support.
Reliability and security baseline
Module boundaries, default-deny security, direct-to-object-storage upload, async jobs and an OpenTelemetry profile.
Redesigned Element Plus
Keep the engineering efficiency of Element Plus without the stock-template look, via StackRivet design tokens.
Engineering governance
Layering, code standards, review checklists and quality gates from Spring, Apache, Alibaba and Google practice, made part of the product.
Quick start
Start a real enterprise app in 10 minutes.
Clone, start the data stores, sign in. No low-code wizard; it's code-first from the first command.
- 1 Sign in to the admin console.
- 2 Create users and roles.
- 3 Generate your first business module.
- 4 Connect MinIO or Aliyun OSS.
Start a real enterprise app in 10 minutesgit clone https://github.com/zkmall/stackrivet-server.gitcd stackrivet-serverdocker compose up -d mysql redismvn -pl stackrivet-app spring-boot:run ✓ api http://localhost:8080✓ openapi http://localhost:8080/swagger-ui.html Architecture
Modular monolith first. Enterprise-ready later.
Start as a modular monolith so a small team can ship quickly. Clear module boundaries, migrations, OpenAPI and tests let it grow without taking on microservice complexity before you need it.
AI coding tools Codex · Cursor · Claude Code
StackRivet engineering base + guardrails
Governed module RBAC · OpenAPI · tests · assets
- Auth & RBAC
- System Management
- Code Generator
- Asset Service
- Audit Logs
- Async Tasks
- Module Manifest
- AI Guardrails
- Design System
- Engineering Governance
- Module boundaries enforced by ArchUnit tests.
- Security baseline aligned with OWASP Top 10, ASVS, SSDF and SLSA.
- High-concurrency path: stateless services, direct upload, async jobs, indexed pagination, optional Redis.
- Observability through traceId, Actuator, Micrometer and an optional OpenTelemetry profile.
How to choose
Pick StackRivet for code ownership, AI guardrails and upgradeable delivery.
| Category | Great for | StackRivet adds |
|---|---|---|
| RuoYi / RuoYi-Vue-Plus | Familiar with the RuoYi ecosystem; need lots of ready-made admin, multi-tenancy, jobs, files and workflow | AI engineering rules, testable generated code, upgradeable customization, branded UI and an enterprise delivery baseline |
| JEECG-style low-code | Forms and low-code platforms | Code-first, testable, maintainable modules |
| JHipster | Global generator and microservices | China-first Java delivery, Aliyun OSS, Gitee, enterprise kit |
| Appsmith / ToolJet | Quick internal tools | Enterprise application code your team owns long-term |
Pricing
Open core that teams can actually use.
Community
Free
A free, Apache-2.0 base you can use in real commercial projects.
Pro Team
From ¥2,999/yr
Advanced generators, templates, lightweight workflow, reports and an upgrade assistant.
Enterprise
From ¥30,000/yr
SSO, multitenancy, security audit, HA deployment, advanced storage, private deployment and SLA.
Boring, proven defaults
Built on technology your team already trusts.
No exotic runtime and no lock-in. Standard Spring Boot and Vue, pinned to LTS-grade versions.
- JDK 21 default, JDK 25 compatibility
- Spring Boot 4.0.6 default (JDK 21)
- Vue 3.5, Vite 8, TypeScript 6
- Element Plus 2.14 + StackRivet tokens
- MySQL 8.4 LTS and PostgreSQL 18.4
- Flyway migrations
- Testcontainers and Playwright
- OpenAPI 3.1
- CLI doctor + reproducible Dev Container
- Optional OpenTelemetry profile
- SBOM, dependency scanning, signed releases
- Stateless design + async task baseline
Stop rebuilding the same base
Ship real enterprise Java, faster.
Start with StackRivet, generate governed modules, and let your AI tools work inside rules your team has set.