@sanchika/tokens
OKLCH theme variables, semantic roles, and motion variables.
tools.complyeaze.com/sanchika
Sanchika is the package family for shared compliance UI tokens, primitives, workflow patterns, and reviewable gallery examples across ComplyEaze surfaces.
Packages
Each package has one reason to change. Consumers should be able to adopt tokens, primitives, patterns, or gallery examples independently.
OKLCH theme variables, semantic roles, and motion variables.
React-ready contracts for accessible base components.
Compliance workflow patterns for evidence, review, and source posture.
Inspectable examples for package consumers and reviewers.
Adoption
The order keeps public surfaces conservative and avoids turning Tools into a persistence, collaboration, or workflow product.
| Step | Adoption rule |
|---|---|
| 1 | ComplyEaze uses Sanchika first for internal compliance UI conventions. |
| 2 | Axal follows with workflow surfaces that need shared review posture. |
| 3 | Pack adopts only portable contracts that preserve its no-login extension boundary. |
| 4 | Tools adopts public documentation and utility surfaces after Pack. |
Verification
Sanchika changes should pass package validation, API type checks, consumer checks, tarball checks, and the combined verification gate.
pnpm validateRequired before treating package output as ready for consumers.
pnpm typecheckRequired before treating package output as ready for consumers.
pnpm buildRequired before treating package output as ready for consumers.
pnpm typecheck:apiRequired before treating package output as ready for consumers.
pnpm artifact:checkRequired before treating package output as ready for consumers.
pnpm consumer:checkRequired before treating package output as ready for consumers.
pnpm publish:tarball-checkRequired before treating package output as ready for consumers.
pnpm verifyRequired before treating package output as ready for consumers.
Trust boundary
The public route documents the package family and its boundaries. It does not promise future components, official certification, or product persistence.
Public docs describe what exists now, not future support.
Packages must not read credentials, clients, documents, or workspaces.
Repository settings and branch protection stay reproducible.
Built artifacts and tarballs must be reproducible by consumers.
The Sanchika repository is the source of truth for package contracts, branch protection, generated artifacts, and publish checks.