apm uninstall
Remove one or more APM packages from apm.yml, the lockfile, apm_modules/, and every deployed primitive across all configured harnesses.
Synopsis
Section titled “Synopsis”apm uninstall [OPTIONS] PACKAGES...Description
Section titled “Description”apm uninstall is the inverse of apm install <package>. It strips a package from the manifest, deletes its source from apm_modules/, prunes any transitive dependencies that nothing else depends on, and removes every file the package deployed into harness folders (Copilot, Claude, Cursor, Codex, Gemini, OpenCode, Windsurf).
The command only deletes files tracked in the lockfile’s deployed_files manifest, so hand-authored content in the same harness folders is left alone.
Arguments
Section titled “Arguments”| Argument | Description |
|---|---|
PACKAGES... | One or more packages to remove. Accepts shorthand (owner/repo), HTTPS URL, SSH URL, FQDN, or marketplace notation (name@marketplace). APM resolves each to the canonical identity stored in apm.yml. Required. |
Options
Section titled “Options”| Option | Description |
|---|---|
--dry-run | Show what would be removed without touching disk. Registry fallback for marketplace notation is skipped. |
-v, --verbose | Show detailed removal information. |
-g, --global | Remove from the user scope (~/.apm/) instead of the current project. |
Examples
Section titled “Examples”Remove one package:
apm uninstall acme/my-packageRemove several at once:
apm uninstall org/pkg1 org/pkg2Preview the removal without writing to disk:
apm uninstall acme/my-package --dry-runRemove from the user scope:
apm uninstall -g acme/my-packageRemove by marketplace name (resolved via lockfile, then registry):
apm uninstall my-plugin@officialResolve via URL (same identity as the shorthand):
apm uninstall https://github.com/acme/my-package.gitBehavior
Section titled “Behavior”What gets removed, in order:
- The package entry in
apm.ymlunderdependencies.apm. - The package folder under
apm_modules/owner/repo/. - Transitive dependencies that no remaining package depends on (npm-style pruning, computed from
apm.lock.yaml). - Every file in the lockfile’s
deployed_filesfor the removed packages and pruned orphans, across all harness folders (.github/,.claude/,.cursor/,.opencode/,.gemini/,.codex/,.windsurf/). - Hook entries inside
.claude/settings.json,.cursor/hooks.json, and.gemini/settings.jsonthat the removed packages contributed. - MCP servers contributed only by the removed packages.
- The lockfile entries themselves. If no dependencies remain,
apm.lock.yamlis deleted. - Empty parent directories left behind by the cleanup.
If a name passed on the command line is not found in apm.yml, the command warns and continues with the rest. If none of the names match, it exits without changes.
If a marketplace ref cannot be resolved (neither the lockfile nor the registry has a matching entry), APM logs an error and skips that package. Use owner/repo notation to uninstall directly, or run apm list to find the canonical name.
Supply-chain guard
Section titled “Supply-chain guard”When marketplace notation (name@marketplace) falls through to the registry (Stage 2), APM refuses any canonical the registry returns that is not already recorded in apm.lock.yaml. The refusal is reported as a warning naming the resolved canonical so you can decide whether to re-run with apm uninstall owner/repo directly. This prevents a poisoned marketplace registry from coercing APM into removing an unrelated installed package.
#ref is not meaningful for uninstall
Section titled “#ref is not meaningful for uninstall”apm install accepts an optional #ref fragment (apm install NAME@MKT#ref) to pin a specific revision. apm uninstall identifies packages by canonical name only, so any #ref fragment supplied with marketplace notation (e.g. my-plugin@official#v1.0.0) is ignored.
No-lockfile behavior
Section titled “No-lockfile behavior”If apm.lock.yaml is not present, marketplace notation has no offline anchor: Stage 1 finds nothing, and the supply-chain guard cannot cross-check the registry result. APM still attempts registry resolution and proceeds if the canonical matches an entry in apm.yml, but this path has weaker integrity guarantees. Prefer owner/repo form when there is no lockfile, or run apm install to regenerate the lockfile first.
--dry-run runs steps 1-3 in memory and prints the plan; nothing is written. Registry fallback is also skipped in dry-run mode, so marketplace refs not already in the lockfile cannot be previewed; use owner/repo notation or re-run without --dry-run.
Related
Section titled “Related”apm install— the inverse operation.apm prune— remove orphaned packages without naming them.apm list— see what is currently installed.- Lockfile spec — how
deployed_filesdrives safe cleanup.