npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2024 – Pkg Stats / Ryan Hefner

@alfa-code/dependency-aging-index

v1.0.6

Published

Dependency aging index

Downloads

14

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

hydrockhydrock

Keywords

Readme

DAI - dependency-aging-index

npm version

If you do not update the libraries for a long time, and use the old versions, the project, sooner or later, will begin to die. No one needs it. This library provides a silly way to evaluate the importance of updating dependencies.

How it works

Npm libraries have versions like 1.0.0 (https://semver.org/) The package version is divided into three main groups: major, minor, patch. With this utility (dai), it is possible to analyze your package.json, calculate the difference between your dependency version and the latest one. If the number of such differences reaches a critical value, then it's time to update the libraries.

Installation

npm install -g @alfa-code/dependency-aging-index
yarn global add @alfa-code/dependency-aging-index

Usage

Usage as a module

You can use the library as a module. Import the library into your project.

const dai = require('./index');

The function takes two arguments:

  • pathToPackageJSON (fyle system path or url)
  • options (options object)

The options may contain:

{
  pathType: 'fs' | 'url'; // type of content // default 'fs'

  maxIndex: number; // max value of dependency aging index // default 5000

  errorCodeReturn: boolean; // If the value is set to true, then if the report exceeds the maximum dai value, the program will return code 1 (failure) after completion (can be useful for CI/CD) // default is false
  
  exceptions: array of strings; // list of exceptions libraries (libraries that don't need to be considered in the report)

  customBadMessage: string;
}

Then call the library with the necessary parameters. Examples:

// call without options
dai();

// call with type and absolute path
dai('/Documents/projectName/', {
  pathType: 'fs'
});

// call with type and relative path
dai('./', {
  pathType: 'fs'
});

// call with type and relative path with package.json string
dai('./package.json', {
  pathType: 'fs'
});


// call as url
dai('https://raw.githubusercontent.com/alfa-code/dependency-aging-index/main/package.json', {
  pathType: 'url'
});

Usage as a CLI util

After the global installation, the utility will be available from the terminal using the dai command. Run the dai command and follow the instructions.

After the analysis, you will get a report like:

Final report:  {
  'Number of root dependencies': 85,
  'Report': {
    major: 39,
    premajor: 9,
    minor: 15,
    preminor: 0,
    patch: 10,
    prepatch: 1,
    prerelease: 1,
    noDiff: 10
  }
}

By default, the differences have the following weight:

major: 1000,
premajor: 1000,
minor: 100,
preminor: 100,
patch: 10,
prepatch: 10,
prerelease: 0,
noDiff: 0

You will eventually get the total amount of dai:

Final assessment of dependency deprecation: 49610

You will receive different messages depending on the amount of dai:

> 5000: Your dependencies are very outdated! We need to update it urgently!

> 0 < 5000: Some dependencies are deprecated. It's time to start updating!

0: Absolutely all dependencies are updated! You and your team are the best!

If the amount does not exceed the maximum, the program will finish execution with code 1, in other cases successfully with code 0.

Based on the program's exit code, you can make the appropriate decision. For example, with exit code 1, you can stop your CI, and force the developer to update several libraries.

If you are using a unix-like system, run the command echo $? - this way you will know the exit code of the last running program.

TODO: Add the ability to configure dai values