Skip to content

Cordagr/DependencyTracker

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
 
 
 
 
 
 

Repository files navigation

Dependency Tracker

A simple tool to analyze, report, and improve the health of your project's dependencies. Supports Python (requirements.txt) and Node.js (package.json).

Features

  • Detects outdated and vulnerable dependencies
  • Suggests replacements and upgrades
  • Generates an updated requirements file
  • Beautiful terminal health summary (with visual bars)
  • Flexible CLI options
  • GitHub Actions CI/CD integration

Quick Start

  1. Install dependencies:
    pip install -r requirements.txt
    pip install rich
  2. Run the tool:
    cd depcheck
    python main.py
    By default, analyzes the parent directory (where your requirements.txt or package.json lives).

CLI Options

  • -p PATH, --path PATH: Specify project directory
  • -i DEP1,DEP2, --ignore DEP1,DEP2: Ignore specific dependencies
  • -d, --dev: Include dev dependencies
  • -r FORMAT, --reporter FORMAT: Output format (plain, json, csv, xml)
  • -v, --version: Show version and exit

Example:

python main.py -p .. -r json -i requests,flask

Output

  • Terminal Table: Shows dependency status, vulnerabilities, and suggestions
  • Health Summary: Visual bar chart of outdated/vulnerable dependencies
  • Updated File: requirements.updated.txt with latest/suggested versions

CI/CD Integration

A sample GitHub Actions workflow is provided in .github/workflows/dependency-tracker.yml.

Supported Formats

  • Python: requirements.txt
  • Node.js: package.json

Customization

  • Add curated replacements in analyze/replacements.py
  • Extend parsers for other ecosystems

License

MIT


Made with rich for beautiful terminal output.

About

Dependency Tracker for Node.js and Python packages

Topics

Resources

Stars

0 stars

Watchers

0 watching

Forks

Releases

No releases published

Packages

 
 
 

Contributors

Languages