pkg-fence

A command line tool that glance over package dependencies.

Usage

Input source is reading from stdin.

cat package-lock.json | npx pkg-fence <...>

Auto-detect Input Format

npm
from package-lock.json or npm-shrinkwrap.json
deno-info
from deno info npm:<pkg>
(otherwise)
one name per line

Exit Code

0 for empty results
1 for anything matched

Built-in Presets

--all
--lodash: pkg naming starts by lodash. or equals to lodash
--nolyfill: list of names from https://github.com/SukkaW/nolyfill (1.0.34)
--relief: list of names from https://github.com/es-tooling/module-replacements (2.5.0)
- --relief-native
- --relief-micro
- --relief-preferred

--extra

to specify addition names:

--extra foo,bar
--extra foo    --extra bar

--ignore

to ignore some names:

--ignore foo,bar
--ignore foo    --ignore bar

--invert ^(-v)

invert the search result

Available

NPM

executable only

npx          pkg-fence
bun    x     pkg-fence
pnpm dlx     pkg-fence
yarn dlx     pkg-fence
deno run npm:pkg-fence

JSR

executable, multi ESM exports, Typing

deno run jsr:@imcotton/pkg-fence

Caveat

Does not differentiate between dev or non-dev dependencies.

use npm ls ... or npm why ... to make further inspection

Results are unordered, possible in duplications.

use sort, uniq, or grep etc...

License

AGPLv3

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

README.md

README.md

pkg-fence

Usage

Auto-detect Input Format

Exit Code

Built-in Presets

--extra

--ignore

--invert ^(-v)

Available

NPM

JSR

Caveat

License

Files

README.md

Latest commit

History

README.md

File metadata and controls

pkg-fence

Usage

Auto-detect Input Format

Exit Code

Built-in Presets

--extra

--ignore

--invert (-v)

Available

NPM

JSR

Caveat

License

--invert ^(-v)