A simple tool to analyze, report, and improve the health of your project's dependencies. Supports Python (requirements.txt) and Node.js (package.json).
- Detects outdated and vulnerable dependencies
- Suggests replacements and upgrades
- Generates an updated requirements file
- Beautiful terminal health summary (with visual bars)
- Flexible CLI options
- GitHub Actions CI/CD integration
- Install dependencies:
pip install -r requirements.txt pip install rich
- Run the tool:
By default, analyzes the parent directory (where your
cd depcheck python main.pyrequirements.txtorpackage.jsonlives).
-p PATH,--path PATH: Specify project directory-i DEP1,DEP2,--ignore DEP1,DEP2: Ignore specific dependencies-d,--dev: Include dev dependencies-r FORMAT,--reporter FORMAT: Output format (plain,json,csv,xml)-v,--version: Show version and exit
Example:
python main.py -p .. -r json -i requests,flask- Terminal Table: Shows dependency status, vulnerabilities, and suggestions
- Health Summary: Visual bar chart of outdated/vulnerable dependencies
- Updated File:
requirements.updated.txtwith latest/suggested versions
A sample GitHub Actions workflow is provided in .github/workflows/dependency-tracker.yml.
- Python:
requirements.txt - Node.js:
package.json
- Add curated replacements in
analyze/replacements.py - Extend parsers for other ecosystems
MIT
Made with rich for beautiful terminal output.