Depverse

Tools · 34

• get_latest_version Latest stable version string of a package.
• get_all_versions Every published version (plus a count).
• get_version_info Manifest for a specific version (deps, license, engines, …).
• get_dist_tags All dist-tags (`latest`, `beta`, `next`, …) and the versions they point to.
• get_changelog Release notes from GitHub Releases (if a version is given) or `CHANGELOG.md` from the linked repo.
• check_version_exists Boolean check: is `pkg@version` published?
• get_package_info High-level metadata card: name, description, author, license, homepage, maintainers, created/modified dates.
• get_package_readme README markdown for the latest version (truncated to 20,000 chars).
• get_package_keywords Keywords / tags declared in `package.json`.
• get_package_repository Source repo URL, plus a parsed `owner/repo` slug when the repo is on GitHub.
• get_package_homepage Homepage URL + npm page URL as a fallback.
• get_package_license Declared license (string, SPDX, or legacy array form).
• get_package_size Unpacked size (bytes + human-readable) and file count for a specific version.
• get_dependencies Runtime `dependencies` for a version.
• get_peer_dependencies `peerDependencies` + `peerDependenciesMeta` (marks optional peers).
• get_dev_dependencies `devDependencies` (build/test-time only).
• get_dependency_tree Walks the transitive dep graph. Resolves nodes in parallel, de-duplicates, and caps at `max_depth` (default 2, hard-capped at 4).
• check_peer_compatibility Given `{peer_name: installed_version}`, reports per-peer `yes` / `no` / `unknown` / `missing` / `missing-optional`. Ships a small semver matcher that handles `^`, `~`, `>=`, `<=`, `>`, `<`, `=`, `*`, `||`.
• check_vulnerabilities Check a package + version against the [OSV.dev](https://osv.dev) database. Returns all matching advisories (GHSA, CVE) with severity and references.
• get_deprecation_status Reports whether a package or specific version is deprecated, plus the deprecation message. Scans all versions when no `version` is given.
• check_maintainer_activity Last publish date, publish count, average cadence, and a status label (`active` / `slowing` / `stale` / `abandoned`).
• get_download_stats Weekly / monthly download counts from the public npm download API, plus a simple popularity tier.
• check_typosquat_risk Flags names suspiciously close to popular packages via Levenshtein distance — catches common supply-chain typos.
• get_download_trend Day-by-day download counts over a range (`last-month`, `last-year`, or custom dates) with a `growing` / `declining` / `flat` trend label.
• compare_popularity Side-by-side download counts for 2–10 packages. Returns a ranking plus each package's share of the combined total.
• get_download_by_version Per-version download breakdown for the last week — shows which versions users are actually installing, plus the most popular major line.
• get_vulnerability_details Full details for a specific advisory ID (GHSA, CVE, OSV) — summary, severity, affected npm packages, patched versions.
• audit_all_dependencies One-call vulnerability audit of a whole `package.json` via OSV's batch endpoint. Reports per-dep vuln counts.
• check_supply_chain_risk Resolves a package's direct deps, audits them all, and returns a `clean` / `low` / `medium` / `high` risk tier.
• get_patched_version Given a CVE/GHSA/OSV ID, returns the first patched version per affected npm package — what you need to upgrade to.
• check_node_compatibility Returns the `engines` field (node / npm / yarn constraints) declared by a package version.
• compare_versions Diffs two versions' `dependencies`, `devDependencies`, `peerDependencies`, and `engines` — reports added / removed / range-changed.
• get_breaking_changes Scans a `from → to` version diff for direct or peer dependencies whose declared range crossed a **major** version boundary.
• resolve_semver Resolves an npm range (`^18.0.0`, `~4.17.20`, `>=2 <3`, `1.x`, `*`) to the highest published version that satisfies it.