npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@archora/cli

v1.0.2

Published

Command-line interface for Archora. Runs the analyzer, produces JSON/Markdown/JUnit/HTML reports, diffs against a baseline snapshot, and exits with an error code when configurable thresholds are crossed (designed for CI gates).

Downloads

519

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

archora.devarchora.dev

Keywords

architecturefrontenddependency-analysiscyclescicode-review

Readme

@archora/cli

Command-line interface for Archora. Runs the analyzer on a local repository and produces JSON / Markdown / JUnit / HTML reports. Designed for CI gates: archora check exits non-zero when configurable thresholds are crossed.

Status: @archora/[email protected] is published on npm. Local development can still use npm run cli -- <command> from the repo root.

Install path

After the npm release, use one of these entry points:

npx @archora/cli init .
npx @archora/cli check .
npx @archora/cli report . --format md -o archora-report.md
npx @archora/cli report . --format fix-plan --git-history -o archora-fix-plan.json

For pinned CI installs:

npm install --save-dev @archora/cli
npx archora check .

Commands

archora analyze <path> [-o file]
archora init    <path> [--dry-run] [--force]
archora baseline write <path> -o baseline.json
archora agent review <path> --base baseline.json [--changed-files a.ts,b.ts]
archora report  <path> --format md|html|junit|json [-o file] [--base baseline.json]
archora diff    <path> --base baseline.json [-o file]
archora check   <path> [--fail-on <rule> …] [--base baseline.json]
archora ci      <path> [--fail-on <rule> …] [--base baseline.json]
archora matrix  <path> [--group-by area|layer|folder|package] [--format json|md] [--input scan.json]
archora matrix  <path> [--only-violations] [--only-cycles] [--top N]
archora impact  <path> --module <module-id-or-substring> [--format json|md] [--top N] [--input scan.json]
archora explain <path> [--module <module-id> | --cycle <id> | --signal <stable-key>] [--input scan.json] [--base baseline.json]
archora review  <path> [--format json|md] [--input scan.json] [--base baseline.json] [--pr-comment] [--changed-files a.ts,b.ts]
archora ownership <path> [--format json|md] [--top N] [--input scan.json]
archora semantic <path> [--format json|md] [--top N] [--input scan.json]
archora hygiene <path> [--format json|md] [--top N] [--input scan.json]
archora trend   <path> --base baseline.json [--format json|md] [--input scan.json]
archora license request [--plan trial|solo|team|company] [--out license-request.md]
archora license activate <license-key>
archora license status [--json]
archora license remove

--fail-on rules

Repeatable. The command exits with code 1 if any rule trips, else 0.

| Rule | Meaning | | ------------------------------ | ----------------------------------------------------------- | --- | --- | --- | --------------------------------------------------- | | grade:<A | B | C | D | F> | Fail if archDebt.grade is at or below the letter. | | cycles:N | Fail if more than N cycles. | | layer-violations:N | Fail if more than N layer violations. | | recommendations:N | Fail if more than N recommendations. | | new-cycles:N | Fail if the diff against --base adds more than N cycles. | | signals:<severity> | Fail if any current CI-safe signal is at severity or above. | | new-signals:<severity> | Fail if the scan adds CI-safe signals versus --base. | | regressed-signals:<severity> | Fail if existing CI-safe signals regress versus --base. |

CI-safe signal gates only count stable, high-confidence, unsuppressed, unresolved signals. Lower-maturity signals remain visible in reports without failing CI by default.

Examples

# Bootstrap a conservative rules config. Use dry-run first if you want to
# inspect the JSON before writing `.archora.json`.
npm run cli -- init . --dry-run
npm run cli -- init .

# Create or update a mainline baseline intentionally.
npm run cli -- baseline write . -o .archora/baseline.json

# Local: dump a JSON snapshot of the current repository.
npm run cli -- analyze . -o scan.json

# CI: fail the build when the project drops to D or below, or any new cycle
# is introduced versus the previous mainline snapshot.
npm run cli -- check . \
  --fail-on grade:D \
  --fail-on new-cycles:0 \
  --base ./snapshots/mainline.json

# Same command can use .archora.json architectureBudget without --fail-on.
npm run cli -- check .

# Local guardrail for coding-agent changes.
npm run cli -- agent review . \
  --base .archora/baseline.json \
  --changed-files src/features/auth/model/session.ts

# Same gate with a CI-oriented command name.
npm run cli -- ci . --fail-on signals:high --base ./snapshots/mainline.json

# PR comment: render a Markdown report with diff context.
npm run cli -- report . --format md --base ./snapshots/mainline.json -o report.md
npm run cli -- report . --format fix-plan --git-history -o fix-plan.json

# Analyzer-first review: inspect dependency matrix and module impact.
npm run cli -- matrix . --group-by area --format md
npm run cli -- impact . --module src/features/auth/model/session.ts --format md
npm run cli -- explain . --signal 'contract:src/features/auth'
npm run cli -- matrix --input scan.json --format md
npm run cli -- review --input scan.json --format md
npm run cli -- review --input scan.json --base baseline.json --format md
npm run cli -- review --input scan.json --base baseline.json --pr-comment --changed-files src/features/auth/model/session.ts
npm run cli -- ownership --input scan.json --format md
npm run cli -- semantic --input scan.json --format md
npm run cli -- hygiene --input scan.json --format md
npm run cli -- trend --input scan.json --base baseline.json --format md

For analyzer-first review commands, --input scan.json reuses an existing archora analyze output instead of scanning the repository again. matrix --format md includes a Cell imports drilldown; JSON output includes the same concrete edges under each cell.

Markdown and HTML reports are optimized for review, not raw dumps: they keep blocking rule violations, signal review state, risk buckets, a short review checklist and readable next actions near the top. Signal rows include confidence, lifecycle state and suppression reason; CI-safe counts stay separate from lower-confidence review items. Findings that only touch fixtures/** are counted in the scan summary but hidden from human-facing sections by default.

License activation

The CLI supports the same temporary manual license flow as Archora Forge. There is no server requirement for the first customer/pilot path:

archora license request --plan trial --out license-request.md
archora license activate <license-key>
archora license status

Send license-request.md to [email protected] or Telegram @akotofff. The request file does not include source code, environment variables or private absolute paths.

Commercial command gating is enabled only when ARCHORA_LICENSE_PUBLIC_KEY_JWK is configured in the environment. The stored CLI key lives in:

~/.config/archora/license.json

For CI or tests, override that path with ARCHORA_LICENSE_FILE.

Output streams

  • stdout: machine-readable output (JSON / Markdown / JUnit / HTML body). Always safe to redirect to a file.
  • stderr: progress and diagnostics. Suppressed by --quiet.
  • exit code: 0 success, 1 rule tripped (check), 2 invalid usage, other non-zero on unexpected errors.

Source layout

src/
  index.ts          # entrypoint + dispatch
  argv.ts           # minimal argv parser, no external dep
  commands/         # analyze | diff | report | check
  exporters/        # markdown | junit | html
  lib/              # loadScan, failOn rule parser

During development the CLI imports the analyzer through the @archora/core workspace path. The published tarball bundles the core into dist/index.js, so consumers do not need a separate @archora/core package.