npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@builtbyecho/agent-brief

v0.1.1

Published

Generate concise, safety-aware project briefs for coding agents.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

builtbyechobuiltbyecho

Keywords

ai-agentagentscontextclimcpdeveloper-toolsagentic

Readme

agent-brief

Generate a concise, safety-aware project brief for coding agents.

Agents waste a surprising amount of time rediscovering the same basics: What stack is this? Which command runs tests? Is there an AGENTS.md? Are there risky instructions or secret-looking strings in the handoff context?

agent-brief turns a repo into a short briefing an agent can read before it starts changing code.

npx @builtbyecho/agent-brief

What it does

  • Finds high-signal files: AGENTS.md, CLAUDE.md, README.md, package.json, pyproject.toml, Cargo.toml, go.mod, etc.
  • Infers stack and common commands.
  • Builds a compact repo map.
  • Scans context files for obvious secrets and risky operational instructions.
  • Emits Markdown for humans/agents or JSON for automation.

Install

npm install -g @builtbyecho/agent-brief
agent-brief /path/to/repo

Or run without installing:

npx @builtbyecho/agent-brief /path/to/repo

Usage

agent-brief [path] [options]

Options:

  • --format markdown|json / -f — output format. Default: markdown.
  • --max-file-bytes N — max bytes to read per context file. Default: 12000.
  • --no-snippets — omit source snippets.
  • --fail-on-high-risk — exit 2 if high-severity risk patterns are found.

Examples:

agent-brief . > AGENT_BRIEF.md
agent-brief ~/dev/my-app --format json
agent-brief . --fail-on-high-risk

Why this exists

The current agent tooling boom has plenty of orchestration, MCP servers, and observability dashboards. The missing small thing is a cheap, local preflight that gives any agent the same crisp project orientation before it spends tokens or touches files.

This is intentionally zero-dependency and boring. It should be safe to run in almost any repo.

Library API

import { generateBrief, formatMarkdown } from '@builtbyecho/agent-brief';

const brief = generateBrief(process.cwd());
console.log(formatMarkdown(brief));

Notes on risk scanning

This is not a full secret scanner. It catches common token/private-key/secret-assignment patterns in the context files most likely to be pasted into agents. Use a dedicated scanner like Gitleaks or TruffleHog for full repository security reviews.

License

MIT