npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@cobuild/repo-tools

v0.1.13

Published

Shared repository operations tools for Cobuild repos

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

rocketman21rocketman21

Keywords

Readme

@cobuild/repo-tools

Shared repository operations tooling for Cobuild repos.

Tools

  • cobuild-open-exec-plan
  • cobuild-close-exec-plan
  • cobuild-doc-gardening
  • cobuild-check-agent-docs-drift
  • cobuild-committer
  • cobuild-package-audit-context
  • cobuild-sync-dependent-repos
  • cobuild-switch-package-source
  • cobuild-update-changelog
  • cobuild-generate-release-notes
  • cobuild-release-package

Config

cobuild-check-agent-docs-drift, cobuild-doc-gardening, cobuild-committer, and cobuild-package-audit-context read configuration from environment variables so each consuming repo can keep only thin wrappers.

Supported env vars:

  • COBUILD_DRIFT_REQUIRED_FILES: newline-delimited required doc artifact paths.
  • COBUILD_DRIFT_CODE_CHANGE_PATTERN: extended regex for code/process-sensitive files.
  • COBUILD_DRIFT_CODE_CHANGE_LABEL: message prefix for code/doc coupling failures.
  • COBUILD_DRIFT_LARGE_CHANGE_THRESHOLD: file-count threshold that requires an active plan.
  • COBUILD_DRIFT_CHANGED_COUNT_EXCLUDE_PATTERN: extended regex of files excluded from large-change counting.
  • COBUILD_DRIFT_ALLOW_RELEASE_ARTIFACTS_ONLY: set to 1 to allow release-artifact-only commits without docs updates.
  • COBUILD_DOC_GARDENING_EXTRA_TRACKED_PATHS: newline-delimited extra tracked doc paths outside agent-docs/**.
  • COBUILD_COMMITTER_EXAMPLE: example Conventional Commit shown on validation failure.
  • COBUILD_COMMITTER_ALLOWED_TYPES: optional comma- or newline-delimited Conventional Commit types accepted by cobuild-committer. Defaults to feat,fix,refactor,build,ci,chore,docs,style,perf,test,release.
  • COBUILD_COMMITTER_DISALLOW_GLOBS: newline-delimited shell globs that must not be committed.
  • COBUILD_AUDIT_CONTEXT_PREFIX: default output filename prefix for audit packages.
  • COBUILD_AUDIT_CONTEXT_TITLE: heading used in merged text bundles.
  • COBUILD_AUDIT_CONTEXT_REPO_LABEL: repo label used in the help text.
  • COBUILD_AUDIT_CONTEXT_SENSITIVE_NOTE: optional extra sentence appended to the help text.
  • COBUILD_AUDIT_CONTEXT_INCLUDE_TESTS_DEFAULT, COBUILD_AUDIT_CONTEXT_INCLUDE_DOCS_DEFAULT, COBUILD_AUDIT_CONTEXT_INCLUDE_CI_DEFAULT: default include toggles (0 or 1).
  • COBUILD_AUDIT_CONTEXT_ALWAYS_PATHS: newline-delimited always-included file paths.
  • COBUILD_AUDIT_CONTEXT_SCAN_SPECS, COBUILD_AUDIT_CONTEXT_TEST_SCAN_SPECS, COBUILD_AUDIT_CONTEXT_DOC_SCAN_SPECS, COBUILD_AUDIT_CONTEXT_CI_SCAN_SPECS: newline-delimited scan specs in dir or dir:glob form.
  • COBUILD_AUDIT_CONTEXT_PRUNE_DIR_NAMES: newline-delimited directory names pruned while scanning.
  • COBUILD_AUDIT_CONTEXT_EXCLUDE_GLOBS: newline-delimited shell globs excluded from the manifest.
  • COBUILD_AUDIT_CONTEXT_EXCLUDE_SENSITIVE: set to 1 to drop common secret/archive paths from the manifest.
  • COBUILD_AUDIT_CONTEXT_VALIDATE_SOLIDITY_IMPORT_CLOSURE: set to 1 to require packaged Solidity imports to stay closed within the manifest.
  • COBUILD_RELEASE_PACKAGE_NAME: expected package name for shared release flow.
  • COBUILD_RELEASE_REPOSITORY_URL: optional expected repository URL for shared release flow.
  • COBUILD_RELEASE_CHECK_CMD: optional release-check command; defaults to npm run release:check.
  • COBUILD_RELEASE_COMMIT_CMD: optional commit helper path; defaults to scripts/committer.
  • COBUILD_RELEASE_COMMIT_TEMPLATE: optional printf template; defaults to chore(release): v%s.
  • COBUILD_RELEASE_TAG_MESSAGE_TEMPLATE: optional tag annotation template; defaults to v%s.
  • COBUILD_RELEASE_NOTES_ENABLED: set to 1 to generate release notes.
  • COBUILD_RELEASE_NOTES_DIR: optional release notes output directory; defaults to release-notes.
  • COBUILD_RELEASE_POST_PUSH_CMD: optional shell command run after a pushed release.
  • COBUILD_RELEASE_POST_PUSH_SKIP_ENV: optional env var name; if that env var is 1, skip the post-push hook.

Release

  • pnpm run release:check
  • pnpm run release:patch
  • pnpm run release:minor
  • pnpm run release:major
  • pnpm run sync:repos -- --version <semver>

The shared release flow uses pnpm for versioning and release checks, so PNPM-managed repos keep pnpm-lock.yaml authoritative instead of recreating package-lock.json.

Consumer update policy

@cobuild/repo-tools is intended to be consumed as a published package from node_modules, not as a sibling checkout.

  • Current direct workspace consumers: v1-core, wire, interface, chat-api, cli, indexer, and review-gpt.
  • Consumer wrapper scripts resolve repo-tools bins from the installed dev dependency first, so a sibling repo-tools clone is not required for normal repo operation.
  • After a published release that changes shared bins, release wrappers, or config env contracts, bump the affected sibling repos intentionally instead of assuming agents will infer the rollout.

Typical consumer bump command from a consumer repo root:

pnpm up @cobuild/repo-tools@<version>

This repo now has the same one-command publish-and-bump shape:

  • scripts/release.sh can call scripts/sync-dependent-repos.sh after push and after npm publish visibility.
  • Skip the automatic downstream bump with --no-sync-upstreams or REPO_TOOLS_SKIP_UPSTREAM_SYNC=1.
  • Run the same flow manually with pnpm run sync:repos -- --version <semver> --wait-for-publish.

Examples

Switch a dependency to a published release:

pnpm exec cobuild-switch-package-source --package @cobuild/wire --field dependencies --published

Switch a dependency to a local link:

pnpm exec cobuild-switch-package-source --package @cobuild/wire --field dependencies --local ../wire

Build a text-only audit bundle using repo-local config:

source scripts/repo-tools.config.sh
pnpm exec cobuild-package-audit-context --txt