npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@gonkagate/qwen-code-setup

v0.2.0

Published

Developer CLI for configuring Qwen Code to use GonkaGate as an OpenAI-compatible provider.

Downloads

252

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

gonkagategonkagate

Keywords

gonkagategonkagate apiqwenqwen codeqwen-codeinstallerclicustom provideropenai compatibleopenai-compatibleai cli

Readme

Qwen Code Setup for GonkaGate

Configure Qwen Code to use GonkaGate as an OpenAI-compatible provider with one developer-friendly npx command.

npx @gonkagate/qwen-code-setup

Package Node Qwen%20Code License

Website Docs API%20Key

@gonkagate/qwen-code-setup is a public CLI installer for developers who want Qwen Code to route chat completions through the GonkaGate API without manually editing Qwen settings JSON.

Quick Start

npx @gonkagate/qwen-code-setup

You need:

  • Node.js >=22.14.0
  • Qwen Code installed as qwen
  • a GonkaGate API key from the dashboard

The runtime is implemented. It writes managed Qwen Code settings after validating Qwen Code, collecting the key through safe inputs, checking the GonkaGate model catalog, verifying the local result, and keeping output redacted.

What It Does

The happy path is:

  1. Detects the local qwen binary and verifies the audited Qwen Code baseline.
  2. Collects or reuses GONKAGATE_API_KEY without printing the secret.
  3. Calls authenticated GET https://api.gonkagate.com/v1/models.
  4. Requires all supported GonkaGate models before writing config.
  5. Writes the GonkaGate provider into modelProviders.openai[].
  6. Sets security.auth.selectedType = "openai" and model.name.
  7. Stores the durable key reference at settings.env.GONKAGATE_API_KEY.
  8. Creates backups, rolls back on failure, and reports current-session environment shadowing when relevant.

Use --dry-run to inspect planned writes before changing local Qwen Code settings. Use --json for machine-readable, redacted output.

Supported Models

The installer only offers models that are present in GonkaGate's authenticated model catalog:

  • qwen/qwen3-235b-a22b-instruct-2507-fp8
  • moonshotai/Kimi-K2.6
  • minimaxai/minimax-m2.7

Known Qwen Code Baseline

The compatibility baseline is @qwen-code/qwen-code 0.18.0, audited on June 12, 2026.

The current Qwen Code integration points are:

  • binary: qwen
  • package: @qwen-code/qwen-code
  • package engine: >=22.0.0
  • user settings: ~/.qwen/settings.json
  • QWEN_HOME user settings: <QWEN_HOME>/settings.json
  • provider family: modelProviders.openai[]
  • auth selection: security.auth.selectedType = "openai"
  • active model selection: model.name
  • provider key lookup: envKey, resolved from Qwen Code environment loading
  • model discovery: authenticated GET https://api.gonkagate.com/v1/models after API-key collection

The audited 0.18.0 source marks modelProviders with replace merge semantics. User-scope provider catalog writes are managed in user settings. Project scope writes only activation settings and blocks if project modelProviders would hide user-managed providers.

Security

The installer is designed for local developer machines and keeps secrets out of plain command history.

Allowed secret inputs:

  • hidden interactive prompt
  • GONKAGATE_API_KEY
  • --api-key-stdin

Not allowed:

  • plain --api-key
  • shell profile mutation
  • repository-local secret storage

The v1 durable secret target is user-level settings.env.GONKAGATE_API_KEY inside the active Qwen settings file. Unlike OpenCode, the audited Qwen Code docs describe envKey and environment loading rather than an OpenCode-style {file:...} provider secret binding.

Verification And Safety

Default setup success is based on bounded local verification, not a live model call. --verify-live is available only as an explicit opt-in and may spend quota or depend on provider/network availability.

Local Development

Install and run the full contract suite:

npm ci
npm run ci

Useful focused checks:

npm run build
npm run typecheck
npm run test
npm run format:check
npm run package:check
npm pack --dry-run

Run the CLI from source:

npm run dev -- --dry-run

Release Flow

This repository uses Release Please and npm trusted publishing.

For changes that should create a release, use a releasable Conventional Commit:

feat: improve qwen code developer onboarding

After that commit lands on main, Release Please opens a release PR that bumps package.json, .release-please-manifest.json, CHANGELOG.md, and src/constants/contract.ts. When that release PR is merged, GitHub Actions publishes to npm with provenance.

Use fix: for patch releases and feat: for minor releases. Non-releasable commits such as docs: are useful for internal cleanup, but they should not be used when the change is intentionally testing the release pipeline.

Docs