npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@phyzess/latch

v0.1.2

Published

Core package for Latch, a private launch surface for self-hosted web services.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Maintainers

phyzessphyzess

Keywords

Readme

@phyzess/latch

Core package for Latch, a private launch surface for self-hosted web services.

This package contains the built Latch UI, the Cloudflare Worker runtime, and the small CLI used by the thin deployment template at phyzess/latch.

Public API

export { default } from "@phyzess/latch/worker";
export type { Env } from "@phyzess/latch/worker";
import {
  ConfigValidationError,
  parseServiceConfigSource,
  validateServiceConfig,
  type ServiceEntry
} from "@phyzess/latch/config";

CLI

latch build --out dist
latch doctor

latch build copies the packaged static assets into a deployment repo and deliberately removes any static services.json; production links are loaded from Workers KV at runtime.

When production config is saved, the Worker resolves missing service names from linked page titles and missing icons from linked page favicons. Manually configured name and icon values take priority.

Development

pnpm dev

pnpm dev builds the static UI and starts Wrangler with the same Worker, assets, API routes, /settings, /services.json, and local KV flow used by a deployed site. Localhost skips Cloudflare Access and treats dev@localhost as an admin.

Use pnpm dev:ui only for isolated Astro UI work that does not need Worker APIs.

Release

pnpm install --frozen-lockfile
pnpm check
pnpm test
pnpm pack:check
npm publish --access public

After publishing a new version, update the deployment template only when its wrapper files need to change. Normal users receive runtime updates by merging Dependabot or Renovate PRs that bump @phyzess/latch.

Security

Production deployments must be protected by Cloudflare Access. The Worker validates Access JWTs and fails closed when POLICY_AUD or TEAM_DOMAIN are missing.

Latch stores links in Workers KV and never stores service passwords, tokens, cookies, or credentials.