npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@yavdaanalytics/traceback

v0.1.7

Published

Semantic debugger MCP server: warm-starts grep/git with cosine-similarity recall over past coding-agent sessions

Readme

traceback

Debugging the way human memory works: cued recall, then ground-truth verification, then exhaustive search only if recall fails.

LLM agents usually grep the whole repo blind. Humans don't. A familiar error, phrase, or past bug cues “I've seen this,” then you check the commit history to confirm order and cause — and only then dig through every file.

traceback is an MCP warm-start server that mirrors that pattern, so agents search O(session / commit scope) instead of O(repo) by default:

  1. Cue — cosine similarity over past agent sessions (“this feels familiar”)
  2. Verify — git commits / diffs linked to those sessions (the receipt)
  3. Fallback — scoped grep that widens to the full repo if recall is empty or wrong

Embeddings are a fuzzy associative cue; git is what stops misremembered sessions from becoming the product.

Quick start

git clone https://github.com/yavdaanalytics/traceback.git
cd traceback
npm install
npm run build
npx -y -p @yavdaanalytics/traceback traceback-setup

Or from npm (after publish): npm install -g @yavdaanalytics/traceback then traceback-setup.

npm install does not run setup automatically. For global all-repo setup, plugin installs, and per-IDE hooks, see SETUP.md.

First MCP call for coding tasks: search_with_fallback with the user's question and repo path. Full tool list: docs/API.md.

How it works

traceback sequences fuzzy recall before precise search via a 4-layer funnel (search_with_fallback):

Cue (L1 sessions) → Verify (L2 git) → Fallback (L3 scoped→full grep) → Refine (L4)

| Layer | Role | What | Always runs? | |-------|------|------|--------------| | L1 | Cue | Past session embeddings (LanceDB) | Attempted; may be empty on cold start | | L2 | Verify | git log -S + commit-message embeddings | Yes — the ground-truth receipt | | L3 | Fallback | Scoped git grep → widen to full repo | Yes — when recall is empty or wrong | | L4 | Refine | Symbol / diff / keyword refinements | Partial |

Vectors alone can confabulate (wrong order, wrong cause). Session→commit links and git diffs are the calendar/receipt that confirm or correct the cue. Grep is the last resort when even that comes up empty.

Deep dive: docs/ARCHITECTURE.md.

Indexing & backfill

  • Global hook, per-repo data — setup installs one post-commit hook at ~/.traceback/hooks (git config --global core.hooksPath). A commit in any repo triggers ingest scoped to that repo only.
  • Not a machine-wide index — SQLite + LanceDB live under each repo's data/ (traceback.db, lancedb/). Adapters read IDE transcript folders (~/.claude/projects, ~/.cursor/projects, ~/.copilot/session-state, etc.) but only sessions whose workspace path matches the committing repo are indexed.
  • Lazy backfill — nothing is bulk-scanned on install. The first commit in a repo (or traceback-ingest --repo <path>) backfills matching sessions from Claude Code, Cursor, and Copilot. Full paths, env overrides, and non-blocking hooks: SETUP.md §6.

Why it matters

  • Cued, not blind — agents start from familiar sessions and commits, not a whole-repo scan.
  • Verified — git history corrects fuzzy recall instead of trusting embeddings alone.
  • Cheap when it works — hundreds of scoped lines instead of tens of thousands; semantic match finds "token expiry" when you said "jwt timeout".

Real-world proof (private production repo):

  1. Search efficiency: Query "CIAM authentication tenant isolation" — blind git grep returned 10,542 lines (~300K tokens); traceback scoped warm-start returned 107 lines (~3.2K tokens), 99% noise cut on cold start (no indexed sessions). Write-up: actual_codebase_measures/powerbi-embedded-analytics-ciam-search.md. Redacted telemetry: fixtures/powerbi-ciam-proof/invocation-1.json. Re-run locally: npm run build && npm run proof:powerbi (needs a local checkout; --repo or TRACEBACK_PROOF_REPO).

  2. Agent session efficiency: A real debugging session (CIAM test failure + auth fixes) consumed 22,500 tokens without traceback (manual file reads + agent spawn), but only 8,500 tokens with traceback (MCP calls + prior session recall) — 62% reduction. Larger impact: eliminated costliest operation (agent spawn at ~10K tokens). Write-up: actual_codebase_measures/powerbi-embedded-analytics-debugging-session.md.

Embeddings run locally (fastembed, no LLM API). LanceDB + SQLite + git — no database server.

Privacy & telemetry

Local metrics always land in data/traceback.db. Anonymous upload is opt-in.

| Install path | Default sharing | |--------------|-----------------| | traceback-setup | OFF | | traceback-setup --plugin | ON (with disclosure) |

Never uploaded: queries, paths, commits, transcripts, PII. Details: docs/TELEMETRY.md.

Dashboard: traceback-dashboardhttp://127.0.0.1:5555

Documentation

| Doc | Contents | |-----|----------| | SETUP.md | Install, hooks, indexing/backfill, per-IDE warm-start, flags, doctor | | docs/API.md | All MCP tools (28 registered) | | docs/ARCHITECTURE.md | Funnel layers, storage, widening vs HITL | | docs/TELEMETRY.md | Schema, KPIs, opt-in/out, upload | | SKILL.md | Host-first routing for agents | | docs/DEV.md | Tests, security gates, bench SLAs | | CONTRIBUTING.md | How to contribute (clone → PR) | | CODE_OF_CONDUCT.md | Community standards | | SECURITY.md | Vulnerability reporting | | docs/PRIVACY.md | Privacy summary (telemetry defaults) | | SUPPORT.md | Where to ask for help | | CLAUDE.md | Contributor stack, conventions, testing | | AGENTS.md | Short pointer for coding agents | | docs/DOCUMENTATION.md | Doc layering policy (where to put new content) | | actual_codebase_measures/ | Real-repo warm-start measurements vs blind grep |

Limitations

  • L1 needs indexed sessions — L2/L3 still run without them (git-only cold start).
  • One repo at a time — no cross-repo recall yet.
  • General-purpose embeddingsall-MiniLM-L6-v2; domain-specific models deferred.
  • Session adapters — Claude Code, Cursor, Copilot today; Windsurf/JetBrains hooks only.

Development

npm run build && npm test

See CONTRIBUTING.md and docs/DEV.md. Coding agents: CLAUDE.md and docs/DOCUMENTATION.md.

Contributing

Feedback, bug reports, and PRs welcome. Please read CONTRIBUTING.md and the CODE_OF_CONDUCT.md. Security reports: SECURITY.md. Help: SUPPORT.md.


MIT licensed. LICENSE · https://github.com/yavdaanalytics/traceback