npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

bandit-cli

v1.0.7

Published

> **The Swiss Army Knife for Backend Developers**

Readme

Bandit CLI

The Swiss Army Knife for Backend Developers

bandit is an interactive, high-utility terminal workspace helper built for backend developers. Instead of relying on heavy GUI clients or complex shell scripts, bandit lets you test APIs, benchmark endpoints, terminate locked ports, validate environment setups, and audit server health directly from your command line.


🚀 Key Features

  • Interactive API Client: Auto-scans your codebase (Express, Fastify, Hono, NestJS) to find route definitions, maps parameters, takes JSON payloads, prompts for Bearer Auth tokens, and displays pretty-printed HTTP responses.
  • High-Speed Load Benchmarker: Benchmark any local or remote HTTP endpoint with configurable concurrency, calculating throughput (RPS), p50-p99 percentiles, and rendering a beautiful ASCII distribution chart.
  • Port Inspector & Process Killer: Scans active ports, identifies the PID and process names (e.g. node.exe, postgres.exe, ollama.exe), and lets you terminate locked processes in one click.
  • Live Server Doctor: Probes your running server for security headers, CORS wildcards, stack trace/error leakage, and payload crash handling.
  • Environment Variable Auditor: Compares active .env files against .env.example to flag missing keys, empty values, and placeholder defaults before you boot.
  • Static Project Auditor: Evaluates package setup, file organization, safety configs, and dependency scopes.
  • Monorepo & Microservices Auto-Discovery: Automatically scans your workspace for nested packages containing package.json and interactively prompts you to target specific services.

📦 Installation

Install globally via npm:

npm install -g bandit-cli

Or run instantly using npx:

npx bandit-cli <command>

🛠️ Usage & Commands

1. Interactive API Playfield

Find and test routes in your codebase interactively:

bandit api

Or execute a direct API request immediately (acts like a local curl/HTTPie):

bandit api GET /api/v1/products --url http://localhost:8080 --token "jwt-token"
bandit api POST /api/v1/users --body '{"name":"Raj"}'

2. Endpoint Benchmarking

Run a concurrent load test on an endpoint:

bandit bench http://localhost:3000/api/users --connections 10 --requests 200

3. Ports Inspector

List processes listening on local ports and terminate them:

bandit ports

4. Active Server Diagnostics

Audit a running server's security headers and vulnerabilities:

bandit doctor http://localhost:3000

5. Environment variable check

Validate local environment configurations:

bandit env

6. Static Project Audit

Audit files, directory structure, and dependencies:

bandit audit

🎨 Under the Hood

Built with TypeScript, Commander, and @clack/prompts for a modern, fluid interactive terminal interface.