npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

decision-guardian

v1.2.0

Published

Surface architectural decision context on Pull Requests

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

gr8_alizaidigr8_alizaidi

Keywords

actionsgithubdocumentationarchitecturedecisions

Readme

Decision Guardian

Prevent institutional amnesia by surfacing past architectural decisions directly on Pull Requests (or locally via CLI).

GitHub Action npm License: MIT Maintained by Decispher Website Security Policy

Created by Ali Abbas • Part of the Decispher project

What is Decision Guardian?

Engineering teams lose critical context when senior engineers leave, architectural decisions go undocumented, or new developers modify sensitive code without understanding the why behind it.

Decision Guardian solves this. You write decisions once in simple Markdown files — when a PR touches protected code, Decision Guardian automatically surfaces the relevant context as a PR comment or CLI output.

✨ Key Capabilities

  • 🛡️ Automatic Context Surfacing — Posts PR comments when protected files change, grouped by severity (Critical, Warning, Info)
  • 🎯 Flexible Matching — Glob patterns, regex, content matching, boolean logic (AND/OR), JSON path, line ranges
  • Enterprise-Grade Performance — Trie-based O(log n) lookup, handles 3,000+ file PRs, streaming mode
  • 🔒 Security-First — ReDoS prevention, path traversal protection, Zod validation, VM sandboxed regex
  • 🔄 Smart Behavior — Idempotent comments, self-healing duplicate cleanup, progressive truncation
  • 💻 CLI + GitHub Action — Works locally, in any CI system (GitLab, Jenkins, CircleCI), or as a native GitHub Action
  • 🔏 Privacy-First Telemetry — Opt-out with DG_TELEMETRY=0. No source code ever leaves your repo. See PRIVACY.md

🚀 Quick Start

Option 1: GitHub Action

1. Create a decision file.decispher/decisions.md:

<!-- DECISION-DB-001 -->
## Decision: Database Choice for Billing

**Status**: Active  
**Date**: 2024-03-15  
**Severity**: Critical

**Files**:
- `src/db/pool.ts`
- `config/database.{yml,yaml}`

### Context

We chose Postgres over MongoDB because billing requires ACID compliance.
MongoDB doesn't guarantee consistency for financial transactions.

---

2. Add workflow.github/workflows/decision-guardian.yml:

name: Decision Guardian

on:
  pull_request:

permissions:
  pull-requests: write
  contents: read

jobs:
  check:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v4
      
      - uses: DecispherHQ/decision-guardian@v1
        with:
          token: ${{ secrets.GITHUB_TOKEN }}
          decision_file: '.decispher/decisions.md'
          fail_on_critical: true

3. Done! — Open a PR modifying src/db/pool.ts → Decision Guardian comments with context from DECISION-DB-001.

📖 For production-ready configuration (concurrency, outputs, etc.), see the full documentation.

Option 2: CLI

# Install globally
npm install -g decision-guardian

# Or use directly without installation
npx decision-guardian --help

# Check staged changes
decision-guardian check .decispher/decisions.md

# Check against a branch
decision-guardian check .decispher/decisions.md --branch main

# Auto-discover all decision files
decision-guardian checkall --fail-on-critical

# Initialize a new project with template
decision-guardian init --template security

Use in any CI system — GitLab, Jenkins, CircleCI, pre-commit hooks, and more. See CLI docs.

🤝 Contributing

We welcome contributions! Decision Guardian is open source (MIT) and maintained by Decispher.

  1. Report BugsOpen an issue
  2. Suggest FeaturesStart a discussion
  3. Submit PRs — See Contributing.md
  4. Improve Docs — Fix typos, add examples
  5. Share — ⭐ Star the repo, write blog posts

Development

git clone https://github.com/DecispherHQ/decision-guardian.git
cd decision-guardian
npm install
npm test
npm run build

❓ FAQ

Q: Can it prevent merges?
A: Yes, when fail_on_critical: true. Admins can still override.

Q: Works with monorepos?
A: Yes. Use path-specific patterns.

Q: Works with private repos?
A: Yes. Uses GITHUB_TOKEN — no code leaves your repo.

Q: Difference vs CODEOWNERS?
A: CODEOWNERS assigns who reviews. Decision Guardian explains why it matters. Use both.

Q: How do I skip for specific PRs?
A: Add a label condition:

if: "!contains(github.event.pull_request.labels.*.name, 'skip-decisions')"

Q: Other CI/CD platforms?
A: The CLI works everywhere (GitLab, Jenkins, etc.). Native PR commenting is GitHub Actions only.

💬 Support

📄 License

MIT License — See LICENSE for details.
Decision Guardian is free and open source.

About

Decision Guardian is created and maintained by Ali Abbas as part of Decispher — helping engineering teams preserve and leverage institutional knowledge.

Connect:

🙏 Acknowledgments

Built with minimatch, parse-diff, zod, safe-regex, and @actions/toolkit.

Inspired by Architecture Decision Records (ADR) and CODEOWNERS.

🌟 Show Your Support

If Decision Guardian helps your team, please:

  • Star this repository
  • 🐦 Tweet about it
  • 📝 Write a blog post
  • 💼 Recommend it to colleagues

📚 Resources

| Resource | Link | |----------|------| | 🌐 Website | decision-guardian.decispher.com | | 📖 Documentation | decision-guardian.decispher.com/docs | | 📝 Blog | decision-guardian.decispher.com/blog | | 🛠️ Markdown Builder (GUI) | decision-markdown-builder.decispher.com | | 🎬 YouTube Walkthrough | Watch on YouTube | | 📐 Architecture | ARCHITECTURE.md | | 📋 Decision File Format | DECISIONS_FORMAT.md | | 💻 CLI Reference | CLI.md | | ⚙️ GitHub Action Details | APP_WORKING.md | | 🔏 Telemetry & Privacy | TELEMETRY.md · PRIVACY.md | | 📝 Templates | TEMPLATES.md | | 🗺️ Roadmap | FEATURES_ROADMAP.md | | 🔐 Security | SECURITY.md | | 📓 Changelog | CHANGELOG.md |

Made with ❤️ by Decispher

Preventing institutional amnesia, one PR at a time.