npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

js-cart

v1.0.1

Published

Scaffolds a new MVP e-commerce backend (Node.js + Express + MongoDB) into a new project directory.

Readme

js-cart

A scaffolding tool that generates a ready-to-run MVP e-commerce backend — Node.js, Express, MongoDB — into a new project directory. Think create-react-app, but for an e-commerce API: auth, products, cart, wishlist, coupons, checkout, orders, and an admin layer, all wired together and ready to customize.

This package itself is just the generator. The actual application it creates lives in template/ and has its own README with full setup instructions, API reference, and design notes once you've generated a project.

Usage

npx @your-npm-username/js-cart my-store
cd my-store
cp .env.example .env   # fill in MONGO_URI and JWT_SECRET
npm install
npm run seed            # optional: creates an admin user + sample products + a sample coupon
npm run dev

Or scaffold into the current directory (it must be empty):

mkdir my-store && cd my-store
npx @your-npm-username/js-cart .

Replace @your-npm-username with whatever scope you actually publish this under (see Publishing below) — or with nothing at all if you publish it unscoped under a different available name.

What gets generated

  • JWT authentication, product catalog with search/filter/sort, cart with live stock validation
  • Wishlist with move-to-cart
  • Coupons: percentage/fixed discounts, category/product scoping, usage limits, expiry
  • Checkout with atomic stock decrements (race-condition-safe without needing MongoDB transactions), tax/shipping calculation, order history and cancellation
  • Admin endpoints for order management and coupon management
  • Security basics: bcrypt password hashing, helmet, rate limiting on auth routes, centralized error handling
  • A seed script for instant local test data

See the generated project's own README for the full feature list, API reference, and the design tradeoffs made along the way.

Publishing

If you want to publish your own copy of this generator to npm:

  1. Pick a name. The unscoped name js-cart is blocked on the public npm registry (a previous package by that exact name was published and then unpublished, and npm's anti-squatting policy permanently blocks republishing under an unpublished name — this exists specifically to prevent supply-chain attacks like the 2016 left-pad incident). Either pick a different unscoped name, or use a scoped name under your own npm username/org, e.g. @yourusername/js-cart — scopes are a separate namespace and aren't affected by that block.
  2. Update the name field in this package.json to match, and update the repository/homepage/bugs URLs to your actual repo.
  3. npm login
  4. npm publish (scoped packages need --access public on first publish unless you've already set publishConfig.access in package.json, which this one does).

License

MIT — see LICENSE.