npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

paratix

v0.8.0

Published

Idempotent VPS setup tool in TypeScript

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

fastnerfastner

Keywords

paratixvpsserversshdeploymentidempotenttypescriptdevopsinfrastructureautomation

Readme

Paratix

Idempotent VPS automation in TypeScript.

npm version license node

Paratix lets you manage Linux servers over SSH with TypeScript playbooks instead of YAML or ad-hoc shell scripts. You describe the desired end state of a machine, run the playbook, and Paratix changes only what is necessary.

It is built for developers and operators who want infrastructure automation that feels like application code: typed, reviewable, composable, and easy to keep in version control. You can start small on a single VPS and still keep a disciplined, repeatable workflow.

The result is a practical server automation tool with a compact mental model: modules check state, modules apply state, recipes group related work, and signals run only when changes actually happened.

Features

  • Idempotent runs: rerunning the same playbook on an already configured server is safe.
  • TypeScript authoring: use regular .ts files with imports, conditions, and editor tooling.
  • Resilient SSH flow: reconnects after reboots and SSH port changes when modules require it.
  • Structured orchestration: recipes and signals keep service reloads and grouped changes explicit.
  • Declarative host guards: gate modules on package, command, file, directory, symlink, or socket state without embedding shell checks in strings.
  • Strong bootstrap story: supports explicit first-run flows and strict host-key handling.
  • Practical built-in modules: packages, files, services, users, SSH, firewall, systemd, sysctl, swap, mount, rsync, and more.

Getting Started

If you want the fastest path, scaffold a project first:

npm create paratix my-server
cd my-server
npm run apply:dry
npm run apply -- --first-run
npm run apply

If you want to install paratix directly:

npm install paratix

Create a playbook:

import { server } from "paratix"
import { hostname, package as pkg, service } from "paratix/modules"

export default server({
  name: "web-01",
  host: "10.0.0.1",
  ssh: {
    user: "root",
    ports: [22],
    privateKey: "~/.ssh/id_ed25519",
  },
  run: [
    hostname.set("web-01"),
    pkg.update("2026-03-01"),
    pkg.installed("nginx", "curl"),
    service.enabled("nginx"),
    service.running("nginx"),
  ],
})

Apply it:

npx paratix apply server.ts

Preview changes without applying them:

npx paratix apply server.ts --dry-run

How Paratix Works

Playbooks

A playbook is a TypeScript file that default-exports server(...). It defines the target host, SSH configuration, optional environment values, and an ordered list of modules to run.

Modules

Modules are the smallest units of work. Each module checks whether its target state already exists and only applies changes when needed.

For filesystem metadata, you can now also use dedicated modules such as file.chmod(...) and file.chown(...) when you want to manage permissions or ownership without coupling that change to a file upload or template render.

Recipes

Recipes group related modules into a named unit. They help structure larger playbooks and keep the CLI output readable.

Signals

Signals are deferred side effects such as service.reload(...) or service.restart(...). They run when the surrounding scope actually changed, and can also be flushed explicitly with signals.flush() when you need a checkpoint inside a larger flow.

Compose + systemd

compose.systemd(...) can generate a native systemd unit for Docker Compose or Podman Compose projects. By default it now starts the stack with compose up --remove-orphans; set detached: true if you explicitly want the old -d behaviour in the generated ExecStart.

Podman Quadlets

For Podman-native services, Paratix now also includes quadlet.container(...). It writes a .container file under /etc/containers/systemd, reloads systemd when the content changes, and works cleanly with service.enabled(...) and service.running(...) for the generated service.

When you need a targeted image refresh outside the normal deploy flow, quadlet.updateImage(...) pulls exactly one image, reuses existing Podman registry auth on the host, optionally supports authFile, and only restarts the generated service when the pull actually downloaded a newer image. Changed runs now also print the new registry digest in parentheses in the CLI output, with a local image ID fallback when no repo digest is available.

Guards

Paratix also supports declarative host-state guards. Use when.packageInstalled(...), when.commandExists(...), when.fileExists(...), when.pathExists(...), when.symlinkExists(...), or when.socketExists(...) and their inverted forms to gate modules or recipes on remote host state without shell-heavy playbooks.

Swap

Paratix can also manage file-backed swap directly. Use swap.file(...) to provision and persist a swap file, then tune common memory behaviour with swap.swappiness(...) or swap.vfsCachePressure(...).

CLI

paratix apply <file> [options]

Options:
  --dry-run
  --env <key=value>
  --env-file <path>
  --first-run
  --reconnect-timeout <seconds>
  --verbose
  --version
  --help

--first-run is meant for explicit bootstrap flows where a fresh server must be hardened first and the rest of the system should only be applied later.

Documentation

  • For project scaffolding, see create-paratix.
  • For detailed authoring guidance and module reference inside this repo, see llm-guide.md.

License

MIT — Copyright 2026 Sebastian Software GmbH