npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

prism-metrics

v0.8.0

Published

Open scoring methodology and reference implementations for the architecture frameworks measured by prism0x2A.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

dadenjodadenjo

Keywords

architecturemetricssolidclean-architecturehexagonalc4twelve-factordorawardleyiso-25010ddd

Readme

prism-metrics

npm version tests coverage audit license

Open methodology and pure scoring implementations for the architecture frameworks used by prism0x2A. Every scorer is a pure TypeScript function: same input, same output, no I/O, no side effects.

📖 Read the Specification & Implementation Audit handbook — every framework's definition, scoring formula, and audit findings in one document (also at docs/handbook.html).

Install

npm install prism-metrics

Usage

import { analyzeSolid, SOLID_METHODOLOGY } from "prism-metrics/solid";

const result = analyzeSolid({
  analyzedFiles: 142,
  largeFiles: 6,
  heavyExportFiles: 3,
  largeSwitchFiles: 1,
  cascadingIfFiles: 0,
  strategyPatternFiles: 18,
  inheritanceFiles: 4,
  narrowingStubFiles: 0,
  totalInterfaces: 22,
  fatInterfaces: 1,
  hasDiContainer: false,
  abstractionPatternFiles: 9,
  directInfraImportFiles: 0,
});

console.log(result.overallScore, result.grade);

Every framework exports the same three things:

  • a pure analyze* scoring function (no filesystem, network, or env access)
  • a typed signal input interface
  • a *_METHODOLOGY constant describing the definition, signals, formula, and any honest gaps

See src/<framework>/methodology.ts for the human-readable specs.

Frameworks (14)

| Subpath | Description | Tests | Coverage | | --- | --- | ---: | ---: | | prism-metrics/iso-25010 | ISO/IEC 25010 — 6 of 8 quality characteristics | 16 | 100% lines | | prism-metrics/solid | SOLID principles — file/interface heuristics + optional AST signal | 38 | 98.8% lines | | prism-metrics/clean-arch | Clean Architecture dependency-rule violations | 15 | 100% | | prism-metrics/hexagonal | Ports & Adapters violations | 17 | 100% | | prism-metrics/eip | Enterprise Integration Patterns detection | 20 | 100% lines | | prism-metrics/eda | Event-driven pattern detection | 20 | 100% lines | | prism-metrics/conways-law | Team/code coupling alignment proxy | 11 | 96.5% lines | | prism-metrics/wardley | Wardley map evolution-stage classification | 20 | 100% lines | | prism-metrics/twelve-factor | Twelve-Factor App per-factor scoring | 11 | 97.0% lines | | prism-metrics/monorepo | Monorepo per-capability isolation health | 10 | 100% | | prism-metrics/dora-predicted | DORA four key metrics — predicted, not measured | 12 | 95.1% lines | | prism-metrics/ddd | DDD bounded-context inference | 15 | 100% | | prism-metrics/c4 | C4 model coverage (L1–L3, no headline score) | 17 | 99.0% lines | | prism-metrics/auto-detect | Framework auto-detection from manifest signals | 13 | 94.3% lines | | core (foundation) | InsufficientSignalResult + scanner-exclusions primitives | 43 | 100% |

Totals: 286 tests passing · 96.4% line coverage · 88.1% branch coverage.

Audit & Verification

The 2026-06-09 multi-agent audit reviewed every framework against its published methodology. 54 of 59 findings are closed as of 0.8.0 (pass-2); the remaining 5 are LOW-severity items documented in each framework's honestGap.

The complete audit — concept summary, expected results, implementation review per framework, plus empirical verification — lives in:

Major audit-driven changes (0.4.0 → 0.8.0):

  • 0.4.0: foundation InsufficientSignalResult + scanner-exclusions module; iso-1/iso-2 (empty-input + security cliff)
  • 0.5.0: tf-1/tf-2 (deployment-target awareness + honest 'unknown'); mono-1/mono-2 (noData + polyglot); dora-1/dora-3 (insufficient guard + prediction confidence)
  • 0.6.0: c4-1/c4-2 (queue + client collisions); iso-3/iso-4 (continuous perf curve + churn double-count); 9 boundary/regression tests across tf, mono, dora, solid
  • 0.7.0: solid-lsp-ast (tiered LSP signal — optional confirmedLspViolations from AST analysers, fallback to substring scan)
  • 0.8.0: pass-2 audit completed; eda-6 (latent emission bug) + auto-4 (precedence-gate inconsistency) found + closed; iso-3 + iso-4 dedicated boundary tests retro-added

See CHANGELOG.md for the per-version detail.

Verify on your own data

Every scorer ships with input.json / expected.json fixture pairs under src/<framework>/__tests__/__fixtures__/. To reproduce locally:

git clone https://github.com/dadenjo/prism-metrics
cd prism-metrics
npm install
npm test

The scorers are pure functions — same input, same output, no I/O. Run with --coverage to see line/branch breakdown per module:

npx vitest run --coverage

Inside your own project:

import { analyzeCleanArch } from "prism-metrics/clean-arch";

const result = analyzeCleanArch({
  totalCapabilities: 24,
  unknownCapabilities: 2,
  adjacentViolations: 0,
  mediumViolations: 0,
  criticalViolations: 0,
});

// { score: 100, grade: 'A+', totalViolations: 0, ... }

Scanner exclusions (methodology, not internals)

Production scorers in this package walk the filesystem and count regex hits. To stay consistent with the published methodology, they share a single exclusion contract — directories that are skipped (node_modules, __tests__, .claude/worktrees/, …), filename patterns that mark a file as test/fixture/mock, and a stripComments helper applied before regex tests run.

These primitives are exported from prism-metrics/core as IGNORE_DIRS, TEST_FILE_PATTERNS, stripComments, and shouldScanFile. They are part of the methodology — silently skipping files would look like cheating. Any downstream scorer that ignores them is publishing a different methodology than this package documents.

See docs/scanner-exclusions.md for the full list and the empirical trigger (Atomar's ISO 25010 Security 10 / F result driven by hits inside .claude/worktrees/).

Test Coverage

Generated via @vitest/coverage-v8. Per-framework line / branch coverage is tracked in docs/coverage-summary.json and surfaced in the handbook's Verification box per framework.

| Framework | Lines | Branches | Score-file lines | | --- | ---: | ---: | ---: | | clean-arch · ddd · hexagonal · monorepo | 100.0% | 100.0% | 100% | | eda · eip · iso-25010 · wardley | 100.0% | 84–99% | 100% | | c4 · solid | 98.8–99.0% | 96.9–97.6% | 98% | | twelve-factor | 97.0% | 98.3% | 94% | | conways-law | 96.5% | 93.3% | 93% | | dora-predicted · auto-detect | 94–95% | 92–94% | 89–90% | | TOTAL | 96.4% | 88.1% | |

Honest gaps

The methodology constants spell out where signals are weak — heuristic naming, sample caps, predictive-not-measured for DORA, 6-of-8 for ISO 25010, single-team-undefined for Conway's Law. Read the honestGap field before using a score in production.

The handbook's "Cross-cutting findings" + per-framework "Implementation audit" sections document every known limitation explicitly.

License

MIT