npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

qodfy

v0.3.1

Published

Open-source launch readiness scanner for AI-built apps.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

yassineifguisseyassineifguisse

Keywords

qodfyclinextjsaiai-sdklaunch-readinessscannercode-qualitydeveloper-toolstypescriptvercel

Readme

Qodfy

AI built it fast. Qodfy checks if it's ready.

Qodfy is an open-source launch-readiness scanner for AI-built apps. The first product is a local CLI focused on Next.js projects built with TypeScript, Vercel AI SDK, Cursor, Claude Code, v0, Lovable, Bolt, Replit, and similar AI coding workflows.

Quick Start

Run Qodfy in any local project:

npx qodfy scan

Scan a specific folder:

npx qodfy scan --path apps/web

Print machine-readable JSON:

npx qodfy scan --json

Write JSON, Markdown, or HTML reports:

npx qodfy scan --json --output qodfy-report.json
npx qodfy scan --report qodfy-report.md
npx qodfy scan --html qodfy-report.html

Generate an HTML report and open it in your default browser:

npx qodfy scan --html qodfy-report.html --open

Or preview a report directly without picking a path. Qodfy writes the HTML to .qodfy/qodfy-report.html inside the scanned project and opens it for you:

npx qodfy scan --preview

The Markdown report is the Qodfy Launch Report: a senior-engineer-style review with a launch status, executive summary, top priorities, what looks good, and per-issue context (what Qodfy found, why it matters, evidence, suggested fix, and an AI fix prompt).

The HTML report is standalone and opens locally in your browser. It is a single self-contained file (inline CSS only, no external CDN, no external fonts, no external images, no JavaScript) with a launch readiness hero, score description, launch checklist, what-looks-good observations, polished issue cards, and AI fix prompts you can copy into Cursor, ChatGPT, Claude, or Windsurf.

What Qodfy Checks Today

Qodfy scans locally and looks for common launch-readiness risks:

  • Next.js project detection
  • missing .env.example
  • API routes in app/api and pages/api
  • API routes that may be missing auth/session checks
  • AI-related files using keywords like openai, @ai-sdk, anthropic, gemini, generateText, streamText, and useChat
  • AI routes/files that may be missing rate limiting
  • large generated files
  • a simple launch readiness score from 0 to 100

Qodfy does not send your code to any external server.

Example Output

Qodfy is scanning your project...

Qodfy Report

Launch Readiness: 72/100

Stats
Files scanned: 42
API routes: 3
AI-related files: 2
Large files: 1

Issues

CRITICAL AI route may be missing rate limiting
AI routes can create real API costs. Add rate limiting or usage limits before launch.
File: app/api/chat/route.ts

WARNING API route may be missing authentication
This API route does not appear to contain an auth/session check.
File: app/api/admin/route.ts

Recommended next step:
Fix critical issues first, then warnings, then cleanup items.

Commands

qodfy scan
qodfy scan --path <project-path>
qodfy scan --json
qodfy scan --json --output qodfy-report.json
qodfy scan --report qodfy-report.md
qodfy scan --html qodfy-report.html
qodfy scan --html qodfy-report.html --open
qodfy scan --preview
qodfy --help
qodfy --version

Scoring

Qodfy starts at 100.

  • Critical issue: -20
  • Warning: -8
  • Info: no major score penalty

The score is intentionally simple and will become more precise as the rule set improves.

Roadmap

Near-term priorities:

  • .env.example coverage for process.env.*
  • exposed secret detection
  • Stripe webhook signature checks
  • better auth and rate-limit heuristics
  • --ci and --min-score
  • GitHub Action

Repository

GitHub: https://github.com/yassinifguisse1/qodfy

Issues and feedback: https://github.com/yassinifguisse1/qodfy/issues

License

MIT