npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, πŸ‘‹, I’m Ryan HefnerΒ  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you πŸ™

Β© 2026 – Pkg Stats / Ryan Hefner

ready-to-ship

v1.0.0

Published

πŸš€ Validate a backend project before deployment like a senior engineer would. Comprehensive checks for env, auth, API, security, dependencies, and database configuration.

Downloads

102

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

theaakashsinghtheaakashsingh

Keywords

clivalidationbackenddeploymentenvauthapireadinesssecuritydependenciesdatabasedevopsci-cdpre-deploymentbackend-validatorproduction-readycode-reviewautomation

Readme

πŸš€ Ready-to-Ship CLI

Validate a backend project before deployment like a senior engineer would.

npm version License: MIT

The only CLI that combines environment, auth, API, security, dependencies, and database validation in one tool.

✨ Features

  • βœ… Environment Validation - Check .env files, missing variables, weak secrets, type validation
  • πŸ” Auth Validation - Detect unprotected routes, JWT configuration, middleware checks
  • 🌐 API Validation - Health endpoints, route consistency, HTTP method patterns
  • πŸ“ Project Validation - Structure, README, error handling, best practices
  • πŸ”’ Security Validation - CORS, security headers, rate limiting, vulnerability detection
  • πŸ“¦ Dependencies Validation - Package health, lock files, outdated packages
  • πŸ—„οΈ Database Validation - Connection handling, pooling, migration files
  • πŸ”§ Auto-Fix Suggestions - Get actionable fixes for common issues
  • πŸ“Š Comprehensive Reports - Combined verdict with detailed insights
  • 🎯 CI/CD Ready - GitHub Actions templates included

Installation

npm install -g ready-to-ship

Or use with npx (no installation needed):

npx ready-to-ship <command>

Usage

Individual Checks

# Check environment variables
npx ready-to-ship env

# Check authentication & route protection
npx ready-to-ship auth

# Check API endpoints
npx ready-to-ship api

# Check project structure
npx ready-to-ship project

# Check security configurations
npx ready-to-ship security

# Check dependencies
npx ready-to-ship dependencies

# Check database configuration
npx ready-to-ship database

Auto-Fix

# Get fix suggestions
npx ready-to-ship fix

# Apply fixes automatically (creates files)
npx ready-to-ship fix --apply

Full Report

# Generate comprehensive report
npx ready-to-ship report

# With verbose output
npx ready-to-ship report --verbose

# Export to JSON
npx ready-to-ship report --json

Options

  • -p, --path <path> - Specify project path (default: current directory)
  • --json - Export results to JSON (report command only)
  • --verbose - Show detailed logs (report command only)

What It Checks

πŸ”Ή ENV Module

  • Missing environment variables (compared to .env.example)
  • Weak secrets (short JWT_SECRET, etc.)
  • Unused variables
  • Type validation (URL, email, number)

πŸ”Ή AUTH Module

  • Unprotected sensitive routes
  • Missing auth middleware
  • JWT expiry configuration
  • Route protection patterns

πŸ”Ή API Module

  • Health endpoint presence
  • Route consistency
  • HTTP method patterns
  • RESTful API best practices

πŸ”Ή PROJECT Module

  • .env.example existence
  • README presence and quality
  • Project structure
  • Error handling middleware

πŸ”Ή SECURITY Module

  • CORS configuration
  • Security headers (Helmet.js)
  • Rate limiting
  • Common security anti-patterns
  • eval() usage detection

πŸ”Ή DEPENDENCIES Module

  • Lock file presence
  • Outdated packages
  • Security package recommendations
  • Dependency count analysis

πŸ”Ή DATABASE Module

  • Database connection configuration
  • Connection error handling
  • Connection pooling
  • Migration files
  • Database type detection

Example Output

========================
READY-TO-SHIP REPORT
========================

ENV:     βœ… PASS
AUTH:    ❌ FAIL
API:     βœ… PASS
PROJECT: ❌ FAIL

FINAL VERDICT: ❌ NOT READY

🎯 Why Ready-to-Ship?

Most validation tools only check one thing. Ready-to-Ship is the only CLI that combines:

  • βœ… Environment validation
  • βœ… Security checks
  • βœ… Auth validation
  • βœ… API health
  • βœ… Dependencies analysis
  • βœ… Database configuration
  • βœ… Auto-fix suggestions

All in one command. Save hours of manual review before every deployment.

πŸš€ CI/CD Integration

Add to your GitHub Actions workflow:

- name: Run Ready-to-Ship
  run: npx ready-to-ship report --json

See templates/.github/workflows/ready-to-ship.yml for a complete example.

πŸ“ˆ Roadmap

  • [ ] OpenAPI/Swagger spec validation
  • [ ] Docker/container readiness checks
  • [ ] Performance hints
  • [ ] Logging setup validation
  • [ ] VSCode extension
  • [ ] Slack/Discord webhook integration

🀝 Contributing

Contributions welcome! Please feel free to submit a Pull Request.

πŸ“ License

MIT

⭐ Star History

If you find this tool useful, please consider giving it a star on GitHub!