npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

server-reviver

v0.1.3

Published

Zero-dependency HTTP endpoint to reload or kill Node.js servers — works with Express, NestJS, Fastify, and raw http.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

natancabralnatancabral

Keywords

expressnestjsreloadrestartserverhttptypescriptdevops

Readme

server-reviver

Zero-dependency TypeScript library that injects a reload / kill / status HTTP endpoint into any Node.js server — Express, NestJS, Fastify, or raw http.

Inspired by the need to reset server memory without SSH or pm2 access, with proper secret auth and auto-detection of the server entrypoint.

Install

Yarn

yarn add server-reviver

NPM

npm install server-reviver

NPM

pnpm add server-reviver

Quick start

Express

import express from 'express';
import { expressReviver } from 'server-reviver';

const app = express();

app.use(expressReviver({
  path: '/reviver',
  secret: process.env.REVIVER_SECRET,
}));

app.listen(3000);

NestJS

// app.module.ts
import { Module, NestModule, MiddlewareConsumer } from '@nestjs/common';
import { nestReviver } from 'server-reviver';

@Module({})
export class AppModule implements NestModule {
  configure(consumer: MiddlewareConsumer) {
    consumer
      .apply(nestReviver({ 
          path: '/reviver',
          secret: process.env.REVIVER_SECRET,
      })).forRoutes('*');
  }
}

Standalone HTTPS sidecar (separate port)

import { startReviverServer } from 'server-reviver';

startReviverServer({
  port: 9119,
  host: '127.0.0.1',
  secret: process.env.REVIVER_SECRET,
  tls: {
    key: './certs/key.pem',
    cert: './certs/cert.pem',
    fromFiles: true,
  },
});

Examples

Runnable sample apps are in examples/:

TypeScript config for those examples: examples/tsconfig.json.

Endpoints

All requests go to the configured path (default /reviver).

| Action | Method | Query param / Header | Effect | |----------|--------|-----------------------------------------------|-------------------------------------------| | status | GET | ?action=status (default if omitted) | Returns uptime, PID, memory | | reload | GET | ?action=reload&secret=<secret> | Spawns new process, then process.exit() | | kill | GET | ?action=kill&secret=<secret> | process.exit(0) after delay |

Secret can be passed as:

  • Query param: ?secret=my-secret
  • Header: x-reviver-secret: my-secret

Status response example

{
  "status": "running",
  "pid": 12345,
  "uptime": 3661,
  "uptimeHuman": "1h 1m 1s",
  "memory": {
    "heapUsed": "42.10 MB",
    "heapTotal": "64.00 MB",
    "rss": "88.20 MB",
    "external": "1.23 MB"
  },
  "node": "v20.11.0",
  "platform": "linux",
  "env": "production",
  "timestamp": "2026-05-18T12:00:00.000Z"
}

Reload response example

{
  "action": "reload",
  "message": "Server is restarting.",
  "entrypoint": "/app/dist/main.js",
  "detectedVia": "package.json",
  "pid": 12345,
  "at": "2026-05-18T12:00:00.000Z"
}

Entrypoint detection

On reload, the lib auto-detects the script to re-spawn using this priority:

  1. options.entrypoint (explicit override)
  2. package.json"main" field
  3. package.json"scripts.start" (parses the command to find the JS/TS file)
  4. Convention files: main.js, index.js, server.js, app.js, src/main.js, dist/main.js, etc.
  5. process.argv[1] (currently running script as last fallback)

API reference

expressReviver(options?): RequestHandler

Connect-compatible middleware for Express / Koa / any Connect-based framework.

nestReviver(options?): NestMiddleware['use']

Functional middleware compatible with MiddlewareConsumer.apply().

createReviverMiddleware(options?): class

Class-based NestJS middleware (injectable).

attachReviver(server, options?): void

Attaches to an existing http.Server without replacing its listeners.

startReviverServer(options?): http.Server | https.Server

Starts an isolated server on a dedicated port (optionally TLS).

createCoreHandler(options?): AsyncFunction

Framework-agnostic handler (req, res) => Promise<boolean>. Returns true if the request was handled.

Options

| Option | Type | Default | Description | |------------------|-----------------------------------------|---------------|---------------------------------------------------------------| | path | string | '/reviver' | URL path to expose | | secret | string | '' (open) | Required secret token. Leave empty only in local dev | | gracefulDelayMs| number | 200 | Ms to wait before executing action (lets response flush) | | entrypoint | string | auto-detected | Explicit path to the script to spawn on reload | | spawnOptions | SpawnOptions | {} | Extra options for child_process.spawn | | onRequest | (req) => boolean \| Promise<boolean> | () => true | Hook called before auth. Return false to deny | | onAction | (action, payload) => void | no-op | Hook called after action is dispatched | | logger | (msg: string) => void \| false | console.log | Pass false to silence all logs |

Security notes

  • Always set secret in any internet-accessible environment.
  • Bind the standalone sidecar to 127.0.0.1 to prevent public exposure.
  • Use TLS (startReviverServer({ tls: ... })) for any non-loopback traffic.
  • Use onRequest to allow-list IPs or add custom auth logic.

curl examples

# Status (no secret needed if endpoint is open)
curl https://localhost:9119/reviver?action=status -k

# Reload via query param
curl "https://localhost:9119/reviver?action=reload&secret=my-secret" -k

# Reload via header
curl -H "x-reviver-secret: my-secret" "https://localhost:9119/reviver?action=reload" -k

# Kill
curl "https://localhost:9119/reviver?action=kill&secret=my-secret" -k

License

The MIT License.

Author