npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

test-verifier

v0.0.1

Published

A git hook tool that catches weakened tests (skipped, deleted, or downgraded assertions) before they reach your main branch.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

choaschoas

Keywords

testtestinggit-hookspre-commitpre-pushcode-reviewtest-qualityclaudellmbun

Readme

test-verifier

A git hook tool that catches weakened tests before they reach your main branch. It defends against a specific failure pattern: when test failures are "fixed" by changing the test instead of fixing the actual bug.

test-verifier detects risky patterns like:

  • Tests being skipped (.skip, .todo, .skipIf(true))
  • Assertions being removed or weakened (expect(x).toBe(42) -> expect(x).toBeDefined())
  • Matcher transitions that reduce strictness (toBe -> toEqual)
  • Tautological assertions that always pass
  • Snapshot updates without proper verification
  • Test deletions or silent edge case removal

How It Works

test-verifier uses a two-phase analysis pipeline:

Phase 1 -- Pre-Commit (fast, rules only) Parses test file diffs and runs a rule engine. Creates stub markdown files in .test-verifier/pending/ with findings. No LLM calls, sub-second performance.

Phase 2 -- Pre-Push (LLM-enriched) Calls an LLM (Claude or Ollama) to provide deeper context and risk assessment. Updates stub files with analysis and recommendations. Blocks push if unresolved findings remain.

Commit  -> check     -> stub pending files (fast, rules only)
Push    -> enrich    -> fill in LLM analysis
        -> review    -> human approves/rejects each finding
        -> verify    -> block push if pending/rejected findings exist

Severity Levels

| Level | Meaning | Examples | |---|---|---| | SAFE | No risk | New tests, formatting, identifier renames | | LOW | Structural only | Splitting tests, moving between describe blocks | | SUSPICIOUS | Behavior changed | Expected value changes, matcher changes | | CRITICAL | Coverage reduced | Deleted tests, skipped tests, assertion removal |

By default, only SAFE findings are auto-approved. Everything else requires human review.

Prerequisites

  • Bun runtime
  • Git repository with user.email configured
  • ANTHROPIC_API_KEY environment variable (for Claude-based LLM enrichment), or a local Ollama instance

Setup

Install dependencies:

bun install

Initialize test-verifier in your repository:

bunx test-verifier init

This creates the .test-verifier/ directory structure and generates an Ed25519 keypair for audit trail signing.

Set up git hooks (optional but recommended):

bunx test-verifier setup-hooks

This installs Husky pre-commit and pre-push hooks that run the two-phase pipeline automatically.

Set your API key if using Claude:

export ANTHROPIC_API_KEY=sk-...

Configuration

Create test-verifier.config.ts in your repository root (optional -- sensible defaults are used):

import { defineConfig } from "test-verifier";

export default defineConfig({
  testGlobs: ["**/*.test.ts", "**/*.spec.ts"],
  llm: {
    provider: "anthropic",       // or "ollama"
    model: "claude-sonnet-4-7",
    relatedProdLookback: 3,      // commits of production context to include
  },
  policy: {
    autoApprove: ["SAFE"],
    blockPushIfPending: true,
    blockMergeIfRejected: true,
  },
});

Usage

CLI Commands

# Phase 1: analyze test changes (rules only)
bunx test-verifier check

# Phase 2: enrich pending findings with LLM
bunx test-verifier enrich

# Interactively review pending findings
bunx test-verifier review

# Approve or reject a specific finding
bunx test-verifier approve <finding-id> --rationale "reason"
bunx test-verifier reject <finding-id> --rationale "reason"

# Verify audit trail (used by pre-push hook)
bunx test-verifier audit verify

# Compact old approved findings into archives
bunx test-verifier audit compact --before=2025-01-01

# Set up Husky git hooks
bunx test-verifier setup-hooks

With Git Hooks

Once hooks are installed, the workflow is automatic:

  1. Commit -- pre-commit hook runs check, creates pending stubs (does not block commit)
  2. Push -- pre-push hook runs enrich then verify, blocks push if unresolved findings remain
  3. Review -- run bunx test-verifier review to approve or reject findings before pushing

npm Scripts

bun run dev          # Run CLI
bun run check        # Run check command
bun run typecheck    # TypeScript type checking

Running Tests

bun test

Project Structure

src/
  cli.ts                 # CLI entry point
  config.ts              # Configuration schema and loader
  rule-engine.ts         # Core verification logic
  diff-parser.ts         # Unified diff parser
  test-block-extractor.ts # AST-based test block extraction
  commands/              # CLI command implementations
  rules/                 # Individual detection rules
  llm/                   # LLM client (Anthropic, Ollama)
  crypto/                # Ed25519 signing for audit trail
  hooks/                 # Git hook scripts

.test-verifier/          # Audit directory (created by init)
  pending/               # Findings awaiting review
  approved/              # Approved findings
  rejected/              # Rejected findings
  archive/               # Archived old findings
  keys/                  # Ed25519 keypairs
  cache.sqlite           # LLM response cache

License

ISC