npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

truecourse

v0.2.0

Published

Visualize your codebase architecture as an interactive graph

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

mushgevmushgev

Keywords

codebasearchitecturevisualizationgraphtree-sitter

Readme

TrueCourse analyzes your codebase architecture and code to detect violations that traditional linters miss — circular dependencies, layer violations, dead modules, race conditions, security anti-patterns, and more. It combines static analysis with AI review to surface findings with fix suggestions.

Everything runs locally on your machine. Works with Claude Code (no API key needed) or your own API keys. Your code never leaves your environment.

Built for Humans and AI Agents

TrueCourse is designed with two interfaces:

  • Web UI — Interactive dependency graph, inline code viewer with violation markers, cross-service flow tracing, database ER diagrams, analytics dashboard, and diff mode. Built for developers who want to explore and understand their codebase visually.
  • CLI — Analyze repos, list violations, and run diff checks from the terminal. Built for AI coding agents, CI pipelines, and automation workflows that need structured output.

Both interfaces share the same analysis engine and database — run analyze from an agent, review results in the UI.

What it catches

Architecture & Module Analysis

  • Circular dependencies between services and modules
  • Layer violations like data layer calling API layer, skipping service layer, etc.
  • God modules with too many exports or responsibilities
  • Dead modules that are unused and should be removed
  • Tight coupling between services or modules with excessive cross-dependencies
  • Database issues like missing indexes, raw SQL bypassing ORM, schema problems

Code Intelligence

TrueCourse goes beyond architecture — it reviews your actual source code for semantic issues that AST-based linters can't detect:

  • Error handling — Catch blocks that swallow errors, rethrow without context, or return misleading success values
  • Race conditions — Shared mutable state across async boundaries, check-then-act patterns
  • Misleading names — Functions whose names don't match behavior (validate that mutates, getUser that deletes)
  • Dead code — Unreachable code, always-true/false conditions, assigned-but-never-read variables
  • Security anti-patternsMath.random() for tokens, disabled TLS, eval() with dynamic input, unsanitized innerHTML
  • Resource leaks — File handles, connections, or event listeners opened without cleanup
  • Inconsistent returns — Functions returning different types across branches

Code violations appear inline in the code viewer with severity markers, highlighted ranges, and fix suggestions. Deterministic rules (empty catch, console.log, hardcoded secrets, magic numbers, explicit any, SQL injection) run via AST visitors; semantic rules run via LLM.

Cross-Service Flow Tracing

TrueCourse automatically detects request flows across service boundaries — HTTP calls, route handlers, and internal method chains — and visualizes them as end-to-end traces. Each flow shows the chain of services, modules, and methods involved, with severity indicators when violations exist along the path.

Database Analysis

Databases are detected automatically from ORM usage (Prisma, Drizzle, SQLAlchemy, TypeORM, Knex, etc.) and displayed as nodes in the dependency graph. Click a database node to see a full ER diagram with tables, columns, types, and relationships. LLM rules check for missing foreign keys, missing indexes, naming inconsistencies, and schema issues.

Analytics Dashboard

Track violation trends over time with charts showing how your codebase health evolves across analyses. Breakdowns by severity, category, and rule help identify recurring patterns. Code hotspots highlight files with the most violations.

Git Diff Mode

  • New vs resolved — See which violations your uncommitted changes introduce or fix
  • Affected nodes — Graph dims unaffected nodes, highlights touched services/modules/methods

Quick Start

cd /path/to/your/repo
npx truecourse analyze

On first run, the server starts automatically and the setup wizard configures your LLM provider:

  • Claude Code CLI (Recommended) — uses your Claude Code subscription, no API key needed
  • Anthropic API — requires an Anthropic API key
  • OpenAI API — requires an OpenAI API key

An embedded PostgreSQL database is created automatically, no Docker or external database required.

Violations print in your terminal and the web UI opens automatically with an interactive dependency graph and violations highlighted.

CLI Commands

npx truecourse                # Runs setup + starts the server

or you can run them one by one:

npx truecourse setup          # Configure LLM provider
npx truecourse start          # Start the server

Once the server is running, cd into any repo and:

npx truecourse add                    # Register repo without analyzing
npx truecourse analyze                # Analyze current repo, show violations
npx truecourse analyze --code-review  # Analyze with LLM code review (off by default)
npx truecourse analyze --diff         # Show new/resolved violations from uncommitted changes
npx truecourse list                   # Show violations from latest analysis
npx truecourse list --diff            # Show saved diff check results

Prerequisites

  • Node.js >= 20
  • One of:
    • Claude Code CLI installed (recommended, no API key needed)
    • An Anthropic or OpenAI API key

No database setup, no Docker. Everything runs locally out of the box.

Development Setup

If you want to contribute or run from source:

git clone https://github.com/yourusername/truecourse.git
cd truecourse
pnpm install

cp .env.example .env
# Edit .env with your ANTHROPIC_API_KEY or OPENAI_API_KEY

pnpm dev

Claude Code Skills

TrueCourse includes Claude Code skills that let you run analysis conversationally from within Claude Code.

When you register a repo with npx truecourse add, you'll be prompted to install Claude Code skills. Accepting copies the skill files to .claude/skills/truecourse/ in your project.

Available skills

| Skill | Triggers | What it does | |---|---|---| | /truecourse-analyze | "analyze this repo", "run a diff check" | Runs truecourse analyze or analyze --diff and summarizes results | | /truecourse-list | "show violations", "list issues" | Runs truecourse list or list --diff to show full violation details | | /truecourse-fix | "fix violations", "apply fixes" | Lists fixable violations, lets you pick which to fix, applies changes |

Analysis Rules

TrueCourse ships with three types of rules:

  • Deterministic rules — Checked programmatically via AST visitors (layer violations, circular deps, dead modules, empty catch, etc.)
  • LLM architecture rules — Passed to the LLM for deeper architectural, database, and module inspection with fix suggestions
  • LLM code rules — Source files sent to the LLM in batches for semantic code review (error handling, race conditions, magic numbers, security, etc.). Runs when code review is enabled (--code-review flag or "Analyze with code review" in the UI)

All rules are visible in the Rules tab in the web UI. Custom rule generation is an upcoming feature.

Language Support

| Language | Status | |---|---| | JavaScript / TypeScript | Supported | | Python | Supported | | C# | Planned | | Go | Planned | | Rust | Planned | | PHP | Planned |

License

MIT