npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

vibeking

v0.1.1

Published

The leaderboard for vibe coders. Scan your Claude Code burn, claim your title, defend the crown.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

oakleafoakleaf

Keywords

claudeclaude-codeleaderboardtokensvibe-coding

Readme

VibeKing

The CLI is open source because it scans local Claude Code usage.

It never uploads prompts, code, file paths, repo names, project names, or transcript content. Run vibeking inspect-upload to see the exact JSON before publishing.

See PRIVACY.md for the full data list and PAYLOAD.md for the schema.

Try it

npx vibeking
  vibeking  weekly scan complete

  Sessions       100
  Active days    7
  Main weapon    claude-opus-4-7 (79%)

  You have data worth publishing.
  Publish to see your VibeBurn, title, score, and roast.

  Publish to see your VibeBurn, title, score, and roast:
    vibeking publish

  inspect upload  vibeking inspect-upload  (see exactly what would be sent)

The offline CLI shows only facts about your local Claude Code usage. The official VibeBurn, title, score, level, roast, and share card are computed server-side and shown after vibeking publish. The CLI is intentionally the trust layer (scanner + consent), not the game.

vibeking login + vibeking publish to claim a public rank at vibeking.io. League management (create / join / leave / leaderboards) lives on the web.

Repo layout

src/
  index.ts            CLI entry point + arg parser
  scanner.ts          Reads ~/.claude/projects/*/memory.jsonl
  redaction.ts        UploadPayloadSchema — the security gate
  buildPayload.ts     scanner → redaction → upload payload assembly
  config.ts           ~/.vibeking/config.json + auth-state checks
  types.ts            Shared types (Scope, DailyAggregate, ScanSummary)
  reveal.ts           Offline reveal output (facts + publish CTA)
  prompt.ts           y/N readline helper
  openUrl.ts          cross-platform browser launcher
  topModel.ts         pickTopModel from daily aggregates
  version.ts          CLI version constant
  commands/           scan (+ default flow), publish, inspectUpload, help, auth, installations
  __tests__/          redaction, payload-snapshot, prompt tests
test/fixtures/        Synthetic Claude Code data for the payload snapshot test

The leaderboard backend, web app, anti-cheat heuristics, and admin tools live in a separate, private repo. PRs against this repo can only change CLI / scoring-library code — see CONTRIBUTING.md.

Trust mechanics

The whole pitch hinges on three things:

  1. The scanner is right here. src/scanner.ts is short enough to read in five minutes. It reads ~/.claude/projects/*/memory.jsonl and pulls: timestamps; model names; token counts; tool-use counts (allowlisted; MCP tools collapsed to a single mcp bucket so installed-server names don't leak); stop-reason counts; a 24-bucket local-hour histogram; session start/end timestamps (for duration); file path strings (read locally to count distinct values — only the count ships); Edit/Write content (read locally to count line deltas — only the totals ship); permission-mode toggles; hook event names + exit codes; cwd/gitBranch strings (read locally to count distinct values — only the counts ship); isSidechain flags; public-marketplace skill names (Skill tool's input.skill, classified against the auto-synced marketplace-tokens.ts; user-specific names like brain:* collapse to other); public-marketplace subagent types (Task or Agent tool's input.subagent_type — Claude Code 1.x / 2.x; same auto-synced classification); and worktree-state / file-history-snapshot record counts. Nothing else.
  2. The payload builder is shared. src/buildPayload.ts is the one function that turns local data into something uploadable. Both vibeking publish and vibeking inspect-upload call it — they cannot drift.
  3. The schema is strictObject-enforced. src/redaction.ts defines UploadPayloadSchema with Valibot v.strictObject — any unknown key throws before the request leaves your machine. The redaction tests and the fixture-based payload snapshot cover prompt/path-shaped leaks and wire-format stability.

Develop

pnpm install
pnpm dev    # run the CLI against your real ~/.claude data

pnpm test
pnpm typecheck
pnpm lint

To point the CLI at a local dev backend instead of production:

VIBEKING_API_URL=http://localhost:7100 VIBEKING_WEB_URL=http://localhost:5173 pnpm dev

Test the published flow locally (npx vibeking dry run)

pnpm dev runs the source via tsx — it does not exercise the npm-install path users hit with npx vibeking. To test exactly what npm will publish, pack a tarball and invoke it through npx:

pnpm pack:test
# prints the tarball path + the npx command to copy-paste

The script builds, runs npm pack --pack-destination /tmp/vibeking-pack, then prints the ready-to-run command. The tarball is built from the same files allowlist that npm publish uses, so what you run is bit-identical to what npx vibeking would fetch after publish.

# production backend
npx --package=/tmp/vibeking-pack/vibeking-X.Y.Z.tgz vibeking

# local backend
VIBEKING_API_URL=http://localhost:7100 VIBEKING_WEB_URL=http://localhost:5173 \
  npx --package=/tmp/vibeking-pack/vibeking-X.Y.Z.tgz vibeking

Use --package= (not the bare tarball form) — newer npm refuses to exec a .tgz path directly. Re-run pnpm pack:test after every code change; npx caches tarballs by name.

License

MIT — see LICENSE.

appitudeio/vibeking-cli · vibeking.io