npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

vibeship-cli

v0.1.0

Published

Make any vibe-coded project production-ready in 60 seconds

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

fupelafupela

Keywords

clideployvibe-codingproductionaidevtools

Readme

vibeship

Make any vibe-coded project production-ready in 60 seconds.

Quick Start · What It Checks · Commands · Pricing · Website

npm version license node PRs welcome

You vibe-coded an app. It works locally. Now what?

63% of vibe-coding users are non-developers. They build apps with Cursor, Windsurf, or Claude in 20 minutes, then hit a wall at deployment. Missing error handling, exposed secrets, broken imports — the gap between "works locally" and "production-ready" kills momentum.

vibeship bridges that gap. One CLI. Scan, fix, ship.

Quick Start

npx @jedaiflow/vibeship scan

No install. No config. Point it at any project.

$ vibeship scan

  vibeship  Production Readiness Scanner

  Framework:  Next.js v14.2.0
  TypeScript: Yes

  Production Readiness Score

  ██████░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░  15/100

  ● NOT PRODUCTION READY — Critical issues found.

  CRITICAL (3 issues)
    ✗ SEC-001  Hardcoded Stripe secret key
    ✗ SEC-002  .env file not in .gitignore
    ✗ REL-001  No error boundary

  WARNING (6 issues)
    ⚠ DEP-001  No .env.example file          [auto-fixable]
    ⚠ DEP-002  No .gitignore file             [auto-fixable]
    ⚠ DEP-003  No health check endpoint       [auto-fixable]
    ⚠ REL-002  console.log in production code [auto-fixable]
    ...

  3 critical · 6 warnings · 5 info · 8 auto-fixable

  Run vibeship fix to auto-fix 8 issues.
$ vibeship fix --all

  ✓ Created .gitignore with essential entries
  ✓ Created .env.example from .env (values stripped)
  ✓ Added /api/health endpoint (App Router)
  ✓ Added ErrorBoundary component and error.tsx page
  ✓ Removed console.log from 3 files

  5 fixes applied
$ vibeship scan

  Production Readiness Score

  ███████████████████████████░░░░░░░░░░░░░  68/100

  ● NEEDS WORK — Some issues to address before shipping.

15 → 68 in seconds.

Install

# Run without installing
npx @jedaiflow/vibeship scan

# Or install globally
npm i -g @jedaiflow/vibeship

# Or with pnpm
pnpm add -g @jedaiflow/vibeship

Commands

vibeship scan [dir]

Scans your project and generates a production readiness report with a 0-100 score.

  • Auto-detects framework (Next.js, Vite, Remix, Astro, static)
  • Runs 30+ checks across 5 categories
  • Flags which issues are auto-fixable
  • Optional AI deep analysis for Pro users

vibeship fix [dir]

Auto-fixes common production issues instantly:

| Fix | What it does | |-----|-------------| | .env.example | Creates from your .env with values stripped | | .gitignore | Adds missing essential entries | | Error Boundary | Adds React Error Boundary + error.tsx | | Health check | Adds /api/health endpoint | | Console cleanup | Removes console.log from production code |

vibeship deploy [dir]

One-command deployment to your platform of choice:

  • Vercel — best for Next.js, React apps
  • Cloudflare Pages — best for static sites, edge apps
  • Auto-detects framework and configures deployment

vibeship auth [key]

Manage your VibeShip license:

vibeship auth vs_your_api_key   # Activate Pro or Team
vibeship auth --status           # Check current plan
vibeship auth --logout           # Remove stored key

What It Checks

Security

Hardcoded API keys (Stripe, AWS, GitHub, Slack, SendGrid, Google), .env exposed in git, CORS wildcard configs

Deployment

Missing .env.example, incomplete .gitignore, no health endpoint, no CI/CD config, no favicon

Reliability

Missing React Error Boundaries, console.log in production code, no global error page

Performance

No Next.js Image optimization, missing code splitting / lazy loading, heavy deps (moment.js, lodash)

Architecture

TypeScript strict mode disabled, inconsistent naming conventions, missing ESLint config

AI Deep Analysis (Pro)

Pro and Team plans unlock AI-powered code review that goes beyond static checks:

vibeship auth vs_your_api_key
vibeship scan

AI analysis reviews your actual code for:

  • Authentication implementation security
  • API route protection gaps
  • Data validation issues
  • Architectural concerns
  • Framework-specific best practices

The deterministic checks catch common issues. AI analysis adds depth for complex codebases where pattern matching isn't enough.

Scoring

| Severity | Points | Examples | |----------|--------|---------| | Critical | -15 each | Exposed secrets, no error boundary | | Warning | -5 each | Missing .env.example, no health check | | Info | -2 each | No favicon, TypeScript strict mode off |

Base score is 100. Score 80+ = production-ready.

Supported Frameworks

| Framework | Scan | Fix | Deploy | |-----------|:----:|:---:|:------:| | Next.js (App + Pages Router) | ✅ | ✅ | ✅ | | Vite + React | ✅ | ✅ | ✅ | | Remix | ✅ | ✅ | ✅ | | Astro | ✅ | ✅ | ✅ | | Static HTML/CSS/JS | ✅ | ✅ | ✅ |

Framework detection is automatic. No config needed.

Pricing

| | Free | Pro | Team | |---|---|---|---| | Price | $0 | $9/mo | $29/mo | | Core scan + auto-fix | ✅ | ✅ | ✅ | | 30+ built-in checks | ✅ | ✅ | ✅ | | Projects | 3 | Unlimited | Unlimited | | AI deep analysis | — | ✅ | ✅ | | Custom check rules | — | ✅ | ✅ | | Priority deploy | — | ✅ | ✅ | | CI/CD integration | — | — | ✅ | | Team configs & dashboard | — | — | ✅ | | Support | Community | Email | Priority |

Get Pro →   |   Get Team →

Contributing

PRs welcome. Check src/analyzers/ and src/fixers/ — the pattern is straightforward. Add a new analyzer or fixer and it'll get picked up automatically.

git clone https://github.com/jedaiflow/vibeship.git
cd vibeship
pnpm install
pnpm dev

License

MIT — Built by JedAI Flow Installation: npx github:fupela/vibeship