
I made revera, a tool that scores NPM packages before you blindly install them
So I wondered sometimes, how little info we have when we install NPM packages.. so I built revera... its a npm package scorer, but on steroids. It uses a complex sophisticated algorithm (still not perfect, but near-perfect) that nails at ranking NPM packages.. it gives every package a score and the score is determined on criterias such as maintainability, trust, package releases, downloads, much more..
the audit command scans the working directory for
it has the following extra features:
- logging in with github for higher rate limits
- why command for explaining a certain package's score
- doctor for checking if everything is working
- caching system which lives for 24h on local machine
- and a customizable config
It would mean the world to me if you all could try it out and give feedback (bad or good)!
github repo: https://github.com/aaravmaloo/revera
npm package page: https://www.npmjs.com/package/@aaravmaloo/revera