Dependency Health Scanner

Your dependencies
are dying.

npm audit catches CVEs. Dependabot sends PRs.
Nothing catches abandonment.

Your file never leaves your browser. Parsed client-side. No account needed.

npm

package.json

PyPI

requirements.txt

Cargo

Cargo.toml

Go

go.mod

RubyGems

Gemfile

PHP

composer.json

Java

build.gradle

Dart

pubspec.yaml

How it works

1

Drop your file

Upload any dependency file. It never leaves your browser.

2

We fetch the signals

Commits, releases, contributors, downloads, CVEs — all from public APIs.

3

Get the verdict

Every package scored 0–100 with a full breakdown of why.

What we measure

Commit activity25%
Release cadence20%
Issue responsiveness15%
Active contributors15%
PR merge velocity10%
Download trend10%
Maintainer count5%

Unresolved CVEs apply a security penalty multiplier on top.

CI Integration

Fail builds when dependencies drop below your threshold.

uses: KidCarmi/Dependency-Obituary@main

README Badges

Show health scores for any package in your docs.

Generate a badge →