Analyze your dependencies

Paste a package.json or requirements.txt. We'll match each dependency against our index and show its maintenance health, weekly downloads, and known security advisories — so you can spot risky or unmaintained packages at a glance. Nothing is uploaded or stored; the manifest is parsed in the request only.

Prefer the terminal or CI? Run npx opensources audit in your project — it uses the same data via our public audit API.