Developer API
A public, read-only, CORS-open JSON API over the library. No key required. Our analysis (summaries, health scores, tags) is original and free to build on; rendered documentation is served only where the source license allows.
GET /api/resources
List & search resources. Query params: q, language, license, category, tag (repeatable), sort (relevance|stars|health|recent), page, limit (≤50).
curl "https://opensources.dev/api/resources?language=TypeScript&sort=stars&limit=5"GET /api/resources/{slug}
Full detail for one resource, including tags, alternatives, and the health breakdown.
curl "https://opensources.dev/api/resources/slate"GET /resource/{slug}/markdown
Clean Markdown export with YAML front-matter — ideal for LLMs and agents.
curl "https://opensources.dev/resource/slate/markdown"POST /api/audit
Audit a dependency set: send {"packages":[…]} or {"manifest":"<package.json contents>"}. Returns each matched dependency with health, weekly downloads, known advisories, license, bundle size, last-commit date, and link — plus what is not yet indexed.
curl -X POST "https://opensources.dev/api/audit" \
-H "Content-Type: application/json" \
-d '{"packages":["react","lodash","moment"]}'GET /llms.txt
An llms.txt index of the whole library for AI agents.
curl "https://opensources.dev/llms.txt"CLI
Audit your project’s dependencies — in your terminal or CI — built on /api/audit:
npx opensources audit # reads ./package.json
npx opensources audit --ci # exit 1 on a CVE or unmaintained dep
npx opensources audit --json # machine-readableNotes
- Responses are cached (≈2–5 min). Treat data as eventually-consistent.
- Health scores and summaries are our original analysis; attribute the source project for its docs.
- Embed a live health badge:
https://opensources.dev/resource/{slug}/badge.svg