✂️ Find unused files, dependencies and exports in your JavaScript and TypeScript projects. Knip it before you ship it!

Validate and visualize dependencies. Your rules. JavaScript, TypeScript, CoffeeScript. ES6, CommonJS, AMD.

LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/

Static Value-Flow Analysis Framework for Source Code

Go Dependency Analysis toolkit

OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration.

Detect unused composer dependencies

Keep your dependencies up-to-date

Go modules analysis tool

A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositories.

git commit dependency analysis tool

Easy auditing & sandboxing for your JavaScript dependencies 🪱

Automatic detecting missing I18n translations tool.

NsDepCop is a static code analysis tool that helps to enforce namespace dependency rules in C# projects. No more unplanned or unnoticed dependencies in your system.

R package for analyzing other R packages via graph representations of their dependencies

C/C++ Dependency Analyzer: a rewrite of John Lakos' dep_utils (adep/cdep/ldep) from "Large-Scale C++ Software Design"

Multivariate data modelling with Copulas in Python

Jarviz is dependency analysis and visualization tool designed for Java applications

Checks that all dependencies in your package.json have supported versions installed and complies with your specified node engine version range

Generate reports about dependencies and dependents of your JavaScript/TypeScript files through an AST. It supports import and require statements.