Skip to content

v0.1.0 — Initial release

Choose a tag to compare

@KMavr KMavr released this 26 May 14:47
970dc90

Initial release

  • debtctl init — scans package.json for dependency overrides and scaffolds .debtctl.json with stub metadata (reason, owner, revisitWhen).
  • debtctl check — reports overrides that are missing metadata, incomplete (still contain TODO fields), or due for review (their trigger has fired).
  • --strict flag escalates dueForReview from a warning to a failure.
  • --json flag emits machine-readable output for CI consumers.
  • --only <bucket> flag filters output to a single category (missing, incomplete, dueForReview, or orphans).
  • Package-manager detection via packageManager field with lockfile fallback. Supports npm, pnpm, yarn-classic, and yarn-berry.
  • Trigger types: version-anchor (fires when a package's declared range drifts) and date (fires when today ≥ expires).
  • Range comparison is semver-aware via semver.subset, with string-equality fallback for non-semver ranges like latest and workspace:*.
  • Warning when multiple lockfiles are present, with the matched set surfaced in JSON output.