Dependency Viewer

Analyse Python, npm, and Go dependencies from any public GitHub repository.

External calls go only to api.github.com, pypi.org, registry.npmjs.org, and proxy.golang.org. With Socket.dev credentials or Python download stats, also to the proxy Worker at socket-proxy.yoda.cc.

Ecosystem:

All npm Python Go

Include test & dev dependencies

Show Python download statistics · via pypistats.org proxy

GitHub authentication optional

Remember token · local storage only

60 req/hr without a token · 5 000 req/hr with one · required for private repos · token sent only to api.github.com

Socket.dev supply chain optional

I understand my API key is forwarded through the Cloudflare Worker at socket-proxy.yoda.cc to api.socket.dev

Remember key and org

Saved in your browser's local storage. Your API key is sent only to the configured proxy Worker, which forwards it to api.socket.dev. Uncheck and submit to remove.

How it works

Polyglot repos (e.g. both package.json and go.mod) are resolved per ecosystem and rendered as separate sections, sorted independently.

npm and Go packages from private registries are automatically skipped — the count of excluded entries is shown in the results. Python PEP 508 URL requirements (pkg @ https://…) are silently skipped.

Supply chain scores require a Socket.dev API key and org slug (enter above to add a Supply Chain column). Python download statistics (Downloads/mo column) are fetched via the same proxy Worker at socket-proxy.yoda.cc — enable with the checkbox above.

■ Released or first appeared 3 days ago or less ■ 7 days or less ■ 30 days or less