DepGrade

How risky are your dependencies? Paste a GitHub repo URL or a package.json and get a letter grade covering vulnerabilities, deprecation, staleness, bus factor, and install scripts. Free, no signup.

or paste package.json (and optionally package-lock.json for full-tree scoring)

One grade, itemized deductions: vulnerabilities, deprecation, staleness, bus factor, install scripts. A digest, not a dashboard.

Live examples: see react's grade · is moment still maintained? · check express

DepGrade badge as it renders in a README  the README badge. Embed it with: