Nodejs module that tells you when your package NPM dependencies are out of date.
Install Node.js
Install david:
cd /your/project/directory
npm install david
Use:
var david = require('david');
// Your package.json
var manifest = {
name: 'xxx',
dependencies: {
'aaa': '~0.0.0',
'bbb': '~0.0.0',
},
devDependencies: {
'yyy': '~0.0.0',
'zzz': '~0.0.0',
}
};
david.getDependencies(manifest, function(err, deps) {
console.log('latest dependencies information for', manifest.name);
listDependencies(deps);
});
david.getDependencies(manifest, {dev: true}, function(err, deps) {
console.log('latest devDependencies information for', manifest.name);
listDependencies(deps);
});
david.getUpdatedDependencies(manifest, function(err, deps) {
console.log('dependencies with newer versions for', manifest.name);
listDependencies(deps);
});
david.getUpdatedDependencies(manifest, {dev: true}, function(err, deps) {
console.log('devDependencies with newer versions for', manifest.name);
listDependencies(deps);
});
david.getUpdatedDependencies(manifest, {stable: true}, function(err, deps) {
console.log('dependencies with newer STABLE versions for', manifest.name);
listDependencies(deps);
});
david.getUpdatedDependencies(manifest, {dev: true, stable: true}, function(err, deps) {
console.log('devDependencies with newer STABLE versions for', manifest.name);
listDependencies(deps);
});
function listDependencies(deps) {
Object.keys(deps, function(depName) {
var required = deps[depName].required || '*';
var stable = deps[depName].stable || 'None';
var latest = deps[depName].latest;
console.log(depName + 'Required: ' + required + ' Stable: ' + stable + ' Latest: ' + latest);
});
}
Both getDependencies and getUpdatedDependencies return an object result, whose keys are package names. The values are objects which contain the following properties:
required- The version required according to the manifeststable- The latest stable version availablelatest- The latest version available (including build and patch versions)
If you install David globally (npm install -g david), you can run david in your project directory to see which dependencies are out of date.
David caches packages it looks up from NPM for 1 day. You can set the cache duration by calling setCacheDuration and passing it a moment duration.
N.B. Packages are actually cached forever, but are refreshed according to this duration. You can control the number of packages david will cache by calling setCacheSize.
David will let you know when versions for packages it has cached change. Listen to the following events:
Fired when a dependency stable version changed from a stable version to a stable version.
N.B. fromVersion may be undefined
Fired when a latest version changed from stable or build or patch version to stable or build or patch version
N.B. fromVersion may be undefined.
N.B. These events are retroactive. David will only fire them after a call to getDependencies or getUpdatedDependencies when one or more of the dependencies for the passed manifest have been updated in NPM since david last cached them. The events are not guaranteed to be fired for each version change. If david caches 0.0.1 and version 0.0.2 and 0.0.3 are released before the cache expires, david will only fire an event with 0.0.1 and 0.0.3 as the fromVersion and toVersion respectively.