New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details →
Socket
Book a DemoSign in
Socket
Book a DemoSign in

agent-session-diff

Package Overview
Dependencies
Maintainers
1
Versions
2
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

agent-session-diff

Post-session CLI that diffs the repo and produces a structured summary

latest
npmnpm
Version
0.1.1
Version published
Maintainers
1
Created
Source

agent-diff

Post-session CLI that diffs your repo against a saved snapshot and produces a structured summary of everything the agent changed.

Install

npm install -g agent-diff

Usage

Before a session:

agent-diff snapshot
# Saved session start: abc1234

After a session:

agent-diff report

Session: abc1234..def5678 (5 commits, 23 minutes)

Files (12 changed):
  + src/match.ts (new)
  + src/__tests__/match.test.ts (new)
  ~ package.json (+3, -1)
  ~ src/index.ts (+2, -0)
  - old-file.ts (deleted)

Dependencies:
  + @valencets/resultkit ^0.2.0
  ~ typescript 5.8.0 → 5.9.0

Stats: +245 -67 across 12 files in 5 commits

Commands

agent-diff snapshot

Saves the current git HEAD commit hash to .agent-session in the current directory. Run this before starting a Claude Code session.

agent-diff report

Generates a diff report from the snapshot to the current HEAD.

Options:

  • --format cli — colored terminal output (default)
  • --format json — structured JSON for programmatic use
  • --format markdown — PR-friendly markdown
  • --since <commit> — diff from a specific commit instead of the snapshot

Examples

# JSON output for scripting
agent-diff report --format json | jq '.files[] | select(.status == "A")'

# Markdown for PR description
agent-diff report --format markdown > session-summary.md

# Diff from a specific commit
agent-diff report --since abc1234

Output Formats

CLI (default)

Colored terminal output with + for added, ~ for modified, - for deleted.

JSON

{
  "startCommit": "abc1234",
  "endCommit": "def5678",
  "commitCount": 5,
  "duration": "0h 23m",
  "files": [
    { "status": "A", "path": "src/match.ts", "insertions": 45, "deletions": 0 },
    { "status": "M", "path": "package.json", "insertions": 3, "deletions": 1 }
  ],
  "stats": { "insertions": 245, "deletions": 67, "filesChanged": 12 },
  "dependencies": [
    { "name": "@valencets/resultkit", "action": "added", "to": "^0.2.0" }
  ],
  "commits": [
    { "hash": "def5678", "subject": "Add match/matchOn", "author": "Forrest", "date": "2026-03-21T18:05:49-05:00" }
  ]
}

Markdown

Structured markdown with headers, bullet lists, suitable for pasting into PRs.

Requirements

  • Node.js >= 22
  • Git repository
  • ESM only

License

MIT

FAQs

Package last updated on 22 Mar 2026

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

Attackers Are Hunting High-Impact Node.js Maintainers in a Coordinated Social Engineering Campaign

Security News

Attackers Are Hunting High-Impact Node.js Maintainers in a Coordinated Social Engineering Campaign

Multiple high-impact npm maintainers confirm they have been targeted in the same social engineering campaign that compromised Axios.

By Sarah Gooding  -  Apr 03, 2026