Security News
Socket Security Analysis Is Now One Click Away on npm
npm now links to Socket's security analysis on every package page. Here's what you'll find when you click through.
By Sarah GoodingΒ - Β Feb 19, 2026
New: Introducing PHP and Composer Support.Read the Announcement β
commandkit
Advanced tools
- Version
- 1.2.0-dev.20251123021956
- Version published
- Weekly downloads
- 1.5K -42%
- Maintainers
- 1
Weekly downloads
Β
- Created
The discord.js meta-framework for building powerful, modular, and extensible Discord bots with ease.
Features
- Beginner friendly π
- Suitable for both beginners and advanced users πΆπ¨βπ»
- Slash + context menu commands + prefix commands support β
- Automatic command registration and updates π€
- Command middlewares for easy command management π οΈ
- Localization support through
@commandkit/i18nplugin π - Plugin system to extend functionality π
- Built-in command line interface for easy development π₯οΈ
- Out-of-the-box support for TypeScript and JavaScript π
- Built-in customizable cache system for speedy data storage and retrieval ποΈ
- User installable/guild scoped commands π§
- Custom events support π
- JSX support for declaring Discord interaction components and modals π¨
- Easy to use interaction components and modals system (forget about collectors) π§©
- Less boilerplate code, more productivity πͺ
- and much more...
Getting Started
Get started by checking out the documentation.
Installation
To create a new CommandKit project, you can use the following command:
npm create commandkit
This will prompt you to enter few details about your project. Once you have entered the details, you can simply run commandkit dev to start the bot application.
Support and Suggestions
Submit any queries or suggestions in our Discord community.
FAQs
Beginner friendly command & event handler for Discord.js
The npm package commandkit receives a total of 1,208 weekly downloads. As such, commandkit popularity was classified as popular.
We found that commandkit demonstrated a not healthy version release cadence and project activity because the last version was released a year ago.Β It has 2 open source maintainers collaborating on the project.
Package last updated on 23 Nov 2025
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Cline CLI npm Package Compromised via Suspected Cache Poisoning Attack
A compromised npm publish token was used to push a malicious postinstall script in cline@2.3.0, affecting the popular AI coding agent CLI with 90k weekly downloads.
By Sarah GoodingΒ - Β Feb 18, 2026
Product
Socket Brings Supply Chain Security to skills.sh
Socket is now scanning AI agent skills across multiple languages and ecosystems, detecting malicious behavior before developers install, starting with skills.sh's 60,000+ skills.
By Wenxin Jiang, Alexandros KapravelosΒ - Β Feb 17, 2026