A CLI tool that helps TypeScript library and app developers identify if packages in their dependencies can be safely moved to devDependencies. This helps end users save on their project bundle size by not importing unneeded dependencies.
npm install -g depsort
Or use with npx:
npx depsort
depsort [options]
Options:
--fix Automatically move packages to devDependencies
--json Output results as JSON
--exclude <paths> Exclude paths from analysis (glob patterns)
--include <paths> Only analyze specific paths (glob patterns)
--help Show help
depsort analyzes your TypeScript/JavaScript project to:
package.json dependenciesAnalyzing dependencies...
Found 3 packages that can be moved to devDependencies:
@types/node → devDependencies (type-only imports)
jest → devDependencies (only in test files)
typescript → devDependencies (build tool, not in source)
Run with --fix to automatically update package.json
MIT
FAQs
CLI tool to identify dependencies that can be safely moved to devDependencies
We found that depsort demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Multiple high-impact npm maintainers confirm they have been targeted in the same social engineering campaign that compromised Axios.
Security News
Axios compromise traced to social engineering, showing how attacks on maintainers can bypass controls and expose the broader software supply chain.
Security News
Node.js has paused its bug bounty program after funding ended, removing payouts for vulnerability reports but keeping its security process unchanged.