Socket
Book a DemoInstallSign in
Socket
Book a DemoInstallSign in

eyeball-mk-1

Package Overview
Dependencies
Maintainers
1
Versions
5
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

eyeball-mk-1

A global CLI package that scans the current directory and diffs package.json with require statements

latest
npmnpm
Version
0.1.0
Version published
Maintainers
1
Created
Source

Install

npm install eyeball-mk-1 -g

Run

eyeball - will check what's missing from package.json and create a list ignoring core modules and relative paths. Read only.

eyeball -f - will fix your package.json with packages that are required but not listed in dependencies. Uses 4 spaces for indentation when writing to package.json.

About

I spent a long time looking for the eyeball-mk-1 package before I realised what my colleague was referring to meant 'just looking at it'. Nobody needs to go through that again now. Eyeball finds all the require statements in your directory and lists them.

It can also auto-fix the package.json file by adding anything missing. If the module is installed it will get the version number of that module from node_modules/MODULE/package.json, else it will use * as the version. If there are uninstalled modules, run npm install after eyeball.

Run it in the same directory as your package.json. Eyeball will not recursively seek upwards through directories.

Todo

  • write tests
  • handle devDependencies, currently it doesn't realise that packages might be in there rather than deps
  • get the latest version from if unknown rather than just putting *

Keywords

command line
tool
dependencies
package
modules
cli

FAQs

Package last updated on 18 Apr 2015

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

Node.js Fixes AsyncLocalStorage Crash Bug That Could Take Down Production Servers

Research

Node.js Fixes AsyncLocalStorage Crash Bug That Could Take Down Production Servers

Node.js patched a crash bug where AsyncLocalStorage could cause stack overflows to bypass error handlers and terminate production servers.

By Sarah Gooding  -  Jan 14, 2026
Malicious Chrome Extension Steals MEXC API Keys for Account Takeover

Research

/

Security News

Malicious Chrome Extension Steals MEXC API Keys for Account Takeover

A malicious Chrome extension steals newly created MEXC API keys, exfiltrates them to Telegram, and enables full account takeover with trading and withdrawal rights.

By Kirill Boychenko  -  Jan 12, 2026