pamald / pamald-yarn
Collects lock diff information from yarn.lock files.
Installs: 0
Dependents: 1
Suggesters: 0
Security: 0
Stars: 0
Watchers: 1
Forks: 0
Open Issues: 0
pkg:composer/pamald/pamald-yarn
Requires
- php: >=8.3
- pamald/pamald: 1.x-dev
Requires (Dev)
- consolidation/robo: ^5.0
- maddhatter/markdown-table: ^1.2
- mikey179/vfsstream: ^1.6
- nuvoleweb/robo-config: 3.x-dev
- phpstan/phpstan: ^2.0
- phpunit/phpunit: ^11.0
- siketyan/yarn-lock: ^1.1
- squizlabs/php_codesniffer: ^3.6
- sweetchuck/composer-suite: 1.x-dev
- sweetchuck/git-hooks: 2.x-dev
- sweetchuck/robo-git: 4.x-dev
- sweetchuck/robo-phpcs: 4.x-dev
- sweetchuck/robo-phpstan: 3.x-dev
- symfony/console: ^7.0
- symfony/error-handler: ^7.0
- symfony/filesystem: ^7.0
- symfony/finder: ^7.0
- symfony/yaml: ^7.0
This package is auto-updated.
Last update: 2025-10-13 18:42:25 UTC
README
pamald-yarn is a PHP library that collects dependency information from yarn.lock files.
It is the Yarn-specific implementation of the pamald/pamald project,
enabling detailed analysis of NPM packages.
Project Goals
The library aims to collect and analyze NPM dependencies from
yarn.lock and package.json files in a structured way.
This is particularly useful for:
- Tracking dependency changes: Easily identify package updates, new dependencies, or removed packages
- Security audits: Quick overview of package versions in use
- CI/CD pipelines: Automated dependency analysis during build processes
- Documentation: Generate accurate dependency lists for projects
- Prepare Git Commit Message: Automatically generate a commit message with dependency information
Usage
<?php declare(strict_types = 1); use Pamald\PamaldYarn\DependencyCollector; use Siketyan\YarnLock\YarnLock; $collector = new DependencyCollector(); $lock = YarnLock::toArray(file_get_contents('yarn.lock') ?: ''); $json = json_decode(file_get_contents('package.json') ?: '{}', true); $rightDependencies = $collector->collect($lock, $json); // See pamald/pamald how to use this to generate a report.