Package Exports
- delivery-intel
- delivery-intel/dist/cli/analyzer.js
This package does not declare an exports field, so the exports above have been automatically detected and optimized by JSPM instead. If any package subpath is missing, it is recommended to post an issue to the original package (delivery-intel) to support the "exports" field. If that is not possible, create a JSPM override to customize the exports field for this package.
Readme
๐ delivery-intel
Software Delivery Intelligence in one command.
Point it at any GitHub repo. Get DORA metrics, vulnerability scan, and a health score.
No setup. No tokens for public repos. Just run it.
Why DORA metrics matter
Google's 2024 DORA Report (32,000+ respondents, 10 years of data) quantifies the gap between elite and low-performing engineering teams:
Metric Elite teams Low performers Gap Deploy Frequency On-demand (multiple/day) < once per 6 months 973ร Lead Time for Changes < 1 hour 1 โ 6 months 6,570ร Change Failure Rate 0โ15% 46โ60% โ Time to Restore < 1 hour 1 week โ 1 month 6,570ร Elite teams are 2ร more likely to meet reliability targets and 1.8ร more likely to meet business goals (DORA 2024). delivery-intel tells you exactly where your team stands โ in one command.
โก Quick Start
npx delivery-intel facebook/react โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ ๐ก Delivery Intel โ Cyber-Diagnostic Report 2026 โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
Repository facebook/react
Scanned 2026-04-17T12:00:00.000Z
โญโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโฎ
โ โฌก Overall Health Score โ
โ โ
โ โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ 87/100 EXCELLENT โ
โฐโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโฏ
โ DORA Metrics
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
Deploy Frequency โ
Elite
12.4 deployments/week (merged PRs)
Last 7 days โโโ
โโโโ
Lead Time โ
Elite
3.2 hours median (0.1 days)
Change Failure Rate โ High
4.8% (2 failed / 42 total runs)
โ Vulnerability Scan (OSV.dev)
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ No known vulnerabilities found
โ Suggestions
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ Looking good, no critical issues detectedWorks with full URLs too:
npx delivery-intel https://github.com/vercel/next.js
๐ What It Measures
| Metric | What it tells you | Source |
|---|---|---|
| Deploy Frequency | How often code ships to production | GitHub Deployments API โ merged PRs fallback |
| Lead Time | PR creation โ merge (branch active duration) | Pull Requests API |
| Change Failure Rate | % of CI pipeline runs that failed + raw counts | Workflow Runs API |
| Mean Time to Restore | How fast you recover from a failed run | Workflow Runs API (failure โ next success) |
| Vulnerabilities | Known CVEs in your dependencies | OSV.dev (free, no auth) |
| Health Score | Single 0โ100 rollup of all DORA metrics | Weighted composite |
| Suggestions | Prioritized, actionable recommendations | Heuristic engine |
Supports
package.json,requirements.txt, andgo.modfor vulnerability scanning.
๐ Usage
CLI (zero install)
# Any public repo โ no token needed
npx delivery-intel facebook/react
# Compare last 30 days vs prior 30 days
npx delivery-intel vercel/next.js --trend
# Include burnout risk score
npx delivery-intel vercel/next.js --risk
# AI-powered executive narrative (requires LLM key โ falls back to template)
npx delivery-intel vercel/next.js --narrative
# JSON output
npx delivery-intel vercel/next.js --json
# Save report to file
npx delivery-intel vercel/next.js --json --output report.jsonAll flags
| Flag | Description |
|---|---|
--json |
Output raw JSON instead of the formatted terminal report |
--output <file> |
Write JSON to a file (can combine with --json) |
--trend |
Show 30-day vs prior-30-day deltas for all metrics |
--risk |
Include Burnout Risk Score (velocity + stability signal) |
--narrative |
Generate an executive summary (LLM or template fallback) |
--token <token> |
GitHub token โ prefer gh auth login instead |
--no-spinner |
Disable the scanning animation (useful in CI logs) |
--version |
Print version |
--help |
Show help |
Web Dashboard
git clone https://github.com/ParthibanRajasekaran/delivery-intel.git
cd delivery-intel
npm install
npm run dev
# โ http://localhost:3000Paste a repo URL and get an animated dashboard with score ring, DORA cards, charts, vulnerability table, and suggestions. Dark theme with smooth animations.
Docker
# Dashboard
docker compose up dashboard
# CLI
REPO=facebook/react docker compose run --rm cli๐ฆ JSON Output Schema
Pass --json (or --json --output report.json) to get machine-readable output.
{
"repo": { "owner": "vercel", "repo": "next.js" },
"fetchedAt": "2026-04-17T12:00:00.000Z",
"overallScore": 87, // 0โ100
"doraMetrics": {
"deploymentFrequency": {
"deploymentsPerWeek": 12.4,
"rating": "Elite", // Elite | High | Medium | Low
"source": "merged_prs_fallback" // deployments_api | merged_prs_fallback
},
"leadTimeForChanges": {
"medianHours": 3.2,
"rating": "Elite"
},
"changeFailureRate": {
"percentage": 4.8,
"failedRuns": 2,
"totalRuns": 42,
"rating": "High"
}
},
"vulnerabilities": [
{
"packageName": "lodash",
"currentVersion": "4.17.15",
"vulnId": "GHSA-xxxx-xxxx-xxxx",
"summary": "Prototype pollution",
"severity": "high", // critical | high | medium | low
"aliases": ["CVE-2021-23337"],
"fixedVersion": "4.17.21"
}
],
"suggestions": [
{
"category": "reliability", // performance | reliability | security
"severity": "high", // high | medium | low
"title": "High Pipeline Failure Rate",
"description": "...",
"actionItems": ["..."]
}
],
"dailyDeployments": [0, 1, 2, 3, 1, 2, 3], // last 7 days, index 0 = 6 days ago
// present only with --trend
"trend": {
"windowDays": 30,
"current": { "deploymentsPerWeek": 12.4, "leadTimeHours": 3.2, "changeFailureRate": 4.8, "score": 87 },
"prior": { "deploymentsPerWeek": 9.1, "leadTimeHours": 5.6, "changeFailureRate": 6.2, "score": 78 },
"deltas": { "deploymentsPerWeek": 3.3, "leadTimeHours": -2.4, "changeFailureRate": -1.4, "score": 9 }
},
// present only with --risk
"riskScore": {
"score": 42,
"level": "moderate", // low | moderate | high | critical
"cycleTimeDelta": 0.12,
"failureRateDelta": -0.05,
"sentimentMultiplier": 1.0,
"summary": "..."
}
}๐ Authentication
| Method | Setup | Best for |
|---|---|---|
| None | Just run it | Public repos (60 req/hr) |
gh auth login |
brew install gh && gh auth login |
Daily use, token stays in OS keychain โจ |
GITHUB_TOKEN |
export GITHUB_TOKEN=ghp_... |
CI environments |
--token |
--token ghp_... |
Quick one-off (avoid in CI) |
Token resolution order: --token flag โ GITHUB_TOKEN env โ gh auth token
Private repos require a token with
reposcope. For CI, use${{ secrets.GITHUB_TOKEN }}. It's auto-scoped and expires per job.
๐ CI Integration
GitHub Actions Marketplace action
The easiest way โ use the action directly from the Marketplace:
# .github/workflows/delivery-intel.yml
name: Delivery Intelligence
on:
push:
branches: [main]
pull_request:
jobs:
analyze:
runs-on: ubuntu-latest
steps:
- uses: ParthibanRajasekaran/delivery-intel@main
with:
fail-below: '40' # fail the job if score drops below 40Outputs available after the step: score, deploy-frequency, lead-time, change-failure-rate, mean-time-to-restore.
npx (custom pipeline)
steps:
- name: Run delivery-intel
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
run: npx delivery-intel@latest ${{ github.repository }} --json --output report.json
- name: Check health score
run: |
SCORE=$(jq '.overallScore' report.json)
echo "Health score: $SCORE / 100"
if (( $(echo "$SCORE < 40" | bc -l) )); then
echo "::error::Score $SCORE is below threshold (40)"
exit 1
fiA ready-to-use workflow file with PR comments and artifact upload is included at .github/workflows/delivery-intel.yml.
๐ Badge
Once you have the dashboard deployed, you can show a live delivery score in any README:
[](https://github.com/ParthibanRajasekaran/delivery-intel)The GET /api/badge?repo=owner/repo endpoint returns a Shields.io endpoint-badge payload. Score maps to color: < 20 red โ < 40 orange โ < 60 yellow โ < 80 green โ โฅ 80 bright green. Results cached 5 minutes.
Self-hosting: deploy the dashboard (
npm run build && npm startordocker compose up dashboard) and replaceyour-deployment-url.
๐๏ธ Architecture
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ delivery-intel โ
โโโโโโโโโโโโโโโโฌโโโโโโโโโโโโโโโโฌโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโค
โ CLI โ Dashboard โ CI Workflow โ
โ (npx) โ (Next.js) โ (.github/workflows/) โ
โโโโโโโโโโโโโโโโดโโโโโโโโโโโโโโโโดโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโค
โ Shared Analysis Engine โ
โโโโโโโโโโโโฌโโโโโโโโโโโโโฌโโโโโโโโโโโโโโโฌโโโโโโโโโโโโโโโโโโโโโโโโค
โ GitHub โ OSV.dev โ Metrics โ Suggestions โ
โ REST API โ Vuln API โ Engine โ Engine โ
โ GraphQL โ โ (DORA) โ (Heuristics) โ
โโโโโโโโโโโโดโโโโโโโโโโโโโดโโโโโโโโโโโโโโโดโโโโโโโโโโโโโโโโโโโโโโโโค
โ Optional: Redis Cache (ioredis) โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ๐ Tech Stack
| Runtime | TypeScript ยท Node.js 18+ ยท Next.js (App Router) |
| GitHub | @octokit/rest ยท @octokit/graphql |
| Visualization | Recharts ยท Framer Motion ยท Tailwind CSS |
| Security | OSV.dev (free, no auth) |
| Caching | ioredis (optional, degrades gracefully) |
| Quality | ESLint ยท Prettier ยท Husky ยท Vitest ยท GitHub Actions CI |
๐ค Contributing
Contributions welcome! See CONTRIBUTING.md for dev setup, coding standards, and workflow.
git clone https://github.com/ParthibanRajasekaran/delivery-intel.git
cd delivery-intel
npm install
npm run validate # lint + typecheck + test in one shot๐ License
MIT. Use it however you want.