Join waitlist
Back to products
WhatsDiff

WhatsDiff

CLI tool to help you understand changes in your dependencies

Website whatsdiff.app
Overview

What it is

whatsdiff shows what actually changed after composer/npm update. See dependencies changes at a glance, risk-assess, and get aggregated changelogs without leaving your terminal. - Interactive TUI for reading changelog - JSON/Markdown output for automation. - CI/CD integration with exit codes. - MCP server to assist you with upgrades Your dependencies just became readable. Finally. Free & open-source.

Intent

I need it when

Review release notes and changelogs for updated packages directly in the terminal

WhatsDiff's TUI mode and changelog command allow developers to browse release notes without leaving the terminal, reducing context switching and accelerating dependency upgrade decisions

Compare dependency changes between different commits, branches, or tags

The between command lets developers see what dependency modifications occurred across specific points in version control, enabling targeted code review and impact assessment

Understand what packages were added, removed, or updated after running composer or npm update

WhatsDiff's CLI analyse command parses composer.lock and package-lock.json files to display exactly which dependencies changed, helping developers review updates before merging code

Identify security vulnerabilities in installed dependencies

The audit command lists known security advisories affecting composer.lock and package-lock.json packages with suggested fix versions, enabling proactive vulnerability management

Integrate dependency change analysis into AI-assisted development workflows

The MCP Server enables Claude and other AI assistants to query package registries and understand dependency changes, helping LLMs provide informed upgrade recommendations

Drop

Not a fit when

  • User manages only Python or Go dependencies; WhatsDiff supports only PHP (Composer) and JavaScript (npm) ecosystems
  • User needs real-time automated dependency monitoring without manual CLI invocation; GitHub App integration is still in development
  • User requires a graphical user interface; WhatsDiff is CLI-first with TUI mode only for changelog browsing
  • User works in organizations without terminal access or developer tooling permissions
  • User needs dependency change notifications in existing CI/CD systems other than GitHub pull requests
Commercials

Pricing

Free open-source CLI tool with optional paid features planned