RepoCrunch

Analyze any public GitHub repository into structured JSON. No AI, no LLMs — fully deterministic.

Give it a repo, get back tech stack, dependencies, architecture, health metrics, and security signals in clean, consistent JSON. Use it as a Python library, CLI tool, REST API, or MCP server.

Quick Start

Requires Python 3.11+.

hljs language-bash

pip install repocrunch
repocrunch analyze fastapi/fastapi --pretty

That's it. Also works with uv:

hljs language-bash

uvx repocrunch analyze astral-sh/uv --pretty

Install from source

hljs language-bash

git clone https://github.com/kimwwk/repocrunch.git
cd repocrunch
uv venv && uv pip install -e ".[all]"

Install just what you need:

hljs language-bash

uv pip install -e "."          # Library only (httpx + pydantic)
uv pip install -e ".[cli]"     # + CLI
uv pip install -e ".[api]"     # + REST API
uv pip install -e ".[mcp]"     # + MCP server
uv pip install -e ".[all]"     # Everything

Set a GitHub Token (optional)

Without a token you get 60 API calls/hour. With one, 5,000/hour. A token also lets you analyze private repositories you have access to.

hljs language-bash

export GITHUB_TOKEN=ghp_...

Usage

CLI

hljs language-bash

repocrunch analyze fastapi/fastapi --pretty          # Full analysis, pretty JSON
repocrunch analyze facebook/react -f tech_stack       # Single field
repocrunch analyze https://github.com/gin-gonic/gin   # Full URL works too
repocrunch serve                                       # Start REST API on :8000
repocrunch mcp                                         # Start MCP server (STDIO)

Python Library

hljs language-python

from repocrunch import analyze, analyze_sync

# Async
result = await analyze("fastapi/fastapi")

# Sync
result = analyze_sync("pallets/flask")

print(result.summary.stars)
print(result.tech_stack.framework)
print(result.model_dump_json(indent=2))

REST API

hljs language-bash

repocrunch serve

# Then:
curl "http://localhost:8000/analyze?repo=fastapi/fastapi" | python -m json.tool
curl "http://localhost:8000/health"
curl "http://localhost:8000/docs"    # OpenAPI docs

MCP Server (for Claude, Cursor, etc.)

hljs language-bash

repocrunch mcp    # Starts STDIO transport

Sample Output

hljs language-bash

$ repocrunch analyze pallets/flask --pretty

hljs language-json

{
  "schema_version": "1",
  "repo": "pallets/flask",
  "url": "https://github.com/pallets/flask",
  "analyzed_at": "2026-02-08T19:07:31Z",
  "summary": {
    "stars": 71143,
    "forks": 16697,
    "watchers": 2092,
    "last_commit": "2026-02-06T21:23:01Z",
    "age_days": 5787,
    "license": "BSD-3-Clause",
    "primary_language": "Python",
    "languages": { "Python": 99.9, "HTML": 0.1 }
  },
  "tech_stack": {
    "runtime": "Python",
    "framework": null,
    "package_manager": "pip",
    "dependencies": { "direct": 6, "dev": 0 },
    "key_deps": ["blinker", "click", "itsdangerous", "jinja2", "markupsafe", "werkzeug"]
  },
  "architecture": {
    "monorepo": false,
    "docker": false,
    "ci_cd": ["GitHub Actions"],
    "test_framework": "pytest",
    "has_tests": true
  },
  "health": {
    "open_issues": 2,
    "open_prs": 0,
    "contributors": 862,
    "commit_frequency": "daily",
    "maintenance_status": "actively_maintained"
  },
  "security": {
    "has_env_file": false,
    "dependabot_enabled": false,
    "branch_protection": false,
    "security_policy": false
  },
  "warnings": [
    "Branch protection status unknown (requires admin access or authenticated request)"
  ]
}

Supported Ecosystems

Language	Manifest Files	Package Manager Detection
JavaScript / TypeScript	`package.json`	npm, yarn, pnpm, bun (from lockfiles)
Python	`pyproject.toml`, `requirements.txt`	pip, poetry, uv, pdm, pipenv
Rust	`Cargo.toml`	cargo
Go	`go.mod`	go
Java / Kotlin	`pom.xml`, `build.gradle`, `build.gradle.kts`	maven, gradle
Ruby	`Gemfile`	bundler
C / C++	`CMakeLists.txt`	cmake

Framework detection covers 40+ frameworks across all supported ecosystems (FastAPI, Django, React, Next.js, Spring Boot, Rails, Gin, Actix, and many more).

What It Detects

Category	Signals
Summary	Stars, forks, watchers, age, license, languages
Tech Stack	Runtime, framework, package manager, direct/dev dependency count, key deps
Architecture	Monorepo, Docker, CI/CD platform, test framework
Health	Commit frequency (daily/weekly/monthly/sporadic/inactive), maintenance status, contributors, open issues
Security	`.env` file committed, Dependabot enabled, branch protection, SECURITY.md present

Roadmap

Not yet implemented, but planned:

Secrets regex scanning — detect leaked API keys, tokens, passwords in the file tree
Architecture type classification — library vs. application vs. framework
API rate limiting — per-key throttling for the REST API
npm/npx package — npx repocrunch analyze owner/repo
Vulnerability scanning — known CVE detection in dependencies
Comparison mode — side-by-side analysis of multiple repos
Historical tracking — track how a repo's health changes over time
Platform deployments — Apify Store, Smithery, mcp.so, RapidAPI

Already shipped: RepoCrunch is published on PyPI — pip install repocrunch.

License

MIT

repocrunch

RepoCrunch

Quick Start

Install from source

Set a GitHub Token (optional)

Usage

CLI

Python Library

REST API

MCP Server (for Claude, Cursor, etc.)

Sample Output

Supported Ecosystems

What It Detects

Roadmap

License

Similar Packages

Tags

Original Author

Publisher