depwire/depwire

v1.6.0 Feature

This release adds 3 notable features for engineering teams evaluating rollout.

Published 9d MCP Developer Tools

View tool

✓ No known CVEs patched

Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Topics

ai-coding-assistant arc-diagram cli code-analysis dead-code dependency-graph

+8 more

developer-tools go javascript mcp model-context-protocl python rust typescript

Summary

AI summary

Updates Flags, Output The command returns, and Input modes across a mixed release.

Changes in this release

Type	Severity	Summary	CVE
Feature
Feature	Medium	Adds `depwire verify-change` CLI command for pre‑action change verification. Adds `depwire verify-change` CLI command for pre‑action change verification. Source: llm_adapter@2026-05-25 Confidence: high	—
Feature	Low	Supports verifying file content, file replacement, unified diff, and stdin input. Supports verifying file content, file replacement, unified diff, and stdin input. Source: granite4.1:30b@2026-05-25-audit Confidence: low	—
Feature	Low	Outputs broken imports, new circular dependencies, blast radius, health score delta, security findings, and risk level classification. Outputs broken imports, new circular dependencies, blast radius, health score delta, security findings, and risk level classification. Source: granite4.1:30b@2026-05-25-audit Confidence: low	—
Feature	Low	Provides `--json` flag for JSON output suitable for CI scripts. Provides `--json` flag for JSON output suitable for CI scripts. Source: granite4.1:30b@2026-05-25-audit Confidence: low	—
Feature	Low	Provides `--quiet` flag for single‑line verdict only output. Provides `--quiet` flag for single‑line verdict only output. Source: granite4.1:30b@2026-05-25-audit Confidence: low	—
Feature	Low	Provides `--fail-on-warnings` flag to exit with status 1 on MEDIUM risk and 2 on HIGH risk, enabling CI gating. Provides `--fail-on-warnings` flag to exit with status 1 on MEDIUM risk and 2 on HIGH risk, enabling CI gating. Source: granite4.1:30b@2026-05-25-audit Confidence: low	—
Feature	Low	Allows overriding health regression threshold via `--health-threshold N` flag. Allows overriding health regression threshold via `--health-threshold N` flag. Source: granite4.1:30b@2026-05-25-audit Confidence: low	—
Feature	Low	Automatically disables terminal colors for non‑TTY output with `--no-color` flag. Automatically disables terminal colors for non‑TTY output with `--no-color` flag. Source: granite4.1:30b@2026-05-25-audit Confidence: low	—
Refactor	Low	Introduces shared core logic in `src/core/verify-change.ts` used by both CLI and MCP tool. Introduces shared core logic in `src/core/verify-change.ts` used by both CLI and MCP tool. Source: granite4.1:30b@2026-05-25-audit Confidence: low	—

Full changelog

What's new

This release exposes the verify_change MCP tool as a first-class CLI command, making pre-action verification available to humans, CI pipelines, and any tool that can shell out — not just MCP-connected AI agents.

New CLI command

depwire verify-change simulates a proposed code change against the deterministic dependency graph and returns a safety report before any code is modified.

Input modes

# Verify replacement content for a file
depwire verify-change --file src/foo.ts --content "new content here"

# Verify with content from another file
depwire verify-change --file src/foo.ts --content-from new-version.ts

# Verify a unified diff
depwire verify-change --diff feature.patch

# Verify with content piped from stdin
cat new-version.ts | depwire verify-change --file src/foo.ts

Output

The command returns:

Broken imports the change would introduce
New circular dependencies created by the change
Blast radius — every file transitively affected
Health score delta on the architectural metrics
Security findings flagged by the static analysis layer
Risk level classification (LOW, MEDIUM, HIGH)

Flags

--json — output as JSON for piping into jq or CI scripts
--quiet — single-line verdict only
--fail-on-warnings — exit 1 on MEDIUM risk, exit 2 on HIGH (for CI integration)
--health-threshold N — override default health regression threshold
--no-color — disable terminal colors (auto-disabled for non-TTY)

CI integration

The --fail-on-warnings flag makes this the right command for CI pipelines that should block dangerous changes:

depwire verify-change --diff $PR_DIFF --fail-on-warnings --json

Architecture

The CLI command and MCP tool now share core logic via a new module at src/core/verify-change.ts. Both surfaces call the same verifyChange() function. No behavior change for existing MCP callers.

Install

npm install -g [email protected]

Supported languages (16)

TypeScript · JavaScript · Python · Go · Rust · C · C# · Java · C++ · Kotlin · PHP · Swift · Mojo · Ruby · Dart · R

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track depwire/depwire

Get notified when new releases ship.

About depwire/depwire

The missing context layer for AI-assisted refactoring

All releases →

Related context

Related tools

Earlier breaking changes

v1.6.1 Health scores from v1.6.1+ are not directly comparable to earlier versions.