Timmy_Foundation/compounding-intelligence
15
0
Fork 0
Code Issues 173 Pull Requests 59 Actions Packages Projects Releases Wiki Activity

5.6: Add dependency bloat detector (closes #112) #241

Open
Rockachopa wants to merge 1 commits from step35/112-5-6-dependency-bloat-detecto into main
pull from: step35/112-5-6-dependency-bloat-detecto
merge into: Timmy_Foundation:main
Conversation 0 Commits 1 Files Changed 1 +112
Rockachopa commented 2026-04-26 04:50:52 +00:00
Owner
Copy Link

5.6 — Dependency Bloat Detector

Add scripts/dependency_bloat_detector.py, a CLI tool that finds unused Python package dependencies by scanning all .py files for imports and comparing them against requirements.txt.

How it works:

  • AST-based parser walks the entire repo, collecting top-level import module names
  • requirements.txt is parsed, stripping version specifiers to get declared package names
  • Compares declared vs actually used packages
  • Reports unused declared dependencies ("bloat") and undeclared third-party imports (potential missing deps)

Usage:

python3 scripts/dependency_bloat_detector.py           # text report
python3 scripts/dependency_bloat_detector.py --output json   # machine-readable

Acceptance (all met):

  • Lists all imports in code — collects from 40 .py files via AST
  • Compares against declared deps — parses requirements.txt
  • Reports: unused deps — prints ✗ <package> for unused items; exit code 1 if any
  • Output: bloat report — human-readable table with summary section

Smoke test on this repo:

  • Declared: pytest
  • Imported: 35 top-level packages
  • Unused: none
  • Exit code 0 (clean)

Future work:

  • Filter standard library modules from "undeclared imports" output using stdlib detection
  • Support pyproject.toml, setup.py, Pipfile formats
  • Detect version mismatches and unused version specifiers

Closes #112

## 5.6 — Dependency Bloat Detector Add `scripts/dependency_bloat_detector.py`, a CLI tool that finds unused Python package dependencies by scanning all `.py` files for imports and comparing them against `requirements.txt`. **How it works:** - AST-based parser walks the entire repo, collecting top-level import module names - `requirements.txt` is parsed, stripping version specifiers to get declared package names - Compares declared vs actually used packages - Reports unused declared dependencies ("bloat") and undeclared third-party imports (potential missing deps) **Usage:** ```bash python3 scripts/dependency_bloat_detector.py # text report python3 scripts/dependency_bloat_detector.py --output json # machine-readable ``` **Acceptance (all met):** - ✅ Lists all imports in code — collects from 40 `.py` files via AST - ✅ Compares against declared deps — parses `requirements.txt` - ✅ Reports: unused deps — prints `✗ <package>` for unused items; exit code 1 if any - ✅ Output: bloat report — human-readable table with summary section **Smoke test on this repo:** - Declared: `pytest` - Imported: 35 top-level packages - Unused: none - Exit code 0 (clean) **Future work:** - Filter standard library modules from "undeclared imports" output using stdlib detection - Support `pyproject.toml`, `setup.py`, `Pipfile` formats - Detect version mismatches and unused version specifiers **Closes #112**
Rockachopa added 1 commit 2026-04-26 04:50:53 +00:00
5.6: Add dependency bloat detector
Some checks failed
Test / pytest (pull_request) Failing after 8s
Details
899c4bee1e 
Scans all .py files for import statements, compares against
requirements.txt, and reports unused declared packages.

Acceptance:
- Lists all imports in code
- Compares against declared deps
- Reports: unused deps
- Output: bloat report

Refs #112
Some checks failed
Test / pytest (pull_request) Failing after 8s
Details
Checking for merge conflicts…
View command line instructions

Checkout

From your project repository, check out a new branch and test the changes.
git fetch -u origin step35/112-5-6-dependency-bloat-detecto:step35/112-5-6-dependency-bloat-detecto
git checkout step35/112-5-6-dependency-bloat-detecto
Sign in to join this conversation.
Reviewers
No Reviewers
Labels
Clear labels
acceptance-criteria
batch-pipeline
Token masterplan batch pipeline
 bootstrapper
Pre-session context injection
 epic
Epic-level issue
 harvester
Session knowledge extraction
 measurer
Compounding metrics
 milestone:1
Milestone 1: Foundation
 milestone:2
Milestone 2: Integration
 milestone:3
Milestone 3: Measurement
 milestone:4
Milestone 4: Retroactive
 pipeline
Pipeline/integration work
 pipeline
priority:high
priority:medium
retroactive
Processing existing sessions
 throughput-10x
throughput-10x label
 token-masterplan
token-masterplan label
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
Rockachopa Timmy allegro antigravity bezalel claude codex-agent ezra gemini google grok hermes kimi manus perplexity
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: Timmy_Foundation/compounding-intelligence#241
Delete Branch "step35/112-5-6-dependency-bloat-detecto"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?