dependency-change-report 1.4.9 → 1.4.11

package/README.md

@@ -15,10 +15,14 @@ A tool to analyze dependency changes between different versions of a Node.js pro
 
 ### Using npx (Recommended)
 
-No installation required! Run directly with npx:
+No installation required! Run directly with npx from within your git repository:
 
 ```bash
-npx dependency-change-report <github-repo> <older-version> <newer-version> [working-dir]
+# Auto-detect versions
+npx dependency-change-report auto
+
+# Or compare specific versions
+npx dependency-change-report compare v1.0.0 v2.0.0
 ```
 
 ### Global Installation (Alternative)
@@ -32,39 +36,69 @@ npm install -g dependency-change-report
 Then run with:
 
 ```bash
-dependency-change-report <github-repo> <older-version> <newer-version> [working-dir]
+# Auto-detect versions
+dependency-change-report auto
+
+# Or compare specific versions
+dependency-change-report compare v1.0.0 v2.0.0
 ```
 
 ## Usage
 
 ### Command Line Interface
 
-Generate a dependency report:
+The tool provides two main commands:
+
+#### Auto Command (Recommended)
+
+Automatically detects versions and generates reports:
 
 ```bash
-# Using npx (recommended)
-npx dependency-change-report <github-repo> <older-version> <newer-version> [working-dir]
+# From within a git repository
+dependency-change-report auto
 
-# If installed globally
-dependency-change-report <github-repo> <older-version> <newer-version> [working-dir]
+# Or specify a repository URL
+dependency-change-report auto <github-repo>
+```
+
+#### Compare Command
+
+Compare specific versions:
+
+```bash
+# From within a git repository (repo URL auto-detected)
+dependency-change-report compare <older-version> <newer-version>
+
+# Or specify a repository URL explicitly
+dependency-change-report compare --repo <github-repo> <older-version> <newer-version>
 ```
 
 The tool automatically generates three report formats:
 - `report.json` - Raw data in JSON format
 - `report.html` - Web-friendly HTML report
-- `report.txt` - Slack-friendly text report
+- `report.md` - Markdown report (perfect for PR comments)
+- `report.txt` - Plain text report
 
 ### Examples
 
 ```bash
-# Generate a report comparing v1.0.0 and v2.0.0 of a repository
-npx dependency-change-report git@github.com:user/repo.git v1.0.0 v2.0.0
+# Auto-detect versions and generate all reports (from within a git repo)
+dependency-change-report auto
+
+# Compare specific versions (from within a git repo)
+dependency-change-report compare v1.0.0 v2.0.0
+
+# Compare specific versions with explicit repo URL
+dependency-change-report compare --repo https://github.com/user/repo v1.0.0 v2.0.0
+
+# Generate only HTML and Markdown reports
+dependency-change-report auto --html --markdown
 
-# Generate a report with a specific working directory
-npx dependency-change-report git@github.com:user/repo.git v1.0.0 v2.0.0 /tmp/analysis
+# Ignore dev dependencies
+dependency-change-report compare v1.0.0 v2.0.0 --ignore-dev
 
-# Filter nested dependencies by namespace (e.g., @holepunch)
-npx dependency-change-report git@github.com:user/repo.git v1.0.0 v2.0.0 . @holepunch
+# Save reports to a specific directory
+dependency-change-report auto --output-dir ./reports
 ```
 
 ### Programmatic Usage

package/cli.mjs

@@ -14,42 +14,62 @@ import { mkdir } from 'fs/promises';
 const compare = command(
   'compare',
   flag('--ignore-dev', 'ignore dev dependencies'),
+  flag('--debug-tree', 'output debug information about dependency tree filtering'),
   flag('--working-dir [path]', 'the working dir for the report. If not provided, then temp dir is used'),
   flag('--output-dir [path]', 'directory to save reports. If not provided, reports are saved in working dir'),
   flag('--html', 'generate a html report'),
   flag('--markdown', 'generate a markdown report'),
   flag('--text', 'generate a text only report'),
-  arg('<repo>', 'repo url'),
+  flag('--repo [url]', 'repo url (optional if in git directory)'),
   arg('<older>', 'the older tag, commit, or branch'),
-  arg('[newer]', 'the newer tag, commit, or branch'),
+  arg('<newer>', 'the newer tag, commit, or branch'),
   async () => {
     try {
-      let repoUrl = compare.args.repo;
+      let repoUrl = compare.flags.repo;
+
+      // If no repo provided, try to get it from git remote
+      if (!repoUrl) {
+        try {
+          const result = await executeCommand('git', ['remote', 'get-url', 'origin'], process.cwd(), 10000, 'detecting git remote');
+          if (!result) {
+            throw new Error('Git command returned no output');
+          }
+          repoUrl = result.trim();
+          if (!repoUrl) {
+            throw new Error('Git remote URL is empty');
+          }
+          console.log(`Detected git remote: ${repoUrl}`);
+        } catch (error) {
+          console.error(`Failed to detect git remote: ${error.message}`);
+          throw new Error('No repo URL provided and could not detect git remote. Either provide a repo URL or run from within a git repository.');
+        }
+      }
+
       const olderVersion = compare.args.older;
       const newerVersion = compare.args.newer;
-      
+
       // Use temp directory if working-dir not specified
       let workingDir = compare.flags['working-dir'];
       if (!workingDir) {
         const paths = envPaths('dependency-change-report');
         workingDir = paths.temp;
       }
-      
+
       // Detect if running in GitHub Actions
       const isGitHubActions = process.env.GITHUB_ACTIONS === 'true';
-      
+
       // Note: No need for GitHub token authentication when using worktrees
       // since we use the already-authenticated repository
       if (isGitHubActions) {
         console.log('GitHub Actions detected - using authenticated repository');
       }
-      
+
       // Set up output directory
       let outputDir = compare.flags.outputDir;
       if (!outputDir) {
         outputDir = workingDir; // Default to working directory
       }
-      
+
       // Ensure output directory exists
       try {
         await mkdir(outputDir, { recursive: true });
@@ -57,17 +77,17 @@ const compare = command(
         console.error(`Failed to create output directory ${outputDir}: ${error.message}`);
         throw error;
       }
-      
+
       console.log(`Analyzing dependency changes for ${repoUrl} between older version (${olderVersion}) and newer version (${newerVersion})`);
-      
-      const report = await analyzeDependencyChanges(repoUrl, olderVersion, newerVersion, workingDir, null, compare.flags.ignoreDev);
-      
+
+      const report = await analyzeDependencyChanges(repoUrl, olderVersion, newerVersion, workingDir, null, compare.flags.ignoreDev, compare.flags.debugTree);
+
       console.log('\nSummary:');
       console.log(`Added dependencies: ${report.changes.added.length}`);
       console.log(`Upgraded dependencies: ${report.changes.upgraded.length}`);
       console.log(`Removed dependencies: ${report.changes.removed.length}`);
       console.log(`Modified dependencies (namespace changes): ${report.changes.modified ? report.changes.modified.length : 0}`);
-      
+
       // Display nested dependency information if available
       if (report.changes.nested) {
         console.log('\nNested Dependencies:');
@@ -75,24 +95,24 @@ const compare = command(
         console.log(`Upgraded nested dependencies: ${report.changes.nested.upgraded.length}`);
         console.log(`Removed nested dependencies: ${report.changes.nested.removed.length}`);
       }
-      
+
       const changelogCount = Object.keys(report.changelogs).length;
       const errorCount = Object.keys(report.errors).length;
       console.log(`Generated changelogs for ${changelogCount} upgraded dependencies`);
       console.log(`Encountered errors with ${errorCount} dependencies`);
-      
+
       // Generate additional report formats
       console.log('\nGenerating additional report formats...');
-      
+
       const reportJsonPath = report.reportPath;
-      
+
       // Generate GitHub Actions-friendly filenames if detected
       let baseFilename = 'report';
       if (isGitHubActions) {
         const eventName = process.env.GITHUB_EVENT_NAME;
         let prNumber = process.env.GITHUB_PR_NUMBER;
         const sha = process.env.GITHUB_SHA?.substring(0, 7);
-        
+
         // Extract PR number from GITHUB_REF_NAME if not in GITHUB_PR_NUMBER
         if (!prNumber && process.env.GITHUB_REF_NAME) {
           const refName = process.env.GITHUB_REF_NAME;
@@ -101,27 +121,27 @@ const compare = command(
             prNumber = prMatch[1];
           }
         }
-        
+
         if (eventName === 'pull_request' && prNumber) {
           baseFilename = `dependency-report-PR-${prNumber}`;
         } else if (sha) {
           baseFilename = `dependency-report-${sha}`;
         }
       }
-      
+
       if (compare.flags.html || compare.flags.markdown || compare.flags.text) {
         if (compare.flags.html) {
           const htmlPath = join(outputDir, `${baseFilename}.html`);
           await generateHtmlReport(reportJsonPath, htmlPath);
           console.log(`🌐 HTML: ${htmlPath}`);
         }
-        
+
         if (compare.flags.markdown) {
           const markdownPath = join(outputDir, `${baseFilename}.md`);
           await generateMarkdownReport(reportJsonPath, markdownPath);
           console.log(`📝 Markdown: ${markdownPath}`);
         }
-        
+
         if (compare.flags.text) {
           const textPath = join(outputDir, `${baseFilename}.txt`);
           await generateTextReport(reportJsonPath, textPath);
@@ -132,16 +152,16 @@ const compare = command(
         const htmlPath = join(outputDir, `${baseFilename}.html`);
         const markdownPath = join(outputDir, `${baseFilename}.md`);
         const textPath = join(outputDir, `${baseFilename}.txt`);
-        
+
         await generateHtmlReport(reportJsonPath, htmlPath);
         await generateMarkdownReport(reportJsonPath, markdownPath);
         await generateTextReport(reportJsonPath, textPath);
-        
+
         console.log(`🌐 HTML: ${htmlPath}`);
         console.log(`📝 Markdown: ${markdownPath}`);
         console.log(`📝 Text: ${textPath}`);
       }
-      
+
       // Output GitHub Actions commands if detected
       if (isGitHubActions) {
         const hasChanges = report.changes.added.length > 0 || report.changes.upgraded.length > 0 || report.changes.removed.length > 0;
@@ -151,10 +171,10 @@ const compare = command(
         console.log(`::set-output name=removed-count::${report.changes.removed.length}`);
         console.log(`::set-output name=report-dir::${outputDir}`);
       }
-      
+
       console.log('\nReport generated successfully!');
       console.log(`📄 JSON: ${report.reportPath}`);
-      
+
       // Display repository information for added dependencies
       if (report.changes.added.length > 0) {
         console.log('\nAdded dependencies with repositories:');
@@ -174,6 +194,7 @@ const compare = command(
 const auto = command(
   'auto',
   flag('--ignore-dev', 'ignore dev dependencies'),
+  flag('--debug-tree', 'output debug information about dependency tree filtering'),
   flag('--working-dir [path]', 'the working dir for the report. If not provided, then temp dir is used'),
   flag('--output-dir [path]', 'directory to save reports. If not provided, reports are saved in working dir'),
   flag('--html', 'generate a html report'),
@@ -183,7 +204,7 @@ const auto = command(
   async () => {
     try {
       let repoUrl = auto.args.repo;
-      
+
       // If no repo provided, try to get it from git remote
       if (!repoUrl) {
         try {
@@ -201,29 +222,29 @@ const auto = command(
           throw new Error('No repo URL provided and could not detect git remote. Either provide a repo URL or run from within a git repository.');
         }
       }
-      
+
       // Use temp directory if working-dir not specified
       let workingDir = auto.flags['working-dir'];
       if (!workingDir) {
         const paths = envPaths('dependency-change-report');
         workingDir = paths.temp;
       }
-      
+
       // Detect if running in GitHub Actions
       const isGitHubActions = process.env.GITHUB_ACTIONS === 'true';
-      
+
       // Note: No need for GitHub token authentication when using worktrees
       // since we use the already-authenticated repository
       if (isGitHubActions) {
         console.log('GitHub Actions detected - using authenticated repository');
       }
-      
+
       // Set up output directory
       let outputDir = auto.flags.outputDir;
       if (!outputDir) {
         outputDir = workingDir; // Default to working directory
       }
-      
+
       // Ensure output directory exists
       try {
         await mkdir(outputDir, { recursive: true });
@@ -231,22 +252,22 @@ const auto = command(
         console.error(`Failed to create output directory ${outputDir}: ${error.message}`);
         throw error;
       }
-      
+
       console.log(`Auto-detecting versions for ${repoUrl}...`);
-      
+
       // Detect versions automatically
       const { newer, older } = await detectVersions('.');
-      
+
       console.log(`Analyzing dependency changes between ${older} and ${newer}`);
-      
-      const report = await analyzeDependencyChanges(repoUrl, older, newer, workingDir, null, auto.flags.ignoreDev);
-      
+
+      const report = await analyzeDependencyChanges(repoUrl, older, newer, workingDir, null, auto.flags.ignoreDev, auto.flags.debugTree);
+
       console.log('\nSummary:');
       console.log(`Added dependencies: ${report.changes.added.length}`);
       console.log(`Upgraded dependencies: ${report.changes.upgraded.length}`);
       console.log(`Removed dependencies: ${report.changes.removed.length}`);
       console.log(`Modified dependencies (namespace changes): ${report.changes.modified ? report.changes.modified.length : 0}`);
-      
+
       // Display nested dependency information if available
       if (report.changes.nested) {
         console.log('\nNested Dependencies:');
@@ -254,24 +275,24 @@ const auto = command(
         console.log(`Upgraded nested dependencies: ${report.changes.nested.upgraded.length}`);
         console.log(`Removed nested dependencies: ${report.changes.nested.removed.length}`);
       }
-      
+
       const changelogCount = Object.keys(report.changelogs).length;
       const errorCount = Object.keys(report.errors).length;
       console.log(`Generated changelogs for ${changelogCount} upgraded dependencies`);
       console.log(`Encountered errors with ${errorCount} dependencies`);
-      
+
       // Generate additional report formats
       console.log('\nGenerating additional report formats...');
-      
+
       const reportJsonPath = report.reportPath;
-      
+
       // Generate GitHub Actions-friendly filenames if detected
       let baseFilename = 'report';
       if (isGitHubActions) {
         const eventName = process.env.GITHUB_EVENT_NAME;
         let prNumber = process.env.GITHUB_PR_NUMBER;
         const sha = process.env.GITHUB_SHA?.substring(0, 7);
-        
+
         // Extract PR number from GITHUB_REF_NAME if not in GITHUB_PR_NUMBER
         if (!prNumber && process.env.GITHUB_REF_NAME) {
           const refName = process.env.GITHUB_REF_NAME;
@@ -280,27 +301,27 @@ const auto = command(
             prNumber = prMatch[1];
           }
         }
-        
+
         if (eventName === 'pull_request' && prNumber) {
           baseFilename = `dependency-report-PR-${prNumber}`;
         } else if (sha) {
           baseFilename = `dependency-report-${sha}`;
         }
       }
-      
+
       if (auto.flags.html || auto.flags.markdown || auto.flags.text) {
         if (auto.flags.html) {
           const htmlPath = join(outputDir, `${baseFilename}.html`);
           await generateHtmlReport(reportJsonPath, htmlPath);
           console.log(`🌐 HTML: ${htmlPath}`);
         }
-        
+
         if (auto.flags.markdown) {
           const markdownPath = join(outputDir, `${baseFilename}.md`);
           await generateMarkdownReport(reportJsonPath, markdownPath);
           console.log(`📝 Markdown: ${markdownPath}`);
         }
-        
+
         if (auto.flags.text) {
           const textPath = join(outputDir, `${baseFilename}.txt`);
           await generateTextReport(reportJsonPath, textPath);
@@ -311,16 +332,16 @@ const auto = command(
         const htmlPath = join(outputDir, `${baseFilename}.html`);
         const markdownPath = join(outputDir, `${baseFilename}.md`);
         const textPath = join(outputDir, `${baseFilename}.txt`);
-        
+
         await generateHtmlReport(reportJsonPath, htmlPath);
         await generateMarkdownReport(reportJsonPath, markdownPath);
         await generateTextReport(reportJsonPath, textPath);
-        
+
         console.log(`🌐 HTML: ${htmlPath}`);
         console.log(`📝 Markdown: ${markdownPath}`);
         console.log(`📝 Text: ${textPath}`);
       }
-      
+
       // Output GitHub Actions commands if detected
       if (isGitHubActions) {
         const hasChanges = report.changes.added.length > 0 || report.changes.upgraded.length > 0 || report.changes.removed.length > 0;
@@ -330,19 +351,87 @@ const auto = command(
         console.log(`::set-output name=removed-count::${report.changes.removed.length}`);
         console.log(`::set-output name=report-dir::${outputDir}`);
       }
-      
+
       console.log('\nReport generated successfully!');
       console.log(`📄 JSON: ${report.reportPath}`);
-      
+
     } catch (error) {
       console.error(`Error: ${error.message}`);
       process.exit(1);
     }
   }
 )
-const cmd = command('dependency-change-report', summary('show dependency changes between versions'), compare, auto )
+// Default action when no subcommand is provided
+const defaultAction = async () => {
+  console.log('🔍 Dependency Change Report\n');
+
+  // Try to detect if we're in a git repository
+  let repoUrl = null;
+  let isInGitRepo = false;
+
+  try {
+    const result = await executeCommand('git', ['remote', 'get-url', 'origin'], process.cwd(), 10000, 'detecting git remote');
+    repoUrl = result?.trim();
+    isInGitRepo = !!repoUrl;
+  } catch (error) {
+    // Not in a git repo or no remote
+  }
+
+  if (isInGitRepo) {
+    console.log(`✅ Detected git repository: ${repoUrl}\n`);
+
+    // Try to detect versions
+    try {
+      const { newer, older } = await detectVersions('.');
+      console.log(`✅ Detected versions:`);
+      console.log(`   Older: ${older}`);
+      console.log(`   Newer: ${newer}\n`);
+
+      console.log('📋 Ready to analyze! Run one of these commands:\n');
+      console.log('   # Auto-detect versions and generate all reports:');
+      console.log('   dependency-change-report auto --ignore-dev\n');
+      console.log('   # Or specify versions explicitly:');
+      console.log(`   dependency-change-report compare --ignore-dev ${older} ${newer}\n`);
+      console.log('   # Generate specific report formats:');
+      console.log(`   dependency-change-report auto --html --markdown\n`);
+
+    } catch (error) {
+      console.log(`⚠️  Could not auto-detect versions: ${error.message}\n`);
+      console.log('📋 Run with explicit versions:\n');
+      console.log('   dependency-change-report compare <older-version> <newer-version>\n');
+      console.log('   Example:');
+      console.log('   dependency-change-report compare v1.0.0 v2.0.0\n');
+    }
+
+  } else {
+    console.log('⚠️  Not in a git repository or no remote configured\n');
+    console.log('📋 Run from a git repository:\n');
+    console.log('   cd /path/to/your/repo');
+    console.log('   dependency-change-report auto\n');
+    console.log('📋 Or specify a repository URL:\n');
+    console.log('   dependency-change-report compare https://github.com/user/repo v1.0.0 v2.0.0\n');
+  }
+
+  console.log('💡 Additional options:');
+  console.log('   --ignore-dev          Ignore dev dependencies');
+  console.log('   --debug-tree          Show debug info about dependency filtering');
+  console.log('   --output-dir <path>   Save reports to specific directory');
+  console.log('   --html                Generate HTML report only');
+  console.log('   --markdown            Generate Markdown report only');
+  console.log('   --text                Generate text report only\n');
+
+  console.log('📚 For more help:');
+  console.log('   dependency-change-report --help');
+};
+
+const cmd = command('dependency-change-report', summary('show dependency changes between versions'), compare, auto)
 const init = async () => {
-  cmd.parse()
+  // If no arguments provided (just the command name), run default action
+  if (process.argv.length === 2) {
+    await defaultAction();
+  } else {
+    cmd.parse();
+  }
 }
 
 // Run the main function

package/lib/core/analyzer.mjs

@@ -112,7 +112,7 @@ const processSingleDependency = async (dep, newerVersionDir, reposDir, multibar,
         repoUrl: cleanRepoUrl,
         oldVersion: dep.oldVersion,
         newVersion: dep.newVersion,
-        error: "No commits found between versions"
+        error: `No commits found between versions ${dep.oldVersion} -> ${dep.newVersion}`
       };
     }
   } catch (error) {
@@ -328,9 +328,10 @@ const collectAllDevDependencies = async (versionDir) => {
  * @param {string} workingDir - Working directory (optional)
  * @param {string} namespace - Optional namespace to filter second-level dependencies (e.g., @holepunch)
  * @param {boolean} ignoreDevDependencies - Whether to ignore devDependencies (optional)
+ * @param {boolean} debugTree - Whether to output debug information about dependency tree (optional)
  * @returns {Promise<Object>} - Analysis report
  */
-export const analyzeDependencyChanges = async (repoUrl, olderVersion, newerVersion, workingDir = process.cwd(), namespace = null, ignoreDevDependencies = false) => {
+export const analyzeDependencyChanges = async (repoUrl, olderVersion, newerVersion, workingDir = process.cwd(), namespace = null, ignoreDevDependencies = false, debugTree = false) => {
   // Setup signal handlers for graceful shutdown
   setupSignalHandlers();
   
@@ -439,23 +440,117 @@ export const analyzeDependencyChanges = async (repoUrl, olderVersion, newerVersi
       console.log(`  ${ignoredDevDependencies.slice(0, 10).join(', ')}${ignoredDevDependencies.length > 10 ? ` ... and ${ignoredDevDependencies.length - 10} more` : ''}`);
     }
     
+    // Helper function to recursively filter out dev dependencies from nested structures
+    const recursivelyFilterDevDeps = (deps, devDeps) => {
+      const filtered = {};
+      for (const [name, info] of Object.entries(deps)) {
+        // Skip if this is a dev dependency
+        if (devDeps.has(name)) {
+          continue;
+        }
+        
+        // Copy the dependency info
+        filtered[name] = { ...info };
+        
+        // Recursively filter nested dependencies if they exist
+        if (info.dependencies) {
+          const filteredNested = recursivelyFilterDevDeps(info.dependencies, devDeps);
+          if (Object.keys(filteredNested).length > 0) {
+            filtered[name].dependencies = filteredNested;
+          } else {
+            delete filtered[name].dependencies;
+          }
+        }
+      }
+      return filtered;
+    };
+    
     // Get dependencies for both versions, with namespace filtering for second-level dependencies if specified
     const olderDeps = await getDependencies(olderVersionDir, namespace);
     const newerDeps = await getDependencies(newerVersionDir, namespace);
     
-    // Filter out dev dependencies if requested
+    // Debug output: show dependency tree before filtering
+    if (debugTree) {
+      console.log('\n=== DEBUG: Dependency Tree BEFORE Filtering ===\n');
+      console.log(`Total dependencies in newer version: ${Object.keys(newerDeps).length}`);
+      
+      // Show jest-related dependencies
+      const jestRelated = Object.keys(newerDeps).filter(name => 
+        name.includes('jest') || name.includes('@jest')
+      );
+      if (jestRelated.length > 0) {
+        console.log(`\nJest-related top-level dependencies (${jestRelated.length}):`);
+        jestRelated.forEach(name => {
+          const info = newerDeps[name];
+          console.log(`  - ${name}@${info.version}`);
+          if (info.dependencies) {
+            const nestedJest = Object.keys(info.dependencies).filter(n => 
+              n.includes('jest') || n.includes('@jest')
+            );
+            if (nestedJest.length > 0) {
+              console.log(`    Nested jest deps: ${nestedJest.join(', ')}`);
+            }
+          }
+        });
+      }
+      
+      // Show all dev dependencies that will be filtered
+      if (ignoreDevDependencies && allDevDeps.size > 0) {
+        console.log(`\nDev dependencies to filter (${allDevDeps.size}):`);
+        const devDepsArray = Array.from(allDevDeps).sort();
+        const jestDevDeps = devDepsArray.filter(name => 
+          name.includes('jest') || name.includes('@jest')
+        );
+        if (jestDevDeps.length > 0) {
+          console.log(`  Jest-related (${jestDevDeps.length}): ${jestDevDeps.slice(0, 20).join(', ')}${jestDevDeps.length > 20 ? ` ... and ${jestDevDeps.length - 20} more` : ''}`);
+        }
+        console.log(`  Total: ${devDepsArray.slice(0, 10).join(', ')}${devDepsArray.length > 10 ? ` ... and ${devDepsArray.length - 10} more` : ''}`);
+      }
+    }
+    
+    // Filter out dev dependencies if requested (recursively to handle nested deps)
     const filteredOlderDeps = ignoreDevDependencies ? 
-      Object.fromEntries(Object.entries(olderDeps).filter(([name]) => !allDevDeps.has(name))) : 
+      recursivelyFilterDevDeps(olderDeps, allDevDeps) : 
       olderDeps;
     const filteredNewerDeps = ignoreDevDependencies ? 
-      Object.fromEntries(Object.entries(newerDeps).filter(([name]) => !allDevDeps.has(name))) : 
+      recursivelyFilterDevDeps(newerDeps, allDevDeps) : 
       newerDeps;
     
+    // Debug output: show dependency tree after filtering
+    if (debugTree) {
+      console.log('\n=== DEBUG: Dependency Tree AFTER Filtering ===\n');
+      console.log(`Total dependencies in newer version: ${Object.keys(filteredNewerDeps).length}`);
+      
+      // Show any remaining jest-related dependencies
+      const remainingJest = Object.keys(filteredNewerDeps).filter(name => 
+        name.includes('jest') || name.includes('@jest')
+      );
+      if (remainingJest.length > 0) {
+        console.log(`\n⚠️  WARNING: Jest-related dependencies still present (${remainingJest.length}):`);
+        remainingJest.forEach(name => {
+          const info = filteredNewerDeps[name];
+          console.log(`  - ${name}@${info.version}`);
+          if (info.dependencies) {
+            const nestedJest = Object.keys(info.dependencies).filter(n => 
+              n.includes('jest') || n.includes('@jest')
+            );
+            if (nestedJest.length > 0) {
+              console.log(`    Nested jest deps: ${nestedJest.join(', ')}`);
+            }
+          }
+        });
+      } else {
+        console.log('\n✅ No jest-related dependencies remaining after filtering');
+      }
+      
+      console.log('\n=== END DEBUG ===\n');
+    }
+    
     // Get package changes from package-lock.json if available
     const { changedPackages: lockFileChanges, packageVersions } = await getPackageLockChanges(olderVersionDir, newerVersionDir);
     
-    // Compare dependencies, passing packageVersions for devDep information
-    const comparison = compareDependencies(filteredOlderDeps, filteredNewerDeps, packageVersions);
+    // Compare dependencies, passing packageVersions for devDep information and allDevDeps for filtering
+    const comparison = compareDependencies(filteredOlderDeps, filteredNewerDeps, packageVersions, allDevDeps);
     
     // Create a combined list of packages to get changelogs for
     let allChangedPackages = [...comparison.upgraded];
@@ -467,6 +562,11 @@ export const analyzeDependencyChanges = async (repoUrl, olderVersion, newerVersi
     
     // Add any packages from lock file that aren't already in our list
     for (const packageName of lockFileChanges) {
+      // Skip if this is a nested dependency path (contains /node_modules/)
+      if (packageName.includes('/node_modules/')) {
+        continue;
+      }
+      
       if (!comparison.upgraded.some(dep => dep.name === packageName)) {
         const versionInfo = packageVersions[packageName];
         

package/lib/core/dependency-comparer.mjs

@@ -5,9 +5,10 @@ import semver from 'semver';
  * @param {Object} oldDeps - Old dependencies
  * @param {Object} newDeps - New dependencies
  * @param {Object} packageVersions - Package version info with devDep data from package-lock parser
+ * @param {Set} allDevDeps - Set of all dev dependencies (including nested) to filter out
  * @returns {Object} - Comparison result
  */
-export const compareDependencies = (oldDeps, newDeps, packageVersions = {}) => {
+export const compareDependencies = (oldDeps, newDeps, packageVersions = {}, allDevDeps = new Set()) => {
   const added = [];
   const removed = [];
   const upgraded = [];
@@ -184,11 +185,39 @@ export const compareDependencies = (oldDeps, newDeps, packageVersions = {}) => {
   
   // Process nested dependencies for each top-level dependency
   for (const [name, info] of Object.entries(newDeps)) {
+    // Skip processing nested deps if the parent is a dev dependency
+    if (allDevDeps.size > 0 && allDevDeps.has(name)) {
+      continue;
+    }
+    
     if (oldDeps[name] && info.dependencies) {
       processNestedDependencies(oldDeps[name], info, name);
     }
   }
   
+  // Filter out any nested dependencies that are themselves dev dependencies
+  if (allDevDeps.size > 0) {
+    const filterDevDeps = (deps) => deps.filter(dep => !allDevDeps.has(dep.name));
+    
+    const filteredNestedAdded = filterDevDeps(nestedAdded);
+    const filteredNestedRemoved = filterDevDeps(nestedRemoved);
+    const filteredNestedUpgraded = filterDevDeps(nestedUpgraded);
+    const filteredNestedModified = filterDevDeps(nestedModified);
+    
+    return { 
+      added, 
+      removed, 
+      upgraded, 
+      modified,
+      nested: {
+        added: filteredNestedAdded,
+        removed: filteredNestedRemoved,
+        upgraded: filteredNestedUpgraded,
+        modified: filteredNestedModified
+      }
+    };
+  }
+  
   return { 
     added, 
     removed, 

package/lib/git/repository.mjs

@@ -126,6 +126,7 @@ export const getCommitHistory = async (repoUrl, oldVersion, newVersion, reposDir
           errorMessage = 'Operation timed out - repository may be too large or network is slow';
         }
         
+        console.log(`Final clone failure for ${packageName}: ${errorMessage}`);
         throw new Error(`${errorMessage} (category: ${errorCategory})`);
       }
     };
@@ -303,6 +304,7 @@ export const getCommitHistory = async (repoUrl, oldVersion, newVersion, reposDir
     
     // Last resort: if we can't find specific versions, use default branch for newer and first commit for older
     if (!resolvedOldRef && !resolvedNewRef) {
+      console.log(`Could not find version references for ${packageName} (${oldVersion} -> ${newVersion}), using commit range fallback`);
       try {
         // Get the first commit
         const firstCommit = await executeCommand('git', ['rev-list', '--max-parents=0', 'HEAD'], tempDir, time_1min, `git rev-list first commit for ${packageName}`, false);
@@ -312,22 +314,27 @@ export const getCommitHistory = async (repoUrl, oldVersion, newVersion, reposDir
         const latestCommit = await executeCommand('git', ['rev-parse', 'HEAD'], tempDir, time_1min, `git rev-parse HEAD for ${packageName}`, false);
         resolvedNewRef = { ref: 'latest-commit', hash: latestCommit.trim() };
       } catch (error) {
+        console.log(`Failed to get fallback commits for ${packageName}: ${error.message}`);
         return [];
       }
     } else if (!resolvedOldRef) {
+      console.log(`Could not find old version reference for ${packageName} (${oldVersion}), using first commit`);
       try {
         // Get the first commit
         const firstCommit = await executeCommand('git', ['rev-list', '--max-parents=0', 'HEAD'], tempDir, time_1min, `git rev-list first commit for ${packageName}`, false);
         resolvedOldRef = { ref: 'first-commit', hash: firstCommit.trim() };
       } catch (error) {
+        console.log(`Failed to get first commit for ${packageName}: ${error.message}`);
         return [];
       }
     } else if (!resolvedNewRef) {
+      console.log(`Could not find new version reference for ${packageName} (${newVersion}), using latest commit`);
       try {
         // Get the latest commit on default branch
         const latestCommit = await executeCommand('git', ['rev-parse', 'HEAD'], tempDir, time_1min, `git rev-parse HEAD for ${packageName}`, false);
         resolvedNewRef = { ref: 'latest-commit', hash: latestCommit.trim() };
       } catch (error) {
+        console.log(`Failed to get latest commit for ${packageName}: ${error.message}`);
         return [];
       }
     }
@@ -360,6 +367,7 @@ export const getCommitHistory = async (repoUrl, oldVersion, newVersion, reposDir
     
     let output;
     try {
+      console.log(`Getting commit history for ${packageName}: ${resolvedOldRef.ref}(${resolvedOldRef.hash.substring(0, 7)}) -> ${resolvedNewRef.ref}(${resolvedNewRef.hash.substring(0, 7)})`);
       output = await executeCommand(
         'git', 
         ['log', `${resolvedOldRef.hash}..${resolvedNewRef.hash}`, '--pretty=format:%H,%an,%ad,%s'], 
@@ -369,17 +377,20 @@ export const getCommitHistory = async (repoUrl, oldVersion, newVersion, reposDir
         false
       );
     } catch (error) {
+      console.log(`Git log range failed for ${packageName}: ${error.message}`);
       // Try with a different approach - get all commits and filter
       try {
         output = await executeCommand(
           'git',
-          ['log', '--pretty=format:%H,%an,%ad,%s'],
+          ['log', '--pretty=format:%H,%an,%ad,%s', '--max-count=50'],
           tempDir,
           time_1min,
-          `git log all for ${packageName}`,
+          `git log recent for ${packageName}`,
           false
         );
+        console.log(`Using recent commits fallback for ${packageName}`);
       } catch (e) {
+        console.log(`All git log attempts failed for ${packageName}: ${e.message}`);
         return [];
       }
     }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "dependency-change-report",
-  "version": "1.4.9",
+  "version": "1.4.11",
   "type": "module",
   "description": "Generate dependency change reports between git references",
   "main": "lib/index.mjs",