Neilblaze
portscope
JavaScript✨ New

CLI tool to see & manage what's running on your ports ✨

Last updated Jul 4, 2026
38
Stars
1
Forks
3
Issues
0
Stars/day
Attention Score
41
Language breakdown
JavaScript 83.1%
TypeScript 14.6%
CSS 1.3%
Shell 0.8%
HTML 0.1%
Files click to expand
README

PortScope

A beautiful CLI tool to see & manage what's running on your ports ✨

npm version license Node.js

breaker

WTF is this? 🤔

Stop guessing which process is hogging port 3000! 🛑

Eliminate the operational friction of diagnosing port collisions and orphaned workloads. PortScope is an advanced CLI observability suite that aggregates real-time metrics from active development servers, databases, and system daemons into a high-fidelity control plane. Engineered with heuristic framework detection and native Docker container mapping, it accelerates local debugging by providing intelligent context aggregation, interactive process lifecycle management, and integrated AI orchestration for natural language state querying.


[!NOTE]
### An important question to ask is: Why not use a skill.md instead?
>
Well, essentially two reasons,

1. A plain skills.md doesn’t behave well with smaller/local models. They don’t have strong instruction hierarchy or long-context discipline, so they either ignore it or overfit to it. In a tool-driven loop (like this CLI setup), that becomes unstable, because the model can’t reliably separate system intent from user intent or tool state.

Also, considering slightly larger setups (think sandboxed REPL-style agents), “skills” are usually mediated through structured tool schemas, guarded execution, and controlled context injection. That layer acts like a safety boundary between the model and the runtime ... and a raw skills.md bypasses that and gets dumped straight into the prompt, so there’s no isolation, no validation, and no execution guardrails. On smaller/local models, that can lead to prompt pollution (or better context rot), bad tool calls, or the model hallucinating actions it shouldn’t take.

2. I also have another take (honest one): it’s also just more fun and flexible this way. Most people running this aren’t on big sandboxed models, they’re on cheaper or local SLMs. A naive skills.md dump can actually mess with the model’s flow instead of helping it.


What it looks like 😎

https://github.com/user-attachments/assets/41009a31-9a40-4503-b4d4-54698eca2148

PortScope stays alive after showing your ports — type commands, ask questions in natural language, or use /help for the full command list.


Install

npm install -g github:Neilblaze/portscope

Or run it directly without installing:

npx github:Neilblaze/portscope
[!TIP]
You can install and run it directly using Claude Code / Gemini CLI.

Usage

Interactive mode (default)

portscope

Shows your port table and drops into an interactive prompt. From there you can:

  • Type a port number (e.g. 3000) → inspect it
  • Type a command (e.g. kill 3000, ps, clean) → execute it
  • Ask in natural language (e.g. "what's using the most CPU?") → AI answers and acts
  • Use slash commands (/provider, /models, /help) → configure AI
  • Fish-style Autocomplete — Intelligent ghost-text suggestions appear as you type (press to accept)
Type exit or press Ctrl+C to quit.
[!TIP]
You can launch PortScope with the --verbose flag (e.g. portscope --verbose) to enable real-time SSE streaming for AI responses, complete with token metrics and latency stats.

Show all listening ports

portscope --all                      # Show all ports including system services
portscope list --live                # Real-time auto-refreshing table

Includes system services, desktop apps, and everything else listening on your machine.

Inspect a specific port

portscope 3000

or

whoisonport 3000

Detailed view: full process tree, repository path, current git branch, memory usage.

Kill a process

portscope kill 3000                # kill by port
portscope kill 3000,5173,8080      # kill comma-separated
portscope kill 3000-3010           # kill a port range
portscope kill 42872               # kill by PID
portscope kill -f 3000             # force kill (SIGKILL)
portscope kill all                 # kill all dev server ports
[!IMPORTANT]
portscope kill all and all destructive operations always require explicit y/N confirmation — including when initiated by AI.

Port ranges expand into individual kills — empty ports are silently skipped:

$ portscope kill 3000-3005

Killing :3000 — node (PID 41245) ✔ Sent SIGTERM to :3000 — node (PID 41245) Killing :3001 — node (PID 91248) ✔ Sent SIGTERM to :3001 — node (PID 91248)

Range summary: 2 killed, 4 empty

Pause / Resume a process

portscope pause 3000              # suspend (SIGSTOP) — frees CPU, keeps state
portscope resume 3000             # resume (SIGCONT)

Useful for temporarily freeing resources — e.g., pausing a 10 GB inference server to run a Docker build, then resuming it.

[!NOTE]
Pause/resume uses POSIX SIGSTOP/SIGCONT and is available on macOS and Linux. Not supported on Windows.

Restart a process

portscope restart 3000            # Kill and relaunch using original command
portscope restart 3000 -f         # Force restart (SIGKILL)

Automatically resolves the exact package manager and dev script (e.g. pnpm run dev) or native start command, waiting for the port to become free before relaunching.

View process logs

portscope logs 3000               # show last 50 lines and exit
portscope logs 3000 -f            # follow (stream new lines)
portscope logs 3000 --lines 10    # show last 10 lines
portscope logs 3000 --err         # stderr only

Discovers log files automatically using lsof file descriptor detection. Falls back to system log (log show on macOS, journalctl on Linux) when no log files are found.

$ portscope logs 3000 --lines 5

PortScope — logs for :3000 (node, PID 41245)

▸ Tailing stdout: /tmp/next-dev.output

▲ Next.js 16.2.4 (Turbopack) - Local: http://localhost:3000 ✔ Ready in 192ms GET / 200 in 920ms GET /api/auth/session 200 in 5ms

Show all dev processes

portscope ps

A beautiful ps aux for developers — full process names, CPU%, memory, framework detection, environment detection (dev/prod/test/staging), and a smart description column.

$ portscope ps

╭───────┬─────────────┬──────┬──────────┬──────────┬───────────┬─────┬─────────┬────────────────────────────────╮ │ PID │ PROCESS │ CPU% │ MEM │ PROJECT │ FRAMEWORK │ ENV │ UPTIME │ WHAT │ ├───────┼─────────────┼──────┼──────────┼──────────┼───────────┼─────┼─────────┼────────────────────────────────┤ │ 584 │ Docker │ 1.5 │ 842.1 MB │ — │ Docker │ — │ 2d 5h │ 12 processes │ ├───────┼─────────────┼──────┼──────────┼──────────┼───────────┼─────┼─────────┼────────────────────────────────┤ │ 32194 │ python3 │ 0.4 │ 45.2 MB │ backend │ Python │ dev │ 5h 10m │ uvicorn main:app --reload │ ├───────┼─────────────┼──────┼──────────┼──────────┼───────────┼─────┼─────────┼────────────────────────────────┤ │ 21245 │ node │ 0.2 │ 112.5 MB │ frontend │ Node.js │ dev │ 45m │ vite │ ╰───────┴─────────────┴──────┴──────────┴──────────┴───────────┴─────┴─────────┴────────────────────────────────╯

3 processes · --all to show everything

Other commands

portscope clean                        # Kill orphaned/zombie dev servers
portscope watch                        # Monitor port changes in real-time (with live traffic metrics)
portscope watch --ar                   # Monitor ports with Autoreload (auto-restart crashed processes)
portscope watch --fe,be                # Monitor only specific port roles (e.g. frontend + backend)
portscope chat                         # Jump directly into AI chat mode

Port Topology & Connection Mapping

getportconnections
getportconnections --port 3000

Maps inter-port connections between local listening services. It reveals dependencies by showing which other local ports a service is connected to (e.g., Next.js on :3000 → Flask backend on :5000) along with external connection counts.

Watch mode displays live metrics for every active port including Memory Usage (RAM), Process Uptime, Bind Address (127.0.0.1 vs 0.0.0.0), Process ID (PID), active connection counts, request rates (req/s), and real-time Bandwidth / Throughput (↑...B/s ↓...B/s), helping identify load issues and monitor live traffic without additional/external tools.

  • Autoreload (--autoreload / --ar): Automatically restarts crashed processes using their recorded start/dev commands if they crash.
  • Port Filtering (--fe, --be, --db, --api, --ml, --ui): Filter watch list by specific process roles (frontend, backend, database, API, machine learning, UI). Multiple roles can be comma-separated (e.g. --fe,be).
[!TIP]
Aliases ports and whoisonport also work: ports kill 3000, whoisonport 8080

MCP Server Support

PortScope can run as a Model Context Protocol (MCP) server, securely exposing its port management and system diagnostic tools to external AI agents like Claude Desktop, Cursor, and Windsurf.

# Local usage (stdio) - For Claude Desktop, Cursor, etc.
portscope mcp --transport stdio

Remote/Network usage (SSE) - Stand up a headless HTTP server

portscope mcp --transport sse --port 3000

Verify the SSE server is working

curl -N http://localhost:3000/sse

Environment Variables

You can also configure the server by adding the following to your project's .env or ~/.portscope/.env:
  • PORTSCOPEMCPPORT=3000 — Overrides the default SSE server port.

Capabilities

The MCP Server exposes not just tools, but also prompts and resources to improve AI orchestration:
  • Tools: 11 tools — listports, inspectport, killprocess, killalldevports, listprocesses, findorphaned, cleanorphaned, viewlogs, getsystemstats, restartprocess, getport_connections.
  • Prompts: Access portscope-help to provide usage examples directly to the LLM context.
  • Resources: Access portscope://status to read real-time Server Status, uptime, and memory usage.
[!NOTE]
When running in MCP mode, destructive tools (like killing processes) run in headless mode and defer confirmation to the client's built-in UI safeguards. The MCP server is blazing fast and dynamically loaded, ensuring zero performance penalty to your standard CLI commands.

AI Chat

PortScope's AI lets you manage ports with natural language — "kill whatever's on 3000", "show me what's using the most CPU", "stop all dev servers". It works right from the default interactive prompt, or via portscope chat for a dedicated AI session.

[!TIP]
System Telemetry: The AI has direct access to a getsystemstats() tool. You can ask it to diagnose machine-level performance bottlenecks, check CPU load averages, or analyze memory pressure.

Multimodal / Vision Support

You can attach images to chat messages for multimodal analysis, and the AI will analyze them alongside your prompt.

❯ What do you see in ~/screenshot.png
❯ Analyze the errors in ./terminal-output.jpeg

Supported formats: .png, .jpg, .jpeg (max 10 MB per image). Paths can be absolute, home-relative (~), or current-directory-relative (./).

Supported Providers

| Provider | Default Model | Browse Models | Env Variable | |----------|--------------|:---:|--------------| | Anthropic | claude-haiku-4-5 | curated list | ANTHROPICAPIKEY | | OpenAI | gpt-5-nano | ✔ live browse | OPENAIAPIKEY | | Google Gemini | gemini-2.5-flash | ✔ live browse | GEMINIAPIKEY | | OpenRouter | qwen/qwen3.5-flash-02-23 | ✔ live browse | OPENROUTERAPIKEY | | NVIDIA NIM | deepseek-ai/deepseek-v4-flash | ✔ live browse | NVIDIAAPIKEY | | Cerebras | llama-4-scout-17b-16e-instruct | curated list | CEREBRASAPIKEY | | Groq | llama-3.3-70b-versatile | curated list | GROQAPIKEY | | Ollama (Local) | llama3 | ✔ local list | none — runs locally |

Setup

Type /provider in the interactive prompt — pick a provider, paste your API key, and you're ready. Keys are validated and saved to ~/.portscope/.env, and your provider/model choice persists in ~/.portscope/config.json — no re-configuration needed on restart.

For Ollama, no API key is needed — PortScope auto-detects the local server at localhost:11434, or you can set your custom endpoint on your own. Just select Ollama via /provider and start chatting.

[!NOTE]
Ollama provides cost-free, local AI chat using locally running models. Tool-calling (kill, inspect via AI) is not supported — use Ollama for conversational Q&A and cloud providers for full AI orchestration.

Slash Commands

| Command | Description | |---------|-------------| | /provider | Switch AI provider and configure API key | | /revoke [name] | Revoke a saved API key (e.g., /revoke openai to bypass prompts) | | /models | Browse and select a model (live listing for OpenAI, Gemini, OpenRouter & NVIDIA NIM) | | /model <name> | Set model directly | | /status | Show current provider, model, and key status | | /usage | Display token consumption and dynamically estimated session costs | | /history | List saved conversation sessions | | /load <n> | Restore a previous conversation session | | /export [md\|html\|txt] | Export current conversation to file | | /verbose | Toggle verbose/streaming mode and detailed telemetry | | /clear | Reset conversation history | | /help | List all commands |

Configuration

Environment variables

Set in .env (project root), ~/.portscope/.env, or shell environment:

ANTHROPICAPIKEY=...
OPENAIAPIKEY=...
GEMINIAPIKEY=...
OPENROUTERAPIKEY=...
NVIDIAAPIKEY=...
CEREBRASAPIKEY=...
GROQAPIKEY=...

Provider is selected interactively via /provider — no env var needed.

Config file

Create portscope.config.json in your project root or home directory:

{
  "ai": {
    "provider": "anthropic",
    "model": "claude-haiku-4-5",
    "maxTokens": 4096,
    "maxContextTokens": 32000,
    "sanitizePatterns": []
  },
  "display": {
    "showBanner": true
  }
}

Security & Permissions

[!IMPORTANT]
Destructive operations (kill, kill all, clean) always require explicit y/N confirmation before executing, even when initiated by the AI.
  • Sudo Interception: PortScope dynamically intercepts permission errors (EPERM) when interacting with root-owned processes (e.g. Docker, system daemons). It safely prompts for sudo elevation directly in the terminal without requiring a CLI restart.
  • API Key Masking & Sanitization: All API keys are automatically masked in the UI and thoroughly sanitized from any error logs to prevent credential leakage.

How it works

Three shell calls, runs in ~0.2s:

  • lsof -iTCP -sTCP:LISTEN — finds all processes listening on TCP ports
  • ps (single batched call) — retrieves process details for all PIDs at once: command line, uptime, memory, parent PID, status
  • lsof -d cwd (single batched call) — resolves the working directory of each process to detect the project and framework
For Docker ports, a single docker ps call maps host ports to container names and images.

Framework detection reads package.json dependencies and inspects process command lines. Recognizes Next.js, Vite, Express, Angular, Remix, Astro, Django, Rails, FastAPI, and many others.


Framework Detection

PortScope automatically detects 40+ frameworks by analyzing process commands, port conventions, and project files. For more context refer below.

Supported frameworks

  • JavaScript: Next.js, Vite, React, Vue, Angular, Svelte, SvelteKit, Remix, Astro, Gatsby, Nuxt, Express, Fastify, NestJS, Hono, Koa
  • Python: Django, Flask, FastAPI
  • Other: Rails, Go, Rust, Java, Docker, PostgreSQL, Redis, MySQL, MongoDB, nginx, LocalStack, RabbitMQ, Kafka, Elasticsearch, MinIO, Webpack, esbuild, Parcel
  • MLOps / AI: vLLM, Triton Inference Server, Ollama, llama.cpp, LM Studio, Jupyter, TensorBoard, Gradio, Streamlit, MLflow

Flow

flow-image


Architecture

graph TB
    subgraph CLIEntryPoint["CLI Entry Point"]
        CLI([src/index.js<br/>Command Router])
    end

subgraph Command_Layer["Command Layer"] DIRECT[Direct Commands<br/>list · ps · inspect · watch · kill<br/>restart · pause · resume · clean<br/>logs · mcp · help] INTERACTIVE{{Interactive Mode<br/>REPL + AI Chat}} end

subgraph Scanner_Layer["Scanner Layer - System Introspection"] PORTS[Port Scanner<br/>lsof TCP listeners] TOPOLOGY[Topology Mapper<br/>port connections] PROCESS[Process Info<br/>ps batch queries] FRAMEWORK[Framework Detection<br/>package.json · Docker images] ENV[Environment Detection<br/>NODE_ENV · process flags] LOGS[Log Discovery<br/>lsof file descriptors] GUARD[System Guard<br/>protect OS processes] DEV_CMD[Dev Command Resolver<br/>package manager · flags] ROLES[Role Classification<br/>frontend · backend · db] MEMORY[Memory Stats<br/>pressure · load] end

subgraph Platform_Abstraction["Platform Abstraction"] PLATFORM([Platform Layer<br/>darwin · linux · win32]) SYSCALLS[System Calls<br/>lsof · ps · docker · git] SUDO[Sudo Interceptor<br/>dynamic privilege escalation] end

subgraph AI_Orchestration["AI Orchestration"] INTENT[Intent Classifier<br/>anti-injection · routing] CONVERSATION{{Conversation Manager<br/>message history · tool routing}} COMPACTION[Context Compaction<br/>sliding window] CLIENT[Multi-Provider Client<br/>Anthropic · OpenAI · Gemini<br/>OpenRouter · NVIDIA · Cerebras<br/>Groq · Ollama] EXECUTOR[Tool Executor<br/>permission checks · execution] TOOLS[Tool Definitions<br/>11+ specialized actions] USAGE[Usage Tracking<br/>tokens · cost estimation] HISTORY[Conversation History<br/>save · load · export] VISION[Vision Support<br/>image/multimodal processing] PROMPT[System Context<br/>dynamic prompts] SLASH[Slash Commands<br/>chat macros] end

subgraph UI_Rendering["UI Rendering"] TABLES[Table Renderer<br/>cli-table3 · rounded borders] MARKDOWN[Markdown Renderer<br/>bold · code · tables] SPINNER[Animated Spinner<br/>3×3 grid · action verbs] GHOST[Autocomplete<br/>fish-style suggestions] end

subgraph Configuration["Configuration"] CONFIG[Config Loader<br/>portscope.config.json<br/>~/.portscope/] SCHEMA[Provider Schema<br/>defaults · validation] SANITIZER[Data Sanitizer<br/>secrets redaction] PROVIDER[Provider Flow<br/>key management] MODELS[Model Discovery<br/>live fetching · caching] PRICING[Pricing Database<br/>llm-pricing.json] LEDGER[Kill History Ledger<br/>restart tracking] end

CLI --> DIRECT CLI --> INTERACTIVE DIRECT --> PORTS DIRECT --> PROCESS DIRECT --> LOGS INTERACTIVE --> INTENT INTENT --> CONVERSATION INTERACTIVE --> DIRECT CONVERSATION --> SLASH CONVERSATION --> VISION CONVERSATION --> COMPACTION COMPACTION --> PROMPT PROMPT --> CLIENT CONVERSATION --> EXECUTOR CLIENT --> TOOLS EXECUTOR --> GUARD GUARD --> PORTS GUARD --> PROCESS EXECUTOR --> LOGS EXECUTOR --> TOPOLOGY PORTS --> FRAMEWORK PORTS --> ENV PORTS --> PLATFORM TOPOLOGY --> PLATFORM PROCESS --> PLATFORM LOGS --> PLATFORM PLATFORM --> SYSCALLS SYSCALLS -.-> SUDO FRAMEWORK --> DEV_CMD FRAMEWORK --> ROLES PROCESS --> MEMORY EXECUTOR -.-> SANITIZER SANITIZER -.-> CONVERSATION DIRECT --> TABLES INTERACTIVE --> MARKDOWN INTERACTIVE --> GHOST CONVERSATION --> SPINNER CONVERSATION --> USAGE CONVERSATION --> HISTORY CLI --> CONFIG CONVERSATION --> CONFIG CONFIG --> SCHEMA CONFIG --> PROVIDER PROVIDER --> MODELS MODELS --> PRICING USAGE --> PRICING DIRECT --> LEDGER

%% Rounded nodes classDef rounded rx:12,ry:12; class CLI,DIRECT,INTERACTIVE,PORTS,TOPOLOGY,PROCESS,FRAMEWORK,ENV,LOGS,GUARD,DEV_CMD,ROLES,MEMORY,PLATFORM,SYSCALLS,SUDO,INTENT,CONVERSATION,COMPACTION,CLIENT,EXECUTOR,TOOLS,USAGE,HISTORY,VISION,PROMPT,SLASH,TABLES,MARKDOWN,SPINNER,GHOST,CONFIG,SCHEMA,SANITIZER,PROVIDER,MODELS,PRICING,LEDGER rounded;

%% Subgraph styling (transparent with dotted edges) style CLIEntryPoint fill:transparent,stroke:#3b82f6,stroke-width:2px,stroke-dasharray:5 5 style Command_Layer fill:transparent,stroke:#8b5cf6,stroke-width:2px,stroke-dasharray:5 5 style Scanner_Layer fill:transparent,stroke:#14b8a6,stroke-width:2px,stroke-dasharray:5 5 style Platform_Abstraction fill:transparent,stroke:#10b981,stroke-width:2px,stroke-dasharray:5 5 style AI_Orchestration fill:transparent,stroke:#ec4899,stroke-width:2px,stroke-dasharray:5 5 style UI_Rendering fill:transparent,stroke:#f59e0b,stroke-width:2px,stroke-dasharray:5 5 style Configuration fill:transparent,stroke:#64748b,stroke-width:2px,stroke-dasharray:5 5

%% Highlighted nodes style CLI fill:#4a9eff,stroke:#2563eb,color:#fff style INTERACTIVE fill:#8b5cf6,stroke:#7c3aed,color:#fff style CONVERSATION fill:#ec4899,stroke:#db2777,color:#fff style PLATFORM fill:#10b981,stroke:#059669,color:#fff style SYSCALLS fill:#f59e0b,stroke:#d97706,color:#fff

[!NOTE]
PortScope provides native OS-level observability and is fully validated across  macOS, Linux, and Windows environments.

Development

git clone https://github.com/neilblaze/portscope.git
cd portscope
pnpm install
pnpm test                  # Run tests
pnpm start                 # Run locally (interactive mode)
pnpm run dev               # Same as pnpm start
node src/index.js --help   # See all commands

Contributing 🤗

Got an idea to make PortScope better? Whether you want to add support for a new framework, optimize the port scanner, or just fix a typo, we'd love to see your pull requests!

[!IMPORTANT]
If you are using LLMs or AI assistants to help write code, please review our AI Usage Policy to ensure your PR complies with our security and licensing standards.

License 📜

Apache-2.0

🔗 More in this category

© 2026 GitRepoTrend · Neilblaze/portscope · Updated daily from GitHub