DeadCode -- Dead Code & Unused Export Detector
DeadCode scans source files for dead code, unused exports, orphan files, unreachable code paths, and code cruft across JavaScript/TypeScript, Python, Go, and CSS/SCSS. It uses regex-based pattern matching against 60+ dead code patterns, lefthook for git hook integration, and produces markdown reports with actionable cleanup recommendations.
Commands
Free Tier (No license required)
deadcode scan [file|directory]
One-shot dead code scan of files or directories.
How to execute:
bash "<SKILL_DIR>/scripts/deadcode.sh" scan [target]
What it does:
- Accepts a file path or directory (defaults to current directory)
- Auto-detects language types (JavaScript/TypeScript, Python, Go, CSS/SCSS)
- Finds all source files matching known patterns
- Runs 60+ dead code patterns against each file
- Runs file-level checks for orphan detection and structural issues
- Calculates a dead code score (0-100) per file and overall
- Outputs findings with: file, line number, check ID, severity, description, recommendation
- Exit code 0 if score >= 70, exit code 1 if too much dead code found
- Free tier limited to 5 source files per scan
Example usage scenarios:
- "Scan my code for dead code" -> runs
deadcode scan .
- "Check this file for unused exports" -> runs
deadcode scan src/utils.ts
- "Find dead code in my Python project" -> runs
deadcode scan src/
- "Are there orphan files in my repo?" -> runs
deadcode orphans .
Pro Tier ($19/user/month -- requires DEADCODE_LICENSE_KEY)
deadcode hooks install
Install git pre-commit hooks that scan staged source files before every commit.
How to execute:
bash "<SKILL_DIR>/scripts/deadcode.sh" hooks install
What it does:
- Validates Pro+ license
- Copies lefthook config to project root
- Installs lefthook pre-commit hook
- On every commit: scans all staged source files for dead code, blocks commit if critical/high findings, shows cleanup advice
deadcode hooks uninstall
Remove DeadCode git hooks.
bash "<SKILL_DIR>/scripts/deadcode.sh" hooks uninstall
deadcode report [directory]
Generate a markdown dead code report with findings, severity breakdown, and cleanup steps.
bash "<SKILL_DIR>/scripts/deadcode.sh" report [directory]
What it does:
- Validates Pro+ license
- Runs full scan of the directory
- Generates a formatted markdown report from template
- Includes per-file breakdowns, dead code scores, cleanup priority
- Output suitable for code reviews and tech debt tracking
deadcode orphans [directory]
Find orphan files that are never imported or referenced by any other file.
bash "<SKILL_DIR>/scripts/deadcode.sh" orphans [directory]
What it does:
- Validates Pro+ license
- Builds an import/reference graph across all source files
- Identifies files that are never imported/required/referenced
- Excludes entry points (index files, main files, test files, config files)
- Reports orphan files with confidence levels
Team Tier ($39/user/month -- requires DEADCODE_LICENSE_KEY with team tier)
deadcode ignore [pattern]
Manage ignore rules for dead code detection.
bash "<SKILL_DIR>/scripts/deadcode.sh" ignore [pattern]
What it does:
- Validates Team+ license
- Adds/removes patterns to the ignore list in ~/.openclaw/openclaw.json
- Patterns can be file globs or check IDs
- Supports per-project and global ignore rules
deadcode sarif [directory]
Generate SARIF output for CI/CD integration.
bash "<SKILL_DIR>/scripts/deadcode.sh" sarif [directory]
What it does:
- Validates Team+ license
- Runs full scan of the directory
- Outputs findings in SARIF v2.1.0 format
- Compatible with GitHub Code Scanning, Azure DevOps, and other CI systems
- Includes rule definitions, locations, and severity mappings
deadcode status
Show license and configuration information.
bash "<SKILL_DIR>/scripts/deadcode.sh" status
Detected Dead Code Patterns
DeadCode detects 60+ dead code patterns across 5 language categories:
| Category | Examples | Severity |
|----------|----------|----------|
| JavaScript/TypeScript | Unused exports, console.log left in code, commented-out blocks, unreachable code after return/throw, empty function bodies, unused variables, dead switch cases, deprecated markers, empty catch blocks | Critical/High |
| Python | Functions defined but never called, unused imports, pass-only bodies, commented-out code, dead code after return/raise, __all__ mismatches, empty except blocks | Critical/High |
| Go | Unused imports, unexported dead functions, dead code after return/panic, empty function bodies, commented-out code, empty init() functions | High/Medium |
| CSS/SCSS | Unused CSS classes/IDs, empty rule blocks, duplicate selectors, commented-out styles, !important overuse, unused CSS variables, empty media queries, vendor prefixes | Medium/Low |
| General | Orphan files, large comment blocks, TODO/FIXME density, debug/test code in production, placeholder text, feature flag remnants | High/Medium |
Configuration
Users can configure DeadCode in ~/.openclaw/openclaw.json:
{
"skills": {
"entries": {
"deadcode": {
"enabled": true,
"apiKey": "YOUR_LICENSE_KEY_HERE",
"config": {
"severityThreshold": "high",
"ignorePatterns": ["**/test/**", "**/fixtures/**", "**/*.spec.*"],
"ignoreChecks": [],
"reportFormat": "markdown"
}
}
}
}
}
Important Notes
- Free tier works immediately with no configuration
- All scanning happens locally -- no code is sent to external servers
- License validation is offline -- no phone-home or network calls
- Pattern matching only -- no AST parsing, no external dependencies
- Supports scanning multiple language types in a single pass
- Git hooks use lefthook which must be installed (see install metadata above)
- Exit codes: 0 = clean (score >= 70), 1 = too much dead code (for CI/CD integration)
Error Handling
- If lefthook is not installed and user tries
hooks install, prompt to install it
- If license key is invalid or expired, show clear message with link to https://deadcode.pages.dev/renew
- If a file is binary, skip it automatically with no warning
- If no source files found in target, report clean scan with info message
- If language type cannot be determined, skip the file gracefully
When to Use DeadCode
The user might say things like:
- "Scan my code for dead code"
- "Find unused exports in my project"
- "Are there orphan files in my repo?"
- "Check for unreachable code"
- "Find commented-out code blocks"
- "Detect unused imports in my Python code"
- "Generate a dead code report"
- "Set up pre-commit hooks for dead code detection"
- "Check for console.log statements left in production"
- "Find empty function bodies"
- "Are there any unused CSS classes?"
- "Scan for TODO/FIXME comments"
- "Find placeholder code"
- "Check for debug code left in production"
- "Generate SARIF output for my CI pipeline"