Node.js projects accumulate technical debt faster than most languages. The event loop model, ORM abstractions, and AI-generated code create unique debt patterns that generic tools miss. Here's a step-by-step guide to measuring and reducing it.
Why Node.js projects accumulate debt faster
Event loop complexity. The difference between sync and async matters more in Node.js than any other language. readFileSync in a Go handler blocks one goroutine. In Node.js, it blocks every concurrent request.
ORM abstraction hides database impact. prisma.user.findMany() looks identical whether your table has 100 rows or 50 million. The ORM hides the performance cliff.
AI code generation. Cursor, Copilot, and Claude generate syntactically correct code that ignores your architecture rules. They don't know your layers, your table sizes, or that a function is called from a request handler.
Fast release cycles. Node.js teams typically ship faster than Java or C# teams. More deploys means more opportunities to introduce shortcuts.
Step 1: Scan your codebase
npx technical-debt-radar init # auto-detect stack, generate config
npx technical-debt-radar scan . # full analysisThe scan takes under 10 seconds and produces a report like this:
TECHNICAL DEBT RADAR — Local Scan
Files scanned: 47
Total violations: 14
Blocking: 3
Warnings: 11
Debt score: 42
Category Breakdown
Architecture : 2
Runtime Risk : 3
Performance : 4
Reliability : 3
Maintainability : 2Step 2: Understand the debt score
The debt score is a weighted sum of all violations:
- Architecture violation: +5 points
- Circular dependency: +10 points
- Runtime risk (critical): +8 points
- Runtime risk (warning): +3 points
- N+1 query / unbounded fetch: +8 points
- Missing timeout / empty catch: +5 points
- Complexity above threshold: +1 per point
- Violation fixed (credit): -5 points
A score of 0 means zero detected debt. A score above 50 means the PR likely introduces risk. The threshold is configurable in radar.yml.
Step 3: Prioritize by impact
Fix today (critical): Runtime risks in request handlers, N+1 queries on large tables, missing error handling on payment flows. These cause production incidents.
Fix this sprint (high): Architecture violations, circular dependencies. These slow down development and make refactoring impossible.
Fix this quarter (medium): Missing tests, dead code. These increase bug surface area and slow onboarding.
Backlog (low): Cyclomatic complexity, minor duplication. Important for long-term health but rarely urgent.
Step 4: Set up automated PR gates
The most impactful change: stop adding NEW debt while you pay down old debt.
# .github/workflows/radar.yml
name: Radar
on: [pull_request]
jobs:
scan:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: khalid-Elattar/technical_dept_radar@v1
with:
radar-token: ${{ secrets.RADAR_TOKEN }}Free plan: warn mode — shows violations in PR comments but doesn't block merge.
Solo plan ($15/mo): enforce mode — blocks merge when critical violations are found.
Step 5: Track trends over time
A single scan shows current state. Trends show direction. The dashboard tracks:
- Debt score per PR and per week
- Violation counts by category over time
- Hotspot files (high complexity + frequent changes)
- Fix rate (how many violations are resolved per sprint)
If debt score trends upward three sprints in a row, it's time to dedicate a sprint to paying it down.
Try it on your project
npx technical-debt-radar scan .First scan free. No account needed. Results in under 10 seconds.