● Open Source · v0.1.0 on npm

Stop Micro-Frontend
Runtime Crashes
Before They Happen

Sentinel is an open-source CLI tool for Webpack Module Federation. It catches singleton dependency conflicts in CI/CD pipelines — before they silently break production.

Install from npm → View on GitHub Technical Spec

$ npx mfe-sentinel init

mfe-sentinel scan + check — real CLI output
# Step 1: Parse MFE config and generate a typed manifest $ npx mfe-sentinel scan --mf-config ./module-federation.config.js --output manifest.sentinel.json Reading package.json... checkout@2.4.1 Parsing module-federation.config... checkout Building manifest... ✔ [real]   # Step 2: Validate against another MFE's manifest $ npx mfe-sentinel check --manifest manifest.sentinel.json --remote shell-manifest.json   ┌─ sentinel check ───────────────────────────────── local → checkout@2.4.1 remote → shell@1.0.0 ✖ CRITICAL (1) ✖ react requires ^18.2.0 · provided 17.0.2 [CRITICAL · Major Version Mismatch] "react": local requires "^18.2.0", remote provides "17.0.2" [singleton — runtime conflict guaranteed] ⚠ WARNINGS (1) ⚠ react-router-dom requires ^6.4.0 · provided 6.2.1 ✖ FAILED (pipeline blocked — fix Major conflicts before deploying) └──────────────────────────────────────────────────   # exit code 1 → CI pipeline stops. React 17↔18 singleton conflict detected.

Module Federation is powerful.
It's also an operational minefield.

Micro-Frontend teams ship independently — and that independence breeds invisible dependency conflicts that only explode at runtime.

Silent Singleton Crashes

Host loads React 17. Remote expects React 18. Both are marked singleton: true. The app silently breaks — no build error, no type error.

Cross-Team Blind Spots

Team A upgrades a shared library. Teams B, C, D find out when their micro-frontends start throwing runtime errors in staging — or production.

No CI Guardrails

Standard linters and type checkers don't understand Module Federation contracts. Broken deployments pass CI and reach end users.

No Rollback Mechanism

When a remote MFE breaks the host, engineers must manually redeploy — a process that takes hours and impacts SLAs in Enterprise environments.

Today's CLI — and the full vision

Install with npx mfe-sentinel — scan, check, and init are available now. Observability and Governance layers are on the roadmap.

Available
🔍

Scan

CLI parses module-federation.config.js and package.json and generates a typed SentinelManifest — a JSON snapshot of your MFE contract.

Available
⚖️

Check

SemVer-aware engine compares two manifests. Major singleton conflict → exit code 1, blocking the pipeline. Minor mismatches are logged as warnings.

Phase 2 · Roadmap
📡

Observe

A lightweight browser agent will intercept runtime federation errors and stream anonymised telemetry to the Sentinel backend via sendBeacon().

Phase 3 · Roadmap
🔄

Rollback

Dynamic Manifest Resolution via CDN edge — Sentinel will swap the remoteEntry.js pointer to the last stable build hash without a host rebuild.

What's built — and what's coming

Green tags are available today in the open-source CLI. Yellow and purple tags mark the roadmap.

✓ Available

SemVer Contract Validation

Strict Major / Minor / Patch comparison of singleton shared dependencies. Detects breaking changes before deployment.

✓ Available

Manifest Generation

Parses real module-federation.config.js files to produce structured, typed JSON manifests. Supports object and array shared formats.

✓ Available

CI/CD Guardrails

Drop-in step for GitHub Actions, GitLab CI, or any pipeline. Returns exit code 1 on critical conflicts to block broken deployments automatically.

Phase 2 · Roadmap

Browser Observability Agent

A <5 KB runtime script to capture ScriptExternalLoadError, measure remote chunk load times, and batch telemetry via sendBeacon().

Phase 2 · Roadmap

Dependency Graph Dashboard

Force-directed graph (React Flow / D3) to visualise the full MFE cluster. Planned colour coding: red nodes = conflicts, yellow = outdated minor versions.

Phase 2 · Roadmap

Vite & Single-SPA Support

Extending the manifest parser to cover Vite Module Federation and Single-SPA configurations, not just Webpack.

Phase 3 · Roadmap

One-Click Remote Rollback

Dynamic Manifest Resolution via CDN — Sentinel will swap the remoteEntry.js pointer in milliseconds without requiring a host rebuild or new deployment.

Phase 3 · Roadmap

Graph Database (Neo4j)

Transitive dependency conflicts resolved via shortest-path graph queries across the full MFE cluster. Designed to scale to thousands of deployments per day.

Phase 4 · R&D

AI-Powered AST Analysis

LLM-driven semantic diffing of AST trees to predict runtime collisions that standard SemVer checks cannot detect.

Local CLI today, distributed platform tomorrow

The current MVP runs entirely as a local CLI. The backend and governance layer are designed and specced — development starts in Phase 2.

● v0.1 — Implemented ◌ Phase 2–3 — Planned
┌──────────────── CI/CD Pipeline (v0.1 — available now) ────────────────────
│                                                                          
│   MFE "checkout" build                                                  
│         │                                                                
│         ▼                                                                
│   mfe-sentinel scan  ──►  manifest.sentinel.json  (local file)               
│         │                                                                
│         ▼                                                                
│   mfe-sentinel check ──►  PASS (deploy) │ WARN (log) │ FAIL → exit 1         
│                    ▲                                                     
│                    │  reads local remote-manifest.json                  
└────────────────────┼──────────────────────────────────────────────────────
                     │
┌────────────────────┴──────────────────────────────────────────────────────
│  Sentinel Backend  ◌ Designed · Development starts Phase 2               
│                                                                          
│   API Gateway  ◄── sentinel check (cloud mode, future)                   
│        │                                                                 
│        ├──► Kafka / SQS      async CI validation queue                   
│        ├──► Neo4j Graph DB   MFE dependency graph, shortest-path checks  
│        └──► ClickHouse       runtime telemetry, time-series ingestion    
│                                                                          
│   Dashboard  ◄──── React Flow / D3 visualisation of MFE cluster          
│   CDN Edge   ◄──── Dynamic Manifest Resolution + one-click rollback      
└───────────────────────────────────────────────────────────────────────────

Full schema — Graph DB node/edge model, validation algorithm, and scalability design — documented in the Technical Specification →

Open-Core model

The CLI is free and open source forever. Cloud and Enterprise tiers are in development — join the waitlist to get early access and shape the roadmap.

Open Source
Free
Self-hosted CLI. Published on npm as mfe-sentinel.
  • SemVer contract validation (local)
  • Manifest generation — Webpack MF
  • CI/CD exit code guardrails
  • TypeScript-strict · Node.js ≥ 20
  • Cloud validation across projects
  • Observability dashboard
  • Remote rollback
Install via npm → View on GitHub →
Enterprise
Phase 3 · Roadmap
Custom
For banks, telecoms and large product companies with strict compliance requirements.
  • Everything in Pro
  • One-click Remote Rollback
  • On-Premise — Kubernetes Helm charts
  • SSO / SAML
  • SLA contracts
  • AI-Powered AST analysis (R&D)
Contact Us →

Start guarding your Micro-Frontends today.

The CLI is on npm. Run npx mfe-sentinel init in your project — then tell us what you need next.

Install from npm → View on GitHub Talk to the Founder