微信调试,各种WebView样式调试、手机浏览器的页面真机调试。便捷的远程调试手机页面、抓包工具,支持:HTTP/HTTPS,无需USB连接设备。
7.6k
Stars
830
Forks
106
Open issues
4
Contributors
AI Analysis
spy-debugger is a unified remote debugging and packet-capture tool for mobile web pages and WebViews (WeChat, hybrid apps, etc.), requiring only HTTP proxy configuration without USB connection. It is specialized for developers debugging mobile web applications across iOS and Android, integrating weinre for DOM inspection with HTTPS interception capabilities; it is not a general-purpose debugger for desktop development or native app debugging.
Inferred from signals mentioned in the README (tests, CI, type safety) — not a review of the actual code.
AI's overall editorial judgment — not an average of the bars above, can weigh other factors too.
Wi-Fi-based mobile WebView debugger for WeChat and hybrid apps without USB
spy-debugger is a Node.js CLI tool that combines a MITM proxy (AnyProxy/node-mitmproxy) with weinre to enable remote debugging and traffic inspection of mobile browsers and WebViews — including WeChat's embedded browser — without requiring USB. It auto-injects the weinre debug script into intercepted HTML pages, handles HTTPS via a self-signed CA, and presents both a DevTools-style inspector and a packet-capture UI. Its primary audience is Chinese front-end developers building WeChat H5 or hybrid mobile apps who need on-device debugging without Chrome's USB remote debugging workflow.
Created in January 2016 during peak WeChat H5 development activity in China, when weinre was the dominant non-USB mobile debugger and AnyProxy was a widely used Alibaba proxy library. It packaged both into a single ergonomic CLI wrapper.
Growth was driven by the explosive demand for WeChat H5 debugging in the 2016–2019 period, when weinre alone required manual script injection. Stars accumulated steadily from Chinese developer communities. Growth has slowed sharply — only 2 stars in the past 7 days as of mid-2026 — reflecting both market saturation and the gradual shift toward USB-based Chrome DevTools remote debugging and newer alternatives.
npm total download badge is present in the README, suggesting meaningful cumulative installs, but exact current download figures are not available in the provided metadata. 7,620 GitHub stars and 830 forks from the Chinese developer community suggest substantial historical adoption. No enterprise case studies or production deployment references are documented. Adoption appears concentrated in individual developer workflows rather than CI/CD pipelines.
Appears to be a thin orchestration layer around three bundled dependencies: weinre (DOM/JS inspector), node-mitmproxy (HTTPS interception via generated CA), and AnyProxy (HTTP/S proxy with capture UI). Likely uses a single entry-point CLI that spins up all three services, injects the weinre script tag via proxy middleware into intercepted HTML responses. Architecture appears monolithic but intentionally simple.
not documented in README
Last push was September 2025, approximately 10 months before the current date. The project is not actively evolving feature-wise but receives occasional maintenance commits. Travis CI badge is present but travis-ci.org has been deprecated, suggesting the CI pipeline may no longer be functional. Overall maintenance posture appears minimal but not abandoned.
ADOPT IF: you need a no-USB, zero-code-modification way to inspect WeChat H5 or hybrid WebView pages on both iOS and Android, and a simple npm install workflow is acceptable for your team. AVOID IF: you need reliable CI integration, actively maintained dependencies, or are debugging on iOS 15+ where HTTPS browser detection is broken by design. MONITOR IF: you are evaluating page-spy-web or whistle as potential replacements — spy-debugger's core use case remains valid but its underlying weinre dependency is long unmaintained.
Independent dimensions
Mainstream potential
2/10
Technical importance
6/10
Adoption evidence
5/10
- weinre, a core dependency, has been effectively unmaintained for years and does not support modern JavaScript features, async/await stack traces, or ES modules properly.
- iOS 15+ broke the browser-vs-native request detection logic by design (acknowledged in README), reducing HTTPS interception reliability on modern iPhones.
- Travis CI badge references a deprecated service (travis-ci.org), suggesting automated testing is likely no longer running and regressions may go undetected.
- AnyProxy (Alibaba) has also seen reduced maintenance activity, creating a layered dependency risk.
- The project appears to be in maintenance-only mode with no significant feature development, meaning it may fall behind as WeChat and mobile OS versions evolve.
Likely to remain usable for legacy WeChat H5 workflows but will gradually lose relevance as page-spy-web and Chrome DevTools wireless debugging improve. Unlikely to see major new development.
Newsletter
Get analyses like this every Monday
Free weekly digest of the most interesting open-source discoveries.
Languages
Information
- Language
- JavaScript
- License
- MIT
- Last updated
- 10mo ago
- Created
- 128mo ago
- Analyzed with
- anthropic/claude-haiku-4-5
Stars over time
Contributors over time
Top 100 contributors only — repos with more will plateau at 100.
Open issues
Top contributors
Recent releases
Similar repos
HuolalaTech/page-spy-web
PageSpy is a remote debugging platform that enables developers to inspect and...
JZ-Darkal/AndroidHttpCapture
AndroidHttpCapture is a mobile network diagnostic and packet capture tool for...
| Repository | Stars | Week Δ | Language | Score | Updated |
|---|---|---|---|---|---|
|
|
7.6k | +1 | JavaScript | 7/10 | 10mo ago |
|
|
5.6k | — | TypeScript | 8/10 | 2mo ago |
|
|
2.3k | — | TypeScript | 7/10 | 2d ago |
|
|
4.6k | — | Java | 7/10 | 2mo ago |
|
|
17.5k | — | TypeScript | 8/10 | 4mo ago |
|
|
3.1k | — | TypeScript | 8/10 | 6d ago |
whistle is a more actively maintained, full-featured HTTP/HTTPS/WebSocket proxy and debugging tool with a richer rule engine. It overlaps heavily on the packet capture side and is generally considered the more capable choice for complex proxy rules. spy-debugger's advantage is its simpler onboarding and bundled weinre inspector.
vConsole is an in-page debug panel injected directly into the app — no proxy setup needed. It's simpler to use for console/network inspection but requires modifying app code. spy-debugger is more useful when you cannot modify the app source and need full DOM inspection.
A more modern, actively developed alternative that supports real-time remote debugging with a richer UI. Appears to target the same WeChat/WebView audience with better tooling quality and ongoing development, making it a likely successor for new projects.
Native Chrome DevTools via USB offers far superior debugging fidelity and performance for Android Chrome/WebView. spy-debugger's main advantage is iOS support and Wi-Fi-only scenarios where USB access is inconvenient or unavailable.
Commercial or GUI-based proxy tools with more robust HTTPS interception and request editing. spy-debugger integrates packet capture with DOM inspection in a single npm install, but lacks the configurability and reliability of dedicated proxy tools.