Hey all, sharing what I’ve been working on. NutriTrace is a self-hosted nutrition and wellness tracker that runs entirely on your own server in a single Docker container.
I built it because every commercial nutrition app has the same shape. You hand them years of food data, body measurements, and biometrics, and your data is held hostage when they pivot or paywall. I wanted to track macros and pull in my Fitbit data without participating in that.
Daily food diary with multi-ingredient meals, recipes, body stats, water tracking, day-level notes. Personal food database, barcode scanner, imports from Open Food Facts and USDA, plus optional Mealie integration. Statistics with trend charts, full backup, exports as CSV / JSON / full ZIP.
Optional wellness device sync from Fitbit, Withings, Garmin, and Android Health Connect. Sleep / readiness / stress scores computed from your data.
Optional AI assistant where you bring your own Claude / OpenAI / Gemini key. It queries your real data via tool use so it can answer things like “what was my average protein this month” without making numbers up. There’s a voice food logger too. Both fully optional, off by default.
Tech: Svelte 4 + Express + better-sqlite3, multi-stage Dockerfile, AGPL-3.0. Native Android app is in active development; PWA installs to home screen on any modern browser today.
Repo and docker-compose example: https://github.com/TraceApps/nutritrace
Happy to answer questions.
As this is a new project, have you considered hosting your code somewhere other than GitHub? Codeberg and GitLab are similarly user-friendly platforms without the many downsides of supporting Microsoft.
At least a mirror. GitHub is authwalled even for GET requests more and more these days
Thanks all, really appreciate the kind words. Feedback is welcome on anything: bug reports, missing features, things that feel rough, or just “this works for my setup.” A few features are flagged Experimental right now and I’d like to harden them enough to drop the badge.
Native Android app is in active development. There’s also a sister project in the works called LiftTrace under the same TraceApps umbrella, same self-hosted Docker setup but for workout tracking (sets, reps, programs, PRs). Not public yet but close.
Vibe coded, innit?
Yeah, the first commit is 47k SLoC, and Claude is mentioned as a “co-author”.
Yes, vibe coded and proud of it. This is a labor of love that I genuinely don’t think I could have completed without Claude Code. The first commit is large because I was working out of a private dev repo and synced everything to the public repo just before the 1.0 RC release. Hope you give it a chance and that it suits your needs. Thanks!
On multi user: any thoughts on working with oidc/ldap or the like? I use authentik at home for many other services and it would be great to keep the single login.
List of different types of login types: https://integrations.goauthentik.io/
Yes indeed! On my future to do!
I have exports of my nutrition and weight info from other apps as csv files, and I’d like to import that data if I can. It looks like Nutritrace can export to csv but not import that. There is the option to import from a json backup though. If I can massage my data into that json format, does it seem reasonable to use that as a way to import my historical data?
If the answer isn’t “omg don’t do that”, then I have a couple of questions about the json:
- Does each item in the diary array require a matching foodList/meals/recipes entry? Or could I just generate items in the diary array?
- How much do I need to worry about IDs? The “import JSON” option says that it merges with existing data; how would it handle ID conflicts (which I assume could happen normally when exporting and importing anyway)?
- Are there any gotchas you can think of that I should watch out for?
The JSON-massage route may work. Diary items are self-contained snapshots, IDs in your file are ignored on import, and the only real catch is that re-importing a date overwrites the existing entry. Happy to drop the field-by-field shape if you want to go that route.
That said, native CSV importers for the popular apps (MFP, LoseIt, Cronometer, etc) are now on the near-term roadmap (thanks to your suggestion) as the proper path for this. If you can hold off a bit (and use one of the above), that’ll be much easier.
If you’re going to work on CSV import anyway soon, then I’ll just wait. Thanks!
Import feature has been added to app as experimental in latest build (1.0.0-rc9). Please test and let me know how it works for you.
I gave this a shot, but when I press the “preview” button I just get a little popup that says “Invalid CSRF token”.
I gave this a shot, but when I press the “preview” button I just get a little popup that says “Invalid CSRF token”.
Hmm… i think i see the issue. The preview / commit upload was missing the CSRF token, so the server was rejecting it before it even read the file. Just pushed a fix. Once you pull it down, hard-refresh the page (Ctrl+Shift+R / Cmd+Shift+R) to grab the new bundle and try again.
Ooh, I’ll definitely give this a try.
This is perfect, thanks for sharing.
This looks very interesting. I’ll have to load up the container and give it a try at some point in the future. Big fan of the mealie integration since I use that for all my recipes.
How well would this work internationally? More a question on the resources but does open food facts log international barcodes? I knowour stuff is way different to the same product stocked in the US.
Barcodes work internationally. i can confirm because i have used in both europe (italy) and africa (south africa). Only difference between nutrition facts i see is that the US uses Sodium and i want to say that at least Europe uses Salt. I have a built in conversion where when one is used the other is automatically calculated.
Brilliant, I could have worded that better. I assume a mars bar in europe and a mars bar in the US has different barcodes because they are made differently and I wasnt sure if the OpenFoodFacts was a US library but it appears to log barcodes and info globally.
Great idea, love it tackling the subscription creep of trackers
This is wonderful!
Going to set it up tomorrow and give it a go!
Is the docker image public? I’m getting an “unauthorized” error when attempting to pull it. I’m not getting that error for other ghcr.io images. But I’m not docker expert, so I may be doing something wrong.
Is the docker image public? I’m getting an “unauthorized” error when attempting to pull it. I’m not getting that error for other ghcr.io images. But I’m not docker expert, so I may be doing something wrong.
Should be fixed now, package was set to private by default on first push. Just flipped it. docker pull ghcr.io/traceapps/nutritrace:latest works without auth now. Thanks for flagging it.
Looks good, so I’ve got it up and running now. Thanks!
What all did you do to get it working? I’m stuck with this issue.
All I had to do was run the pull command again.
I’m seeing “Could not reach server — retry” on the diary page and when going to enter foods. The diagnostics log has
[14:25:38.821] [ERROR] [diary] loadEntry error: _fetch@http://my.server:3000/assets/index-Dl7TTIk7.js:175:24686 [14:25:41.686] [WARN] [settings] direct push failed for startPage: Server responded 401 [14:25:41.689] [WARN] [settings] direct push failed for weightUnit: Server responded 401 [14:25:41.695] [WARN] [settings] direct push failed for heightUnit: Server responded 401 [14:25:41.699] [WARN] [settings] direct push failed for statsGoalLine: Server responded 401 [14:25:41.701] [WARN] [settings] direct push failed for lengthUnit: Server responded 401 [14:25:41.702] [WARN] [settings] direct push failed for distUnit: Server responded 401 [14:25:41.704] [WARN] [settings] direct push failed for statsYZero: Server responded 401 [14:25:41.705] [WARN] [settings] direct push failed for tempUnit: Server responded 401 [14:25:41.705] [WARN] [settings] direct push failed for usdaEnabled: Server responded 401 [14:25:41.706] [WARN] [settings] direct push failed for statsAvgLine: Server responded 401 [14:25:41.708] [WARN] [settings] direct push failed for offSearchCountry: Server responded 401 [14:25:41.708] [WARN] [settings] direct push failed for offUploadCountry: Server responded 401 [14:25:41.709] [WARN] [settings] direct push failed for offSearchLanguage: Server responded 401 [14:25:41.710] [WARN] [settings] direct push failed for statsTrendLine: Server responded 401 [14:25:41.710] [WARN] [settings] direct push failed for statsChartType: Server responded 401
Is there a place where we could help with translation ?
I know a few people that would want an app like that but English is not their primary language and won’t bother checking it out at all without some kind of translation.
Is there a place where we could help with translation ?
I know a few people that would want an app like that but English is not their primary language and won’t bother checking it out at all without some kind of translation.
Great question, and not yet. NutriTrace is English-only right now, and the UI strings are hardcoded throughout the Svelte components. To accept translations I’d first need to wire up an i18n layer (svelte-i18n is the obvious pick) and extract strings to per-locale JSON files. Then translation contributions become straightforward via PRs or something like Weblate/Crowdin. I will add this to my roadmap. Any languages in particular we should prioritize?
Thanks for the offers to help with translations. Wanted to share the plan.
I’m wiring up the translation infrastructure now: svelte-i18n with one JSON file per locale in the repo. The workflow once it’s ready is straightforward. There’ll be a single English source file at src/i18n/en.json, contributors copy it to their locale (fr.json, nl.json, de.json, etc.), translate the values, and open a pull request. Keys stay untouched, only values change.
Nothing to do right now. I’ll open a GitHub tracking issue once the source file is stable enough to translate against. A short contributor guide will land with it covering workflow and conventions.
One thing worth flagging early: for nutrition labels specifically, please plan to use the regulatory terms that appear on food packaging in your country rather than the literal English equivalents. So Glucides / Lipides / Protéines for French, Koolhydraten / Vetten / Eiwitten for Dutch, Eiweiß rather than Protein for German, and so on.
More soon.
Thanks for the offers to help with translations. Wanted to share the plan.
I’m wiring up the translation infrastructure now: svelte-i18n with one JSON file per locale in the repo. The workflow once it’s ready is straightforward. There’ll be a single English source file at src/i18n/en.json, contributors copy it to their locale (fr.json, nl.json, de.json, etc.), translate the values, and open a pull request. Keys stay untouched, only values change.
Nothing to do right now. I’ll open a GitHub tracking issue once the source file is stable enough to translate against. A short contributor guide will land with it covering workflow and conventions.
One thing worth flagging early: for nutrition labels specifically, please plan to use the regulatory terms that appear on food packaging in your country rather than the literal English equivalents. So Glucides / Lipides / Protéines for French, Koolhydraten / Vetten / Eiwitten for Dutch, Eiweiß rather than Protein for German, and so on.
More soon.
Quick update on this. Translation infrastructure is live as of v1.0.0-rc.6 (released today). The source file is
src/i18n/en.json— about 210 keys covering navigation, page titles, the full auth flow, the onboarding wizard, primary actions in Diary / Foods / Goals / Profile, the AI assistant FAB, and common toasts. Server-side strings (email subjects, push notification bodies) are out of scope for now.Full workflow is documented in
CONTRIBUTING.md → Translations.About 30% of the client-side surface is extracted in this batch — the screens every user touches every session. Wellness sync messages, deep Settings sub-section labels, and Statistics chart internals are the main gaps. If you hit a screen you use heavily that’s still English while translating, open an issue listing the screen and I’ll pull it forward in the next extraction batch.
Tag me on the PR when you’re ready.
I’ll help with French if you go that far :-)
Personally I’m more than happy to cover the Dutch translation if you have the time to get translations working. Thanks for the project!
Happy to help with German. I used to get the LoseIt premium for free but haven’t used it in many years. I just assume it’s a privacy nightmare so haven’t bothered opening it. But I like the concept, just tracking helped me improve my diet and health.
Hey, can you make a much simpler version of this? Just a static site of the USDA data?
The USDA nutrition site went down at some point during Trump’s term. and I was afraid that information was lost forever.
I wish we just had a simple way for folks to clone this website. Literally just that. It would be much simpler than what you’ve already done, and extremely useful.
Thanks for sharing! I’m so annoyed of Yazio, that I was close to start developing a simple calories tracker myself. Glad I can just use this instead.
You asked for feature ideas in a comment. How about OIDC support? My wife is good at forgetting (to add) her passwords (to a password manager). So instead of resetting password xyz each week, i installed pocketid and integrated it to every app I host, that supports OIDC.
OIDC has been planned, but since now i have had multiple requests, i have started working on it. Will be implemented most likely in next RC release. Keep an eye out!
Awesome! Thanks
OIDC feature has been added to app in latest build (1.0.0-rc9). Please test and let me know how it works for you. I successfully tested with Authentik.
Thanks for implementing it that fast! Unfortunately I wasn’t able to test it.
I found the new section in the readme. So I followed it. I created an admin account (which confused me a bit - my user already had admin permissions. So why is it necessary to create another admin user?). Then I wanted to logout and login with the admin again. But I wasn’t able to figure out how to log out. So I just deleted the cookies and local storage.
After that I was greeted by the login page. So I logged in as admin, entered the User Management - and found an interface to manage users. Ok, sounds logic to find a user management tool in the “user management” menu entry. But the readme said, that there should be oidc settings. Maybe they got lost in a merge conflict or something like that. I was testing on rc12.
Anyways I would prefer an env variable to configure oidc. I like to separate the technical configuration (like credentials, etc) from the user space configuration.
This comment may sound super negative, but I’m actually very grateful you addressed this feature. Thanks!
Thanks for implementing it that fast! Unfortunately I wasn’t able to test it.
I found the new section in the readme. So I followed it. I created an admin account (which confused me a bit - my user already had admin permissions. So why is it necessary to create another admin user?). Then I wanted to logout and login with the admin again. But I wasn’t able to figure out how to log out. So I just deleted the cookies and local storage.
After that I was greeted by the login page. So I logged in as admin, entered the User Management - and found an interface to manage users. Ok, sounds logic to find a user management tool in the “user management” menu entry. But the readme said, that there should be oidc settings. Maybe they got lost in a merge conflict or something like that. I was testing on rc12.
Anyways I would prefer an env variable to configure oidc. I like to separate the technical configuration (like credentials, etc) from the user space configuration.
This comment may sound super negative, but I’m actually very grateful you addressed this feature. Thanks!
Thanks for the detailed walkthrough. A few of the rough edges you ran into are fixed in the latest release:
The admin-account confusion makes sense in hindsight. If you were already running NutriTrace single-user, you genuinely didn’t need an admin account, that step exists because OIDC requires user management to be on. The README now spells that out as a prerequisite up front so it doesn’t feel like surprise paperwork.
Logout has a real home now. Profile lives at the very top of Settings as a card showing your name and photo, and Log Out is right there inside it. No more digging through the cookie jar.
The “where are the OIDC settings” question was on me. They were buried inside User Management. They’re now their own top-level section called Authentication, sitting right under User Management, with presets for Authentik, Keycloak, Authelia, Pocket ID, Auth0, Google, and a generic OIDC option for anything else.
And on your env-var preference, that’s in too. You can configure providers entirely from .env or docker-compose.yml. Single-provider shorthand:
OIDC_ISSUER=https://auth.example.com/ OIDC_CLIENT_ID=nutritrace OIDC_CLIENT_SECRET=… OIDC_DISPLAY_NAME=Authentik OIDC_REDIRECT_URIS=https://nutritrace.example.com/api/auth/oidc/callback/1
Multi-provider works with OIDC_PROVIDER_2_, OIDC_PROVIDER_3_, etc. Anything you define this way shows up in the Settings UI with a lock badge and is read-only there, so it’s clear where the source of truth lives. Full doc in .env.example and the README.
Pull the latest and give it another shot when you have a minute. Please confirm the env-var path actually works for your IdP when you have a chance.
Thanks again.
This sounds great. How does the device support work? What do you think of GadgetBridge support?
