dependency-auditor
CommunityAuto-audit dependencies for vulnerabilities, stay secure.
Authoralirezarezvani
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill automatically scans your project's dependencies for known vulnerabilities (CVEs), outdated packages, and license issues. It proactively alerts you to security risks, preventing vulnerable code from making it into production and saving you from manual, time-consuming audits.
Core Features & Use Cases
- Multi-Language Support: Works with Node.js (npm, yarn), Python (pip), Ruby (bundler), Java (Maven, Gradle), and Go modules.
- Real-time Alerts: Triggers on dependency file changes (
package.json,requirements.txt) and before deployments, providing immediate feedback. - Use Case: When you add a new package like
npm install lodash@4.17.15, the skill immediately detects and alerts you to known prototype pollution vulnerabilities, suggesting an update to a secure version.
Quick Start
The skill activates automatically when dependency files change.
Add a new dependency to your project:
npm install vulnerable-package@1.0.0
The skill will then audit your dependencies and alert you to any issues.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: dependency-auditor Download link: https://github.com/alirezarezvani/claude-code-tresor/archive/main.zip#dependency-auditor Please download this .zip file, extract it, and install it in the .claude/skills/ directory.