dependency-hygiene
CommunitySecure your supply chain.
Software Engineering#ci/cd#package management#dependency management#vulnerability scanning#supply chain security#sbom
Authorspallempati
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill addresses the critical risk of introducing vulnerable or unmanaged third-party dependencies into your codebase, ensuring software supply chain integrity and build reproducibility.
Core Features & Use Cases
- Version Pinning Enforcement: Ensures all dependencies have fixed versions to prevent unexpected updates.
- Vulnerability Scanning: Integrates with build processes to block deployments containing high-severity (CVSS ≥ 7.0) vulnerabilities.
- SBOM Generation: Supports the creation of Software Bill of Materials for compliance and transparency.
- Use Case: Automatically fail a CI build if a new dependency introduces a critical security vulnerability, preventing insecure code from reaching production.
Quick Start
Ensure all dependencies in the project are version-pinned and do not contain critical vulnerabilities.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: dependency-hygiene Download link: https://github.com/spallempati/AI-Studio/archive/main.zip#dependency-hygiene Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.