Agent skill

dependency-audit

Audit npm dependencies for security vulnerabilities, outdated packages, and license compliance.

View SKILL.md on GitHub Repository
Stars 0
Forks 0

Install this agent skill to your Project

npx add-skill https://github.com/cpa03/blueprintify/tree/main/.opencode/skill/dependency-audit

SKILL.md

Dependency Audit Skill

Comprehensive npm dependency security and health check.

Security Audit

  1. Run npm audit:

    bash
    npm audit

  2. For detailed JSON output:

    bash
    npm audit --json

  3. Fix automatically if safe:

    bash
    npm audit fix

  4. For breaking changes (be careful):

    bash
    npm audit fix --force

Outdated Packages

  1. Check for outdated:

    bash
    npm outdated

  2. Update specific package:

    bash
    npm update <package-name>

  3. Update to latest (major versions):

    bash
    npx npm-check-updates -u
npm install

License Check

  1. List all licenses:

    bash
    npx license-checker --summary

  2. Check for problematic licenses:

    bash
    npx license-checker --onlyAllow "MIT;Apache-2.0;BSD-2-Clause;BSD-3-Clause;ISC"

Bundle Analysis

  1. Analyze bundle size:

    bash
    npx source-map-explorer dist/**/*.js

  2. Find duplicate dependencies:

    bash
    npx npm-dedupe

Output Report

markdown
## Dependency Audit Report

### Security

- Critical: X
- High: X
- Medium: X
- Low: X

### Outdated Packages

| Package | Current | Wanted | Latest |
| ------- | ------- | ------ | ------ |
| ...     | ...     | ...    | ...    |

### Actions Required

1. [Action with priority]
2. [Action with priority]

Recommended Agent Skills

Expand your agent's capabilities with these related and highly-rated skills.

cpa03/blueprintify

ci-pipeline-update

Updates CI/CD pipelines for DevOps Engineer

0 0
Explore
cpa03/blueprintify

obra-superpowers-test-driven-development

Use when implementing any feature or bugfix, before writing implementation code

0 0
Explore
cpa03/blueprintify

typescript-refactor

Safely refactor TypeScript code while maintaining type safety and test coverage. Includes verification steps.

0 0
Explore
cpa03/blueprintify

obra-superpowers-using-git-worktrees

Use when starting feature work that needs isolation from current workspace or before executing implementation plans - creates isolated git worktrees with smart directory selection and safety verification

0 0
Explore
cpa03/blueprintify

react-component-create

Create new React components following project patterns and best practices. Includes proper typing, testing, and documentation.

0 0
Explore
cpa03/blueprintify

madappgang-claude-code-debugging-strategies

Universal debugging strategies and techniques applicable across all technology stacks. Use when approaching unknown bugs or need language-agnostic debugging methodology.

0 0
Explore

Didn't find tool you were looking for?

Be as detailed as possible for better results