audit-deps

Check dependencies for vulnerabilities. Use when user asks to "audit dependencies", "/audit-deps", "check for vulnerabilities", or wants to check dependency health. Don't use for yarn, pnpm, or bun projects (npm only), or for reviewing code quality.

Safety Notice

This listing is imported from skills.sh public index metadata. Review upstream SKILL.md and repository scripts before running.

Copy this and send it to your AI assistant to learn

Install skill "audit-deps" with this command: npx skills add helderberto/skills/helderberto-skills-audit-deps

Dependency Audit

Commands

Run in parallel:

  • npm audit
  • npm outdated

Workflow

  1. Run audit and outdated check in parallel
  2. Report critical vulnerabilities with CVE + fix command (see severity-levels.md)
  3. List outdated packages: table of package/current/latest/type (major vs minor/patch)
  4. Check for unused deps: grep imports in src/

Rules

  • Never use npx directly
  • Focus on actionable items
  • Prioritize: security > major updates > unused > minor updates

Error Handling

  • If npm audit fails → run npm install first to generate package-lock.json, then retry
  • If npm outdated returns nothing → report all dependencies are current
  • If npm is not found → report incompatibility; this skill requires npm

Source Transparency

This detail page is rendered from real SKILL.md content. Trust labels are metadata-based hints, not a safety guarantee.

Open in GitHubOpen in ClawHub

Related Skills

Related by shared tags or category signals.

Security

perf-audit

No summary provided by upstream source.

Repository SourceNeeds Review
-5
helderberto
General

ship

No summary provided by upstream source.

Repository SourceNeeds Review
-15
helderberto
General

safe-repo

No summary provided by upstream source.

Repository SourceNeeds Review
-15
helderberto