dependency-audit

Dependency Audit Skill

Safety Notice

This listing is imported from skills.sh public index metadata. Review upstream SKILL.md and repository scripts before running.

Copy this and send it to your AI assistant to learn

Install skill "dependency-audit" with this command: npx skills add fusengine/agents/fusengine-agents-dependency-audit

Dependency Audit Skill

Overview

Run dependency vulnerability checks using native package manager audit tools.

Supported Ecosystems

Ecosystem Tool Auto-fix

npm/yarn/pnpm/bun npm audit / yarn audit

Yes

PHP/Composer composer audit

Manual

Python/pip pip-audit / safety check

Manual

Rust/Cargo cargo audit

Yes

Go govulncheck ./...

Manual

Swift/CocoaPods pod audit

Manual

Ruby/Bundler bundle audit

Manual

Workflow

  • Detect package manager from lock files

  • Run appropriate audit command

  • Parse output for vulnerabilities

  • Classify by severity (CRITICAL/HIGH/MEDIUM/LOW)

  • Suggest fix versions or alternatives

Auto-Fix Support

When --fix flag is used:

  • npm audit fix for safe updates

  • cargo audit fix for Rust

  • Manual guidance for other ecosystems

References

  • Audit Commands

  • Report Template

Source Transparency

This detail page is rendered from real SKILL.md content. Trust labels are metadata-based hints, not a safety guarantee.

Open in GitHubOpen in ClawHub

Related Skills

Related by shared tags or category signals.

Security

auth-audit

No summary provided by upstream source.

Repository SourceNeeds Review
16-fusengine
Security

react-effects-audit

No summary provided by upstream source.

Repository SourceNeeds Review
16-fusengine
Security

security-headers

No summary provided by upstream source.

Repository SourceNeeds Review
15-fusengine
Security

security-scan

No summary provided by upstream source.

Repository SourceNeeds Review
15-fusengine