dependency-health-check
by Timoranjes
Automated security audit and health check for software dependencies across polyglot projects.
- Identify high-severity CVEs in production dependencies.
- Detect deprecated or unmaintained packages in a legacy codebase.
- Audit version drift and major release gaps across multiple microservices.
Free
Included in download
- Downloadable skill package
- Works with Claude Code, Cursor
- 2 permissions declared
Sample input
Run a dependency health check on this repository to identify security risks, deprecated packages, and version drift, then provide a summary table of findings.
Sample output
| Package | Current | Latest | Severity | Notes | |---------|---------|--------|----------|-------| | lodash | 4.17.15 | 4.17.21| CRITICAL | CVE-2020-8203 (CVSS 7.4) | | request | 2.88.2 | N/A | CRITICAL | Officially Deprecated | | axios | 0.21.1 | 1.6.0 | WARNING | 1 Major version behind |
dependency-health-check
by Timoranjes
Automated security audit and health check for software dependencies across polyglot projects.
Free
Included in download
- Downloadable skill package
- Works with Claude Code, Cursor
- 2 permissions declared
- Instant install
Sample input
Run a dependency health check on this repository to identify security risks, deprecated packages, and version drift, then provide a summary table of findings.
Sample output
| Package | Current | Latest | Severity | Notes | |---------|---------|--------|----------|-------| | lodash | 4.17.15 | 4.17.21| CRITICAL | CVE-2020-8203 (CVSS 7.4) | | request | 2.88.2 | N/A | CRITICAL | Officially Deprecated | | axios | 0.21.1 | 1.6.0 | WARNING | 1 Major version behind |
About This Skill
Comprehensive Dependency Risk Analysis
Maintaining security and stability in a growing codebase is a constant struggle. This skill automates the tedious process of auditing your project's dependency tree, identifying everything from critical security vulnerabilities to unmaintained "ghost" packages. It provides a structured, multi-tier health report that helps developers prioritize maintenance tasks before they become technical debt.
What it does
The skill systematically scans your project to detect package managers, extract dependency versions, and cross-reference them against security advisories. It covers:
- Security Auditing: Identifies known CVEs and vulnerabilities using local ecosystem tools and internal reference tables.
- Maintenance Status: Flags deprecated packages or those that haven't seen an update in over 12 months.
- Version Drift: Detects when production dependencies are falling behind major or minor releases.
- Environment Integrity: Finds version conflicts across different manifests and identifies missing lockfiles.
Supported Ecosystems
This developer-centric tool is built to work across polyglot environments, supporting npm, yarn, pnpm (Node.js), pip, poetry (Python), Go modules, Cargo (Rust), Bundler (Ruby), and Maven (Java). Unlike basic prompting, this skill follows a deterministic classification framework to ensure your security findings are actionable and consistent.
Use Cases
- Identify high-severity CVEs in production dependencies.
- Detect deprecated or unmaintained packages in a legacy codebase.
- Audit version drift and major release gaps across multiple microservices.
- Validate consistent package versions across different workspace manifests.
Known Limitations
- Requires ecosystem-specific CLI tools (e.g., npm, cargo-audit) for deep security analysis.
- Read-only; cannot auto-remediate or update versions.
- Limited to manifest-declared dependencies.
How to Install
mkdir -p ~/.claude/skills && curl -sL https://www.agensi.io/api/install/dependency-health-check -o /tmp/dependency-health-check.zip && unzip -o /tmp/dependency-health-check.zip -d ~/.claude/skills && rm /tmp/dependency-health-check.zipFree skills install directly. Paid skills require purchase - use the download button above after buying.
Reviews
No reviews yet - be the first to share your experience.
Only users who have downloaded or purchased this skill can leave a review.
No reviews yet - be the first to share your experience.
Only users who have downloaded or purchased this skill can leave a review.
Security Scanned
Passed automated security review
Permissions
File Scopes
Claude Code, Cursor, GitHub Copilot Extensions, SKILL.md-compatible agents
Creator
Frequently Asked Questions
Learn More About AI Agent Skills
More Premium Skills
Multi-Agent Orchestration Master Library
Transform Claude Code into a coordinated multi-agent system. Battle-tested tmux orchestration patterns, YAML task queues, event-driven communication, and parallel worker management for 8+ agents.
sast-configuration
Automate the setup and optimization of Semgrep, SonarQube, and CodeQL for high-signal security testing.
designing-hybrid-context-layers
Architects the right retrieval strategy for every query — teaching your agent when to use RAG, a knowledge graph, or a temporal index instead of defaulting to vector search for everything.
ai-automation-qa-pack
Professional QA & UAT documentation generator for AI automation agencies and complex agent deployments.