Stats
Actions
Tags
From sentinel
Audits project dependencies for CVEs using detected package manager, reports vulnerabilities with installed/fixed versions and exact upgrade commands. Includes auto-fix and banned-packages check.
How this skill is triggered — by the user, by Claude, or both
Slash command
/sentinel:audit-depsThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
Run a focused dependency vulnerability audit using the project's detected package manager. Reports CVEs with installed versions, fixed versions, and exact upgrade commands. Cross-references installed packages against the Sentinel banned-packages list.
Run a focused dependency vulnerability audit using the project's detected package manager. Reports CVEs with installed versions, fixed versions, and exact upgrade commands. Cross-references installed packages against the Sentinel banned-packages list.
Load each step through the fetch command (handles caching, decryption, and auth):
"~/.composure/bin/composure-fetch.mjs" skill sentinel audit-deps {step-filename}
Do NOT read cache files directly — they are encrypted at rest. Always use the fetch command above.
| # | File |
|---|---|
| 1 | 01-run-audit.md |
| 2 | 02-parse-and-enrich.md |
| 3 | 03-report-findings.md |
| 4 | 04-propose-overrides.md |
| 5 | 05-summary.md |
| 6 | 06-auto-fix.md |
npx claudepluginhub hrconsultnj/claude-plugins --plugin sentinelAudits project dependencies for CVEs, outdated packages, and unsafe versions. Recommends highest safe version per package, unlike npm audit. Blocks critical CVEs via Composure commit gate.
Audits project dependencies from package.json, requirements.txt, go.mod, Gemfile for CVEs, outdated packages, transitive issues, licenses, and supply chain risks. Provides severity assessments, remediation suggestions, and prioritized reports.
Audits project dependencies for CVEs, outdated versions, incompatible licenses, and abandoned packages using npm audit, pip-audit, cargo audit, govulncheck, composer audit. Blocks releases on critical/high vulns.