Skip to main content

Dependency Management

Skill Verified Active

Manage third-party libraries, runtimes, and SaaS dependencies. Use this skill when setting an update cadence, responding to security advisories, dealing with deprecated dependencies, evaluating new dependencies, auditing what's installed, or unblocking a dependency upgrade. Triggers on dependency, package update, security patch, lockfile, deprecated, breaking change, supply chain, dependency audit, npm audit, dependabot, renovate. Also triggers when a build breaks after an update or when an advisory is published for a used package.

Purpose

To help developers and teams establish and maintain robust dependency management practices, ensuring security, currency, and stability across their projects.

Features

  • Dependency inventory and categorization
  • Security advisory auditing and prioritization
  • Major version upgrade planning and execution
  • Policy setting for updates, security, and pinning
  • Automation recommendations for updates and audits

Use Cases

  • Setting up dependency hygiene for new or existing projects
  • Responding to security advisories and vulnerability reports
  • Planning and executing major version upgrades
  • Evaluating and onboarding new dependencies
  • Auditing installed dependencies and their usage

Non-Goals

  • General code review
  • Infrastructure vulnerability scanning
  • Pinning vendor or service contracts
  • Performance impact analysis of dependencies

Installation

npx skills add rampstackco/claude-skills

Runs the Vercel skills CLI (skills.sh) via npx — needs Node.js locally and at least one installed skills-compatible agent (Claude Code, Cursor, Codex, …). Assumes the repo follows the agentskills.io format.

Quality Score

Verified
98 /100
Analyzed about 14 hours ago

Trust Signals

Last commit3 days ago
GitHub owner rampstackco (opens in new tab)
Stars168
LicenseMIT
Websiterampstack.co(opens in new tab)
Status
View Source

Similar Extensions

Audit Dependency Versions

100

Audit project dependencies for version staleness, security vulnerabilities, and compatibility issues. Covers lock file analysis, upgrade path planning, and breaking change assessment. Use before a release to ensure dependencies are current and secure, during periodic maintenance reviews, after receiving a security advisory, when upgrading to a new language version, before submitting to CRAN or npm, or when inheriting a project to assess its dependency health.

Skill
pjt222

Clawsec Scanner

100

Automated vulnerability scanner for agent platforms. Performs dependency scanning (npm audit, pip-audit), multi-database CVE lookup (OSV, NVD, GitHub Advisory), SAST analysis (Semgrep, Bandit), and agent-specific DAST hook execution testing for OpenClaw hooks.

Skill
prompt-security

Dependency Audit

95

Dependency audit and cleanup workflow for maintaining healthy project dependencies. Use for regular maintenance, security updates, and removing unused packages.

Skill
bobmatnyc

Soul Guardian

100

Drift detection + baseline integrity guard for agent workspace files with automatic alerting support

Skill
prompt-security

Janitor Report

100

Full health check of all your skills in one report. Use when the user wants to check for errors, find duplicates, detect broken skills, or get a complete overview of skill health.

Skill
khendzel

Janitor Audit

100

Show all your installed skills

Skill
khendzel

© 2025 SkillRepo · Find the right skill, skip the noise.