Skip to main content

Js Security Audit

Skill Verified Active
Part of:Ai Toolkit

Audit JS/TS projects against NPM Security Guidelines covering project setup, dependency hygiene, CI/CD pipeline, Dependabot, and incident response. Use when reviewing package.json or lockfiles, adding or upgrading npm dependencies, setting up CI security gates, hardening a new repo, or responding to a compromised package.

Purpose

To ensure JavaScript and TypeScript projects adhere to robust NPM security standards, preventing common vulnerabilities and supply-chain attacks.

Features

  • Audits project setup for security hygiene
  • Checks dependency hygiene and versioning
  • Verifies CI/CD pipeline security gates
  • Reviews Dependabot configuration and alerting
  • Assesses incident response readiness

Use Cases

  • Hardening new repositories
  • Reviewing PRs that modify dependencies
  • Setting up CI security gates
  • Responding to supply-chain attack alerts

Non-Goals

  • Performing direct code injection
  • Managing external infrastructure
  • Writing or modifying production code directly

Installation

First, add the marketplace

/plugin marketplace add spartan-stratos/spartan-ai-toolkit
/plugin install toolkit@spartan-marketplace

Quality Score

Verified
97 /100
Analyzed about 23 hours ago

Trust Signals

Last commit3 days ago
GitHub owner spartan-stratos (opens in new tab)
Stars68
Status
View Source

Similar Extensions

Ship Gate

100

Pre-production audit that scans a codebase for security, database, deployment, code quality, AI/LLM, dependency, frontend, and observability issues. Intercepts deploy commands and blocks until critical items pass. Stack-agnostic. Use for "run ship gate", "am I ready to ship", "pre-launch audit", "can I deploy", "push to production", "go live checklist", "preflight check". Not for CI/CD setup or infra provisioning.

Skill
alirezarezvani

Refactor Plan

100

Prioritized redesign action plan covering quick wins, medium effort, major rework

Skill
Aboudjem

Deepinit

100

Deep codebase initialization with hierarchical AGENTS.md documentation

Skill
Yeachan-Heo

Cleanup Cycles

100

Detect and untangle circular dependencies. Runs madge/skott (TS), pycycle (Py), or compiler-only checks (Go/Rust). Auto-fixes leaf-extractable cycles; reports core cycles for human review. Use when the user asks to find circular imports, fix dependency cycles, or untangle module graph. Example queries — "find circular imports", "fix dependency cycles", "untangle our module graph", "why is madge complaining".

Skill
raintree-technology

Netlify Identity

100

Use when the task involves authentication, user signups, logins, password recovery, OAuth providers, role-based access control, or protecting routes and functions. Always use `@netlify/identity`. Never use `netlify-identity-widget` or `gotrue-js` — they are deprecated.

Skill
netlify

Vue Router Best Practices

100

Vue Router 4 patterns, navigation guards, route params, and route-component lifecycle interactions.

Skill
hyf0

© 2025 SkillRepo · Find the right skill, skip the noise.