此内容尚未提供您的语言版本,正在以英文显示。

Js Security Audit

技能已验证活跃

Audit JS/TS projects against NPM Security Guidelines covering project setup, dependency hygiene, CI/CD pipeline, Dependabot, and incident response. Use when reviewing package.json or lockfiles, adding or upgrading npm dependencies, setting up CI security gates, hardening a new repo, or responding to a compromised package.

目的

To ensure JavaScript and TypeScript projects adhere to robust NPM security standards, preventing common vulnerabilities and supply-chain attacks.

功能

Audits project setup for security hygiene
Checks dependency hygiene and versioning
Verifies CI/CD pipeline security gates
Reviews Dependabot configuration and alerting
Assesses incident response readiness

使用场景

Hardening new repositories
Reviewing PRs that modify dependencies
Setting up CI security gates
Responding to supply-chain attack alerts

非目标

Performing direct code injection
Managing external infrastructure
Writing or modifying production code directly

安装

请先添加 Marketplace

/plugin marketplace add spartan-stratos/spartan-ai-toolkit

/plugin install toolkit@spartan-marketplace

质量评分

已验证

97 /100

1 day ago 分析

信任信号

最近提交4 days ago

GitHub 所有者 spartan-stratos

星标68

状态

查看源代码

类似扩展

Ship Gate

100

Pre-production audit that scans a codebase for security, database, deployment, code quality, AI/LLM, dependency, frontend, and observability issues. Intercepts deploy commands and blocks until critical items pass. Stack-agnostic. Use for "run ship gate", "am I ready to ship", "pre-launch audit", "can I deploy", "push to production", "go live checklist", "preflight check". Not for CI/CD setup or infra provisioning.

技能

alirezarezvani

Refactor Plan

100

Prioritized redesign action plan covering quick wins, medium effort, major rework

技能

Aboudjem

Deepinit

100

Deep codebase initialization with hierarchical AGENTS.md documentation

技能

Yeachan-Heo

Cleanup Cycles

100

Detect and untangle circular dependencies. Runs madge/skott (TS), pycycle (Py), or compiler-only checks (Go/Rust). Auto-fixes leaf-extractable cycles; reports core cycles for human review. Use when the user asks to find circular imports, fix dependency cycles, or untangle module graph. Example queries — "find circular imports", "fix dependency cycles", "untangle our module graph", "why is madge complaining".

技能

raintree-technology

Netlify Identity

100

用于身份验证、用户注册、登录、密码恢复、OAuth 提供商、基于角色的访问控制或保护路由和函数。始终使用 `@netlify/identity`。切勿使用 `netlify-identity-widget` 或 `gotrue-js` — 它们已弃用。

技能

netlify

Vue Router Best Practices

100

Vue Router 4 patterns, navigation guards, route params, and route-component lifecycle interactions.

技能

hyf0