ワンクリックでManusで任意のスキルを実行

dependency-management

Manage project dependencies effectively. Use when adding, updating, or auditing dependencies. Covers version management, security scanning, and lockfiles.

Manusで実行

スター99

フォーク15

更新日2026年3月11日 19:09

ソース

dralgorhythm

dralgorhythm/claude-agentic-framework

GitHub リポジトリを開く Creator のリポジトリを見る

インストールコマンド

ダウンロード

Manusで実行

Dependency Management

Workflows

Audit: Check for known vulnerabilities
Update: Keep dependencies reasonably current
Lock: Ensure reproducible builds
Minimize: Remove unused dependencies

Security Scanning

# Node.js
npm audit
pnpm audit

# Python
pip-audit
safety check

# Go
govulncheck ./...

# Rust
cargo audit

Version Management

Semantic Versioning

Major (1.0.0): Breaking changes
Minor (0.1.0): New features, backward compatible
Patch (0.0.1): Bug fixes, backward compatible

Version Constraints

// package.json
{
  "dependencies": {
    "exact": "1.2.3",        // Exactly 1.2.3
    "patch": "~1.2.3",       // 1.2.x (patch updates)
    "minor": "^1.2.3",       // 1.x.x (minor updates)
    "range": ">=1.2.3 <2.0.0" // Range
  }
}

Lockfiles

Always commit lockfiles for reproducible builds:

package-lock.json or pnpm-lock.yaml (Node.js)
poetry.lock or uv.lock (Python)
go.sum (Go)
Cargo.lock (Rust)

Best Practices

Pin Versions in Production: Use exact versions or lockfiles
Update Regularly: Don't let dependencies get too stale
Review Changelogs: Check breaking changes before major updates
Test After Updates: Run full test suite after dependency changes
Minimize Dependencies: Each dependency is a liability

Removing Unused Dependencies

# Node.js
npx depcheck

# Python
pip-autoremove

# Go
go mod tidy

このリポジトリの他の Skills

同じリポジトリ

biome

dralgorhythm/claude-agentic-framework

Biome 2.x linting and formatting patterns. Use when configuring code quality tools, setting up linting rules, formatting code, or integrating with CI/CD. Covers migration from ESLint/Prettier.

2026-03-1299

hono

dralgorhythm/claude-agentic-framework

Hono 4.x web framework patterns. Use when building APIs, middleware, routing, or server-side applications. Covers multi-runtime support (Node, Bun, Cloudflare Workers), validation, CORS, and error handling.

2026-03-1299

radix-ui

dralgorhythm/claude-agentic-framework

Radix UI primitive patterns. Use when building accessible, unstyled UI components like dialogs, dropdowns, tooltips, tabs, and selects. Covers Tailwind styling, keyboard navigation, animations, and portal management.

2026-03-1299

react-patterns

dralgorhythm/claude-agentic-framework

React development patterns. Use when building React components, managing state, creating custom hooks, or optimizing React applications. Covers React 19 features, TypeScript integration, and composition patterns.

2026-03-1299

tailwind-css

dralgorhythm/claude-agentic-framework

Tailwind CSS 4.x utility-first styling patterns. Use when building UI components, creating responsive layouts, implementing design systems, or customizing themes. Covers CSS-first configuration, @theme directive, and component patterns.

2026-03-1299

vite

dralgorhythm/claude-agentic-framework

Vite 7.x build tool patterns. Use when configuring build setup, development server, environment variables, asset handling, or optimizing production builds for React applications.

2026-03-1299

name	dependency-management
description	Manage project dependencies effectively. Use when adding, updating, or auditing dependencies. Covers version management, security scanning, and lockfiles.

Dependency Management

Workflows

Audit: Check for known vulnerabilities
Update: Keep dependencies reasonably current
Lock: Ensure reproducible builds
Minimize: Remove unused dependencies

Security Scanning

# Node.js
npm audit
pnpm audit

# Python
pip-audit
safety check

# Go
govulncheck ./...

# Rust
cargo audit

Version Management

Semantic Versioning

Major (1.0.0): Breaking changes
Minor (0.1.0): New features, backward compatible
Patch (0.0.1): Bug fixes, backward compatible

Version Constraints

// package.json
{
  "dependencies": {
    "exact": "1.2.3",        // Exactly 1.2.3
    "patch": "~1.2.3",       // 1.2.x (patch updates)
    "minor": "^1.2.3",       // 1.x.x (minor updates)
    "range": ">=1.2.3 <2.0.0" // Range
  }
}

Lockfiles

Always commit lockfiles for reproducible builds:

package-lock.json or pnpm-lock.yaml (Node.js)
poetry.lock or uv.lock (Python)
go.sum (Go)
Cargo.lock (Rust)

Best Practices

Pin Versions in Production: Use exact versions or lockfiles
Update Regularly: Don't let dependencies get too stale
Review Changelogs: Check breaking changes before major updates
Test After Updates: Run full test suite after dependency changes
Minimize Dependencies: Each dependency is a liability

Removing Unused Dependencies

# Node.js
npx depcheck

# Python
pip-autoremove

# Go
go mod tidy