Run any Skill in Manus with one click

dep-audit

Audit and update project dependencies: find outdated packages, check for vulnerabilities, auto-update safely with lockfile regeneration.

Run Skill in Manus

Overview

Audit and update project dependencies: find outdated packages, check for vulnerabilities, auto-update safely with lockfile regeneration.

Install command

npx skills add https://github.com/JansenAnalytics/claudex --skill dep-audit

Copy and paste this command into Claude Code to install the skill

Source

JansenAnalytics/claudex

Stars4

Forks1

UpdatedJune 3, 2026 at 20:50

SKILL.md

readonly

name	dep-audit
description	Audit and update project dependencies: find outdated packages, check for vulnerabilities, auto-update safely with lockfile regeneration.
category	development
maturity	stable
tags	["dependencies","npm","pip","lockfile","outdated"]

dep-audit

Audit and update project dependencies: find outdated packages, check for vulnerabilities, auto-update safely with lockfile regeneration.

When to Use

Checking for outdated dependencies
Scanning for CVEs / security vulnerabilities
Updating packages safely (minor/patch)
Managing dependency conflicts
Regenerating lockfiles after updates

Supported Ecosystems

Ecosystem	Lockfile	Audit	Outdated	Update
npm/yarn/pnpm	package-lock.json / yarn.lock / pnpm-lock.yaml	✅	✅	✅
pip	requirements.txt / Pipfile.lock	✅ (pip-audit)	✅	✅
cargo	Cargo.lock	✅	✅	✅
go	go.sum	✅ (govulncheck)	✅	✅

Scripts

`scripts/dep-check.sh [path]`

Universal dependency checker. Auto-detects ecosystem, runs security audit, and lists outdated packages.

bash scripts/dep-check.sh /path/to/project

`scripts/safe-update.sh [path] [--major]`

Safely updates dependencies (minor/patch by default). Creates a git stash before updating, regenerates lockfile. Use --major for major version bumps (interactive confirmation).

bash scripts/safe-update.sh /path/to/project
bash scripts/safe-update.sh /path/to/project --major

`scripts/outdated.sh [path]`

Lists all outdated dependencies with current vs latest versions, grouped by severity (patch/minor/major).

bash scripts/outdated.sh /path/to/project

References

references/update-strategies.md — Safe update workflows and strategies
references/semver-guide.md — Semver rules and common gotchas
references/breaking-changes.md — Common breaking changes by ecosystem

Tips

Always run dep-check.sh before safe-update.sh to understand the landscape
For monorepos, run from the root — scripts detect workspace configs
Use --major flag with caution; review changelogs first
After updating, run the project's test suite to verify nothing broke

More from this repository

same repository

memory-search

JansenAnalytics/claudex

Semantic memory search across all agent memories and conversation history. Use BEFORE answering questions about prior work, decisions, dates, people, preferences, projects, or past conversations. Also use when asked "do you remember", "what did we discuss", "when did we", etc.

2026-06-034

weather

JansenAnalytics/claudex

Get current weather and forecasts. Use when the user asks about weather, temperature, or forecasts for any location.

2026-06-034

1password

JansenAnalytics/claudex

Set up and use 1Password CLI (op). Use when installing the CLI, enabling desktop app integration, signing in (single or multi-account), or reading/injecting/running secrets via op.

2026-06-034

a11y-audit

JansenAnalytics/claudex

Accessibility auditing: WCAG compliance checking, contrast ratios, ARIA labels, keyboard navigation, semantic HTML, screen reader compatibility.

2026-06-034

adr-manager

JansenAnalytics/claudex

ADR Manager Skill

2026-06-034

api-critic

JansenAnalytics/claudex

Autonomous API testing and evaluation. Tests any REST API for correctness, security, performance, error handling, and standards compliance. Discovers endpoints, probes with valid/invalid/edge-case payloads, checks auth, response times, injection vulnerabilities, and generates severity-scored reports with actionable fixes. Use before any API "done" claim.

2026-06-034

Source

JansenAnalytics

JansenAnalytics/claudex

View GitHub Repository View Creator Repositories

Install command

Download

Run Skill in Manus

Useful forSOC

Software DevelopersComputer and Mathematical Occupations15-1252L4

name	dep-audit
description	Audit and update project dependencies: find outdated packages, check for vulnerabilities, auto-update safely with lockfile regeneration.
category	development
maturity	stable
tags	["dependencies","npm","pip","lockfile","outdated"]

dep-audit

Audit and update project dependencies: find outdated packages, check for vulnerabilities, auto-update safely with lockfile regeneration.

When to Use

Checking for outdated dependencies
Scanning for CVEs / security vulnerabilities
Updating packages safely (minor/patch)
Managing dependency conflicts
Regenerating lockfiles after updates

Supported Ecosystems

Ecosystem	Lockfile	Audit	Outdated	Update
npm/yarn/pnpm	package-lock.json / yarn.lock / pnpm-lock.yaml	✅	✅	✅
pip	requirements.txt / Pipfile.lock	✅ (pip-audit)	✅	✅
cargo	Cargo.lock	✅	✅	✅
go	go.sum	✅ (govulncheck)	✅	✅

Scripts

`scripts/dep-check.sh [path]`

Universal dependency checker. Auto-detects ecosystem, runs security audit, and lists outdated packages.

bash scripts/dep-check.sh /path/to/project

`scripts/safe-update.sh [path] [--major]`

Safely updates dependencies (minor/patch by default). Creates a git stash before updating, regenerates lockfile. Use --major for major version bumps (interactive confirmation).

bash scripts/safe-update.sh /path/to/project
bash scripts/safe-update.sh /path/to/project --major

`scripts/outdated.sh [path]`

Lists all outdated dependencies with current vs latest versions, grouped by severity (patch/minor/major).

bash scripts/outdated.sh /path/to/project

References

references/update-strategies.md — Safe update workflows and strategies
references/semver-guide.md — Semver rules and common gotchas
references/breaking-changes.md — Common breaking changes by ecosystem

Tips

Always run dep-check.sh before safe-update.sh to understand the landscape
For monorepos, run from the root — scripts detect workspace configs
Use --major flag with caution; review changelogs first
After updating, run the project's test suite to verify nothing broke