一键导入
dependency-analysis-patterns
Dependency graph visualization, circular dependency detection, CVE scanning, and license compliance
用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。
菜单
Dependency graph visualization, circular dependency detection, CVE scanning, and license compliance
用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。
基于 SOC 职业分类
OpenAI Codex CLI + Claude Code (Hizir) birlikte kullanim rehberi. Is dagitim pattern'leri, GitHub Actions workflow ornekleri, review dongusu ve iki AI yazilim asistaninin guclu yanlarini birlestiren orchestration stratejileri.
Create handoff document for transferring work to another session
Otonom deney dongusu. Kod degisikligi yap, olc, karsilastir, kabul et veya geri al. Metrik bazli karar verme ile performans, boyut veya kalite optimizasyonu. Tek basina veya agent ile kullan.
Planning agent that creates implementation plans and handoffs from conversation context
Use this skill when writing new features, fixing bugs, or refactoring code. Enforces test-driven development with 80%+ coverage including unit, integration, and E2E tests.
Pre-push API key and credential scanner - blocks git push if secrets found
| name | dependency-analysis-patterns |
| description | Dependency graph visualization, circular dependency detection, CVE scanning, and license compliance |
# npm
npx depcruise --output-type dot src/ | dot -T svg > deps.svg
# Python
pipdeptree --graph-output svg > deps.svg
# Go
go mod graph | modgraphviz | dot -T svg > deps.svg
# JavaScript/TypeScript
npx madge --circular src/
npx dpdm --circular src/index.ts
# Python
pydeps --cluster --no-show src/
| Circular Tip | Çözüm |
|---|---|
| A → B → A | Interface/port ile inversion |
| A → B → C → A | Shared module extract et |
| Barrel file circular | Direct import kullan |
# npm
npm audit --json | jq '.vulnerabilities | to_entries[] | select(.value.severity == "critical")'
# pip
pip-audit --format json --desc
# Go
govulncheck ./...
# Multi-tool
trivy fs --severity CRITICAL,HIGH .
| CVSS | Severity | Aksiyon | SLA |
|---|---|---|---|
| 9.0+ | Critical | Hotfix | 24h |
| 7.0-8.9 | High | Sprint fix | 1 hafta |
| 4.0-6.9 | Medium | Backlog | 1 ay |
| <4.0 | Low | Track | Fırsatçı |
# npm
npx license-checker --production --json --failOn "GPL-3.0;AGPL-3.0"
# Python
pip-licenses --format=json --fail-on="GPL-3.0"
| License | Commercial OK | Copyleft | Risk |
|---|---|---|---|
| MIT | Evet | Hayır | Düşük |
| Apache-2.0 | Evet | Hayır | Düşük |
| BSD-3 | Evet | Hayır | Düşük |
| MPL-2.0 | Evet | Kısmi | Orta |
| LGPL | Dikkat | Kısmi | Orta |
| GPL-3.0 | Dikkat | Evet | Yüksek |
| AGPL-3.0 | Dikkat | Evet | Çok yüksek |
# npm - outdated
npm outdated --json
# Semver risk
# patch (0.0.x) → güvenli
# minor (0.x.0) → genelde güvenli
# major (x.0.0) → breaking change riski
# Test after update
npm update <pkg> && npm test
npm audit / pip-audit temiz (critical/high yok)depcheck)