Slash Command

/audit-deps

Audits project dependencies for vulnerabilities, licensing issues, maintenance status, unused packages, tree depth; generates report with stats and prioritized actions.

Javascript

Python

Rust

security

code-quality

npx claudepluginhub rohitg00/awesome-claude-code-toolkit --plugin dependency-manager

Popularity

Parent stars

1,716

Parent forks

535

Invocation

How this command is triggered — by the user, by Claude, or both

Slash command

/dependency-manager:audit-deps

Model invocable

No pre-commands

Context Preview

The summary Claude sees in its command listing — used to decide when to auto-load this command

Audit all project dependencies for vulnerabilities, licensing issues, and maintenance status.

## Steps

1. Detect the package manager and run native audit:
   - npm: `npm audit --json`
   - pnpm: `pnpm audit --json`
   - pip: `pip-audit --format json`
   - cargo: `cargo audit --json`
2. Check package maintenance status:
   - Last publish date for each dependency.
   - Open issue count and response time.
   - Whether the package is deprecated.
3. Verify license compatibility:
   - List all dependency licenses.
   - Flag any copyleft licenses (GPL) in permissive projects.
   - Flag packages ...

Command Content

43 lines · ~361 tokens

Other plugins with /audit-deps

/dependency-audit

2.9k

Audits project dependencies for security vulnerabilities, outdated versions, licenses, maintenance, performance, conflicts, and supply chain risks; outputs health report and update plan.

all-commands

/dependency-audit

1.7k

Audits project dependencies for vulnerabilities and outdated packages using native tools, categorizes by severity, and generates prioritized upgrade plans with formatted reports.

claude-code-toolkit

/check-deps

2.2k

Checks project dependencies for vulnerabilities, outdated packages, and license issues across npm, pip, Composer, Bundler, and Go modules. Generates report with CVE details, upgrade paths, and commands.

dependency-checker

/deps-audit

35.7k

Scans project dependencies for vulnerabilities, outdated packages, license conflicts, and supply chain risks, then provides actionable remediation strategies.

codebase-cleanup

/deps

118

Audits project dependencies for security vulnerabilities (default), lists outdated packages, or previews upgrades across detected package managers. Outputs vulnerability lists, update tables, and prioritized fix commands.

1 tool

/dependency-audit

Audits project dependencies for security vulnerabilities, license compliance, outdated packages, bundle size, and performance issues, producing analysis reports and recommendations.

6 tools

dependency-manager

Stats

LanguageJavaScript

Parent stars1,716

Parent forks535

MaintenanceFair

Last CommitFeb 4, 2026

Actions

View Source View Plugin View on GitHub View README

Help us improve

Share bugs, ideas, or general feedback.

Stats

Actions

Help us improve

Share bugs, ideas, or general feedback.

Audit all project dependencies for vulnerabilities, licensing issues, and maintenance status. ## Steps 1. Detect the package manager and run native audit: - npm: `npm audit --json` - pnpm: `pnpm audit --json` - pip: `pip-audit --format json` - cargo: `cargo audit --json` 2. Check package maintenance status: - Last publish date for each dependency. - Open issue count and response time. - Whether the package is deprecated. 3. Verify license compatibility: - List all dependency licenses. - Flag any copyleft licenses (GPL) in permissive projects. - Flag packages ...

Dependency Audit - <date> Vulnerabilities: <C>critical, <H>high, <M>moderate, <L>low Licenses: <N> permissive, <N> copyleft, <N> unknown Maintenance: <N> actively maintained, <N> stale, <N> deprecated Unused: <list> Priority actions: 1. [CRITICAL] Upgrade <pkg> to fix CVE-XXXX 2. [WARNING] Replace deprecated <pkg> with <alternative>

Audit all project dependencies for vulnerabilities, licensing issues, and maintenance status.

Steps

Detect the package manager and run native audit:
- npm: npm audit --json
- pnpm: pnpm audit --json
- pip: pip-audit --format json
- cargo: cargo audit --json
Check package maintenance status:
- Last publish date for each dependency.
- Open issue count and response time.
- Whether the package is deprecated.
Verify license compatibility:
- List all dependency licenses.
- Flag any copyleft licenses (GPL) in permissive projects.
- Flag packages with no license specified.
Analyze dependency tree depth and size impact.
Identify unused dependencies by cross-referencing imports.
Generate a prioritized action list.

Format

Dependency Audit - <date>

Vulnerabilities: <C>critical, <H>high, <M>moderate, <L>low
Licenses: <N> permissive, <N> copyleft, <N> unknown
Maintenance: <N> actively maintained, <N> stale, <N> deprecated
Unused: <list>

Priority actions:
  1. [CRITICAL] Upgrade <pkg> to fix CVE-XXXX
  2. [WARNING] Replace deprecated <pkg> with <alternative>

Rules

Always report the full vulnerability chain (which direct dep pulls in the vulnerable transitive dep).
Flag any dependency with no updates in the last 12 months.
Check that lock files are present and committed.
Never recommend removing a dependency without verifying it is truly unused.

/audit-deps

Popularity

Invocation

Context Preview

Command Content

Other plugins with /audit-deps

Help us improve

Help us improve

Find plugins for your project

/audit-deps

Popularity

Invocation

Context Preview

Command Content

Steps

Format

Rules

Other plugins with /audit-deps

Help us improve

Steps

Format

Rules