Dependency Audit Skill

Detect and report known vulnerabilities in your project's dependency tree. Supports npm, pip (Python), Cargo (Rust), and Go out of the box. No API keys. No config. Just point it at a project.

Activation

This skill activates when the user mentions:

• "audit", "vulnerability", "CVE", "dependency check", "supply chain", "security scan"
• Checking dependencies, lockfiles, or packages for issues
• Generating an SBOM (Software Bill of Materials)

Example Prompts