AgentSkillsCN

dependency-risk-audit

审计依赖项的许可、安全性和维护风险。在高级开发者需要风险评估时使用。

SKILL.md
--- frontmatter
name: dependency-risk-audit
description: Audit dependencies for licensing, security, and maintenance risk. Use when a senior developer needs risk assessment.

Dependency Risk Audit

Purpose

Audit dependencies for licensing, security, and maintenance risk.

Inputs to request

  • Dependency list and versions.
  • License policies and security requirements.
  • Criticality of each dependency.

Workflow

  1. Inventory dependencies and ownership status.
  2. Check licenses and known vulnerabilities.
  3. Recommend replacements or mitigation plans.

Output

  • Dependency risk report with priorities.

Quality bar

  • Highlight unmaintained or high-risk packages.
  • Include upgrade or replacement paths.