Scans your project dependencies for known security vulnerabilities and outdated packages, then gives you a prioritized list of what needs attention. You'd run this before deployments or as part of CI to catch issues early, especially useful when you inherit a project or haven't updated dependencies in a while. It checks against vulnerability databases and flags breaking changes in major version bumps. The real value is in the risk assessment, it doesn't just dump CVE numbers but tells you which issues actually matter for your setup and what the upgrade path looks like.
npx skills add https://github.com/alirezarezvani/claude-skills --skill dependency-auditor