Skills
.Work. You
Rest

dependency-supply-chain

Official

Secure your project dependencies against malicious threats.

Software Engineering#security#audit#threat detection#supply chain#dependency#lockfile
AuthorGoldenWing-360
Version1.0.0
Installs0

System Documentation

What problem does it solve?

It helps developers audit and defend against malicious dependencies in package ecosystems such as npm, PyPI, and others, ensuring supply chain integrity.

Core Features & Use Cases

  • Dependency auditing: Guides on how to verify and monitor dependencies for vulnerabilities and malicious behavior.
  • Lockfile hygiene enforcement: Advises on maintaining consistent and secure lockfiles across projects.
  • Supply chain threat detection: Provides strategies for detecting typosquats, post-install script misuse, and transitive dependencies risks.
  • Use Case: When onboarding a new project or reacting to a supply chain incident, use this skill to conduct a comprehensive dependency review and hygiene checks.

Quick Start

Use this dependency supply chain skill to identify risky dependencies, review lockfiles, and implement best practices in your project dependency management.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: dependency-supply-chain
Download link: https://github.com/GoldenWing-360/claude-security-skills/archive/main.zip#dependency-supply-chain

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.