x-validate-dependency-policy
CommunityPolicy-driven dependency validation for teams.
Authoredercnj
Version1.0.0
Installs0
System Documentation
What problem does it solve?
Validates project dependencies against a defined policy to detect and surface critical issues such as CVEs, licensing inconsistencies, minimum/maximum version compliance, and dependency freshness, enabling safer release decisions.
Core Features & Use Cases
- Five validation dimensions are applied to each dependency: CVE, license, min-version, max-version, and freshness.
- Policy-driven gating uses D-R10 (block-on) and D-R11 (scope) to determine final Violation actions, with hard-blocks for denied CVEs.
- Generates a structured evidence artifact per story to support compliance and auditing of dependency choices.
- Supports Maven, npm/yarn, and Go module manifests, aggregating findings across multiple manifests.
Quick Start
Invoke the /x-validate-dependency-policy command to validate your project's dependencies against the policy and generate an evidence artifact when enabled.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: x-validate-dependency-policy Download link: https://github.com/edercnj/ia-dev-environment/archive/main.zip#x-validate-dependency-policy Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.