ContextQMD
Back to Ruflo

SKILL

plugins/ruflo-security-audit/skills/dependency-check/SKILL.md

3.14.4658 B
Original Source

Check dependencies for CVEs and outdated packages:

bash
npx @claude-flow/cli@latest security cve --list
npx @claude-flow/cli@latest security cve --severity critical
npx @claude-flow/cli@latest security scan --type deps --depth deep
npm audit --json
SeverityAction
criticalBlock deployment, fix immediately
highFix before next release
moderateSchedule fix within sprint
lowTrack in backlog

Auto-fix via the scan command: npx @claude-flow/cli@latest security scan --type deps --fix

For continuous monitoring, dispatch via MCP: mcp__claude-flow__hooks_worker-dispatch({ trigger: "audit" })