cybernetic
← library

Search packages and assess security risk

package-searchskillsetup L23,035
davepoon/buildwithclaude
What it does

Assess security risk before adding dependencies

Best for

Teams evaluating dependencies before integrating them into their supply chain

Inputs
  • · Package name and ecosystem (npm, pip, go, etc.)
Outputs
  • · Security risk assessment
  • · Dependency count
  • · Known vulnerabilities
  • · Maintenance status
Requires
  • · NPM, PyPI, Go, or other registry APIs
Preconditions
  • · Package ecosystem known (npm, pip, go, etc.)
  • · Network access to registries
Failure modes
  • · Package not found
  • · Registry unreachable
  • · Conflicting vulnerability data
Trust signals
  • · Aggregates security data from multiple sources
  • · Flags supply-chain risk signals