Audit Dependencies for Risk
dependency-auditworkflowsetup L3★0
frankxai/workflow-tier-plugin ↗What it does
Security + compatibility audit of dependencies
Best for
Security and compatibility audit of dependency trees with CVE verification.
Inputs
- · mode (default/release)
Outputs
- · critical/high/medium vulnerabilities
- · compatibility matrix
- · remediation plan
Requires
- · dependency scanner
- · CVE lookup
- · npm/pip audit
Preconditions
Package manager lockfile present
Failure modes
- · CVE database stale
- · false transitive vulns
Trust signals
- · model-tiered analysis
- · fan-out per category