Audit dependencies and licenses
qa-dependency-auditsubagentsetup L2★0
MediMindAI/MedPlum_MediMind ↗What it does
Audit npm vulnerabilities, outdated packages, and TypeScript strictness
Best for
Pre-deployment QA when you need a single report combining vulnerabilities, outdated packages, and strictness findings
Inputs
- · [object Object]
- · [object Object]
Outputs
- · [object Object]
Requires
- · npm audit
- · npm outdated
Preconditions
- · npm audit runnable
- · Target directories specified
- · License allowlist defined
Failure modes
- · Treating all outdated as urgent
- · Flagging GPL in devDependencies
- · as any casts without context
Trust signals
- · npm audit JSON parsed for severity
- · Critical packages prioritized
- · GPL violations on prod deps only