← 返回 Skills 市场
dep-audit
作者
Todd Kuehnl
· GitHub ↗
· v0.2.1
817
总下载
0
收藏
2
当前安装
6
版本数
在 OpenClaw 中安装
/install dep-audit
功能描述
Audit project dependencies for known vulnerabilities (CVEs). Supports npm, pip, Cargo, and Go. Zero API keys required. Safe-by-default: report-only mode, fix...
使用说明 (SKILL.md)
Dependency Audit Skill
Detect and report known vulnerabilities in your project's dependency tree. Supports npm, pip (Python), Cargo (Rust), and Go out of the box. No API keys. No config. Just point it at a project.
Activation
This skill activates when the user mentions:
- "audit", "vulnerability", "CVE", "dependency check", "supply chain", "security scan"
- Checking dependencies, lockfiles, or packages for issues
- Generating an SBOM (Software Bill of Materials)
Example Prompts
- "Audit this project for vulnerabilities"
- "Check all my repos in ~/projects for known CVEs"
- "Are there any critical vulnerabilities I should fix right now?"
- "Generate an SBOM for this project"
- "What dependencies need updating in this project?"
- "Audit only the Python dependencies"
Permissions
permissions:
exec: true # Required to run audit CLIs
read: true # Read lockfiles
write: on-request # SBOM generation writes sbom.cdx.json when user asks
network: true # Tools fetch advisory DBs
Agent Workflow
Follow this sequence exactly:
Step 1: Detect
Run the detection script to discover lockfiles and available tools:
bash \x3Cskill_dir>/scripts/detect.sh \x3Ctarget_directory>
If no target directory is given, use the current working directory (.).
Parse the JSON output. Note which ecosystems have lockfiles and which tools are available.
Step 2: Audit Each Ecosystem
For each ecosystem detected in Step 1:
-
If the audit tool is available, run the corresponding script:
bash \x3Cskill_dir>/scripts/audit-npm.sh \x3Cdirectory> bash \x3Cskill_dir>/scripts/audit-pip.sh \x3Cdirectory> bash \x3Cskill_dir>/scripts/audit-cargo.sh \x3Cdirectory> bash \x3Cskill_dir>/scripts/audit-go.sh \x3Cdirectory> -
If the tool is missing, tell the user which tool is needed and the install command from the detect output. Skip that ecosystem and continue with others.
Note:
yarn.lockandpnpm-lock.yamlare detected asyarnandpnpmecosystems respectively. Audit support is npm-only in v0.1.x (package-lock.json). If only ayarn.lockorpnpm-lock.yamlis present, inform the user that dedicated yarn/pnpm audit is not yet supported and suggest runningyarn auditorpnpm auditmanually.
Each script outputs normalized JSON to stdout.
Step 3: Aggregate
Pipe or pass all per-ecosystem JSON results to the aggregator:
bash \x3Cskill_dir>/scripts/aggregate.sh \x3Cnpm_result.json> \x3Cpip_result.json> ... 1>unified.json 2>report.md
The aggregator outputs unified JSON to stdout and a Markdown report to stderr.
Capture both: 2>report.md for the Markdown, 1>unified.json for the JSON.
Step 4: Present Results
Show the user the Markdown report from the aggregator. Highlight:
- Total vulnerability count by severity
- Critical and High findings first (these need attention)
- Which ecosystems were scanned vs skipped
If zero vulnerabilities found: report "✅ No known vulnerabilities found." If no lockfiles found: report "No lockfiles found in \x3Cdir>. This skill works with npm, pip, Cargo, and Go projects."
Discord v2 Delivery Mode (OpenClaw v2026.2.14+)
When the user is in a Discord channel:
- Send a short first response with totals and only Critical/High findings.
- Keep the first message under ~1200 characters and avoid large Markdown tables up front.
- If Discord components are available, include quick actions:
Show Full ReportShow Fix CommandsGenerate SBOM
- If components are unavailable, provide the same options as a numbered list.
- Send long details in short chunks (\x3C=15 lines) to improve readability.
Step 5: Fix Suggestions (only if user asks)
If the user asks to fix vulnerabilities:
- List every fix command with the package name, current version, and target version.
- Suggest creating a branch first:
git checkout -b dep-audit-fixes - Ask for explicit confirmation before running ANY fix command.
- Never batch-run fix commands silently.
Example interaction:
I found these fix commands:
1. cd /home/user/project && npm audit fix
2. pip install requests>=2.31.0
I recommend creating a branch first:
git checkout -b dep-audit-fixes
Shall I run them? (yes/no)
Step 6: SBOM (only if user asks)
bash \x3Cskill_dir>/scripts/sbom.sh \x3Cdirectory>
Report the file location and component count.
Error Handling
| Situation | Behavior |
|---|---|
| Tool not found | Print which tool is missing + install command. Continue with available tools. |
| Audit tool fails | Capture stderr, report "audit failed for [ecosystem]: [error]". Continue with others. |
| Timeout (>30s per tool) | When timeout/gtimeout is available, report "audit timed out for [ecosystem], skipping". Continue. |
| Invalid target directory | Report "directory not found or not accessible" and stop that ecosystem scan (do not report false "clean"). |
| No lockfiles found | Report "No lockfiles found" + list supported ecosystems. |
jq not available |
Detection works without jq. Audit and aggregation require jq — install it first. |
| Malformed lockfile | Report parse error for that ecosystem. Continue with others. |
Aggregation Robustness
aggregate.shnow tolerates mixed inputs (valid results + error objects).- Invalid input objects are listed under
errorsin unified JSON and rendered in a "Skipped / Error Inputs" Markdown section. - If no valid ecosystem results are provided, aggregate output sets
status: "error"instead of crashing.
Safety
- Default mode is report-only. The skill never modifies files unless you explicitly ask for a fix and confirm.
- Audit tools read lockfiles — they do not execute project code.
- Fix commands (
npm audit fix,pip install --upgrade) are printed as suggestions. The agent will ask for confirmation before running them. - This skill checks known advisory databases (OSV, GitHub Advisory DB, RustSec). It does not detect zero-days or runtime vulnerabilities.
- No data is sent to third-party services beyond what the native audit tools do (they query public advisory databases).
- No telemetry. No tracking. No phone-home.
安全使用建议
This skill appears to do what it says: it runs local audit CLIs, aggregates results, and only makes changes when you explicitly ask and confirm. Before installing or running: 1) verify jq and any ecosystem audit tools you need (npm, pip-audit, cargo-audit, govulncheck) are installed — the registry metadata omitted this requirement; 2) be aware audit tools will contact their advisory servers (network access) to fetch vulnerability data; 3) SBOM generation writes a file to the target directory (the repo notes symlink-resolved paths — check the target path if using symlinks); 4) the scripts execute shell commands from the skill directory, so review the scripts if you do not trust the source; 5) the README shows a curl|sh install line for syft — avoid piping unreviewed scripts to sh unless you trust the source. If you plan to allow the agent to run fix commands, only confirm after reviewing the printed fix commands and consider running them in a dedicated branch or CI pipeline.
功能分析
Type: OpenClaw Skill
Name: dep-audit
Version: 0.2.1
The skill is designed for dependency auditing and includes strong safety measures like explicit confirmation for fixes and report-only defaults. However, it is classified as 'suspicious' due to two main factors: (1) The `scripts/detect.sh` and `scripts/sbom.sh` files suggest installing `syft` using `curl -sSfL ... | sh`, which is a common but risky practice that executes arbitrary remote code and poses a supply chain vulnerability if the remote script is compromised. (2) The `run_timeout` helper in multiple scripts (e.g., `aggregate.sh`, `audit-cargo.sh`) allows audit tools to run without a time limit if `timeout` or `gtimeout` are unavailable, creating a potential Denial of Service (DoS) vulnerability. While these are not direct malicious actions, they represent significant security risks and vulnerabilities.
能力评估
Purpose & Capability
The name/description (dependency CVE audit across npm/pip/Cargo/Go) align with the included scripts and SKILL.md workflow. One mismatch: registry metadata lists no required binaries, but the skill and SKILL.md clearly require jq and the respective audit CLIs (npm, pip-audit, cargo-audit, govulncheck, optional syft). This is a documentation/metadata omission rather than functionality misalignment.
Instruction Scope
SKILL.md instructs the agent to detect lockfiles, run per-ecosystem audit scripts, aggregate results, and only write an SBOM when requested. Scripts read lockfiles and run external audit tools; they do not execute project code. Network access is used only by upstream audit tools to fetch advisory DBs. The instructions include explicit confirmation gates before running fix commands.
Install Mechanism
There is no automated install spec (instruction-only), which keeps install risk low. The repository contains shell scripts that will be executed at runtime. Documentation suggests installing syft via a curl | sh line (README/SPEC) — that command is only a user-facing install suggestion, not an automated download performed by the skill, but it is a higher-risk installation pattern if the user copies it. Overall the lack of an automated arbitrary download is good.
Credentials
The skill requests no environment variables or credentials and does not attempt to access unrelated secrets. Declared permissions (exec, read, network, write:on-request) are proportionate: the skill must execute local audit CLIs, read lockfiles, and optionally write an SBOM when asked. No unexpected credential access is present.
Persistence & Privilege
The skill does not request permanent/always-on presence (always:false) and will only write files on explicit user request (SBOM). It does not modify other skills or global agent settings. Autonomous invocation is allowed by default but not combined with other red flags.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install dep-audit - 安装完成后,直接呼叫该 Skill 的名称或使用
/dep-audit触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v0.2.1
Rebrand to Anvil AI. Remove CacheForge marketing copy. Normalize install commands.
v0.2.0
Republish — metadata refresh, force re-index
v0.1.5
Docs: normalize CacheForge footer and CTA.
v0.1.4
Launch: CacheForge skills wave 1. Discord v2 delivery, security hardened, production-grade.
v0.0.1
- Initial release of dep-audit.
- Audits project dependencies for known vulnerabilities (CVEs) across npm, pip, Cargo, and Go.
- Report-only by default; requires explicit confirmation before applying fixes.
- No API keys or configuration required.
- Provides detailed Markdown reports, fix suggestions, and SBOM generation on request.
- Supports Discord delivery with quick action components and concise vulnerability summaries.
v0.1.3
Launch batch: CacheForge skills wave 1
元数据
常见问题
dep-audit 是什么?
Audit project dependencies for known vulnerabilities (CVEs). Supports npm, pip, Cargo, and Go. Zero API keys required. Safe-by-default: report-only mode, fix... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 817 次。
如何安装 dep-audit?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install dep-audit」即可一键安装,无需额外配置。
dep-audit 是免费的吗?
是的,dep-audit 完全免费(开源免费),可自由下载、安装和使用。
dep-audit 支持哪些平台?
dep-audit 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 dep-audit?
由 Todd Kuehnl(@tkuehnl)开发并维护,当前版本 v0.2.1。
推荐 Skills