Claude Code Plugins

Community-maintained marketplace

Feedback

dependency-analyzer

@oimiragieo/agent-studio
1
0

Analyzes project dependencies, detects outdated packages, identifies breaking changes, and suggests safe update strategies. Helps maintain dependency health and security.

Install Skill

1Download skill
2Enable skills in Claude

Open claude.ai/settings/capabilities and find the "Skills" section

3Upload to Claude

Click "Upload skill" and select the downloaded ZIP file

Note: Please verify skill by going through its instructions before using it.

SKILL.md

name dependency-analyzer
description Analyzes project dependencies, detects outdated packages, identifies breaking changes, and suggests safe update strategies. Helps maintain dependency health and security.
allowed-tools read, write, glob, search, codebase_search, Bash
version 1
best_practices Analyze package.json/requirements.txt/go.mod, Check for security vulnerabilities, Identify breaking changes, Suggest update strategies, Validate compatibility
error_handling graceful
streaming supported
templates dependency-report, update-plan, security-audit
Dependency Analyzer Skill - Analyzes project dependencies, detects outdated packages, identifies breaking changes, and suggests safe update strategies. - Analyzing dependency health - Planning dependency updates - Detecting security vulnerabilities - Identifying breaking changes - Validating compatibility

Step 1: Identify Dependency Files

Locate dependency files:

  • package.json (Node.js)
  • requirements.txt (Python)
  • go.mod (Go)
  • Cargo.toml (Rust)
  • pom.xml (Java/Maven)

Step 2: Analyze Dependencies

Examine dependencies:

  • Read dependency files
  • Check versions
  • Identify outdated packages
  • Note version constraints

Step 3: Check for Updates

Check available updates:

  • Query package registries
  • Compare current vs latest versions
  • Identify major/minor/patch updates
  • Check changelogs for breaking changes

Step 4: Security Audit

Check for vulnerabilities:

  • Scan for known vulnerabilities
  • Check security advisories
  • Identify high-risk packages
  • Suggest security updates

Step 5: Generate Report

Create dependency report:

  • List outdated packages
  • Identify breaking changes
  • Suggest update strategy
  • Provide migration guidance
**Integration with DevOps Agent**: - Manages dependency updates - Implements update strategies - Validates compatibility

Integration with Security Architect Agent:

  • Reviews security vulnerabilities
  • Validates security updates
  • Ensures compliance
1. **Regular Analysis**: Analyze dependencies regularly 2. **Security First**: Prioritize security updates 3. **Test Updates**: Always test after updates 4. **Gradual Updates**: Update incrementally 5. **Document Changes**: Track update decisions **Dependency Health Report** 
# Dependency Health Report

## Summary
- Total Dependencies: 45
- Outdated: 12
- Vulnerable: 3
- Up to Date: 30

## Outdated Packages
- react: 18.0.0 → 18.2.0 (minor update)
- next: 13.4.0 → 14.0.0 (major update - breaking changes)
- typescript: 5.0.0 → 5.3.0 (patch update)

## Security Vulnerabilities
- lodash: 4.17.20 (CVE-2021-23337) - Update to 4.17.21
- axios: 0.21.1 (CVE-2021-3749) - Update to 1.6.0

## Update Recommendations
1. Update patch versions (safe)
2. Review minor updates (low risk)
3. Plan major updates (breaking changes)
**Update Plan** 
# Dependency Update Plan

## Phase 1: Patch Updates (Safe)
- Update lodash: 4.17.20 → 4.17.21
- Update typescript: 5.0.0 → 5.3.0

## Phase 2: Minor Updates (Low Risk)
- Update react: 18.0.0 → 18.2.0
- Update @types/node: 20.0.0 → 20.10.0

## Phase 3: Major Updates (Breaking Changes)
- Update next: 13.4.0 → 14.0.0
  - Breaking changes: [List]
  - Migration steps: [Steps]
  - Testing required: [Tests]
**Example Commands**: 
# Analyze dependencies
Analyze dependencies for this project

# Check for updates
Check for dependency updates

# Security audit
Perform security audit of dependencies

# Generate update plan
Generate update plan for major version updates