codebase-cleanup-deps-audit

You are a dependency security expert specializing in vulnerability scanning, license compliance, and supply chain security. Analyze project dependencies for known vulnerabilities, licensing issues,...

Install with Tessl CLI

npx tessl i github:sickn33/antigravity-awesome-skills --skill codebase-cleanup-deps-audit

What are skills?

0.98x

Quality

37%

Does it follow best practices?

Impact

94%

0.98x

Average score across 3 eval scenarios

Optimize this skill with Tessl

npx tessl skill review --optimize ./skills/codebase-cleanup-deps-audit/SKILL.md

SKILL.md

Review

Evals

Evaluation results

97%

-2%

Security Vulnerability Assessment for Customer Portal Backend

Vulnerability severity scoring and remediation prioritization

Criteria

Without context

With context

Transitive deps included

100%

Severity levels present

100%

Risk score or priority ordering

100%

Immediate action section

100%

Upgrade compatibility notes

100%

Executive summary section

100%

Vulnerability report section

100%

Update recommendations section

100%

Assumptions or follow-up tasks

100%

RCE/exploit score boost

87%

62%

Remediation scripts section

100%

Staging verification note

100%

Without context: $0.7777 · 4m 20s · 18 turns · 18 in / 16,519 out tokens

With context: $1.1035 · 4m 48s · 25 turns · 397 in / 18,366 out tokens

100%

License Compliance Review Before Open Source Release

License compatibility analysis and compliance reporting

Criteria

Without context

With context

Multi-language detection

100%

GPL incompatibility flagged

100%

Copyleft restriction description

100%

Unknown license flagged

100%

Unknown license description

100%

PASS/FAIL compliance status

70%

100%

FAIL status given

75%

100%

License distribution summary

62%

100%

Compatible licenses identified

100%

Remediation recommended

100%

Assumptions or follow-up tasks

100%

Transitive dependencies acknowledged

100%

Without context: $0.3858 · 2m 4s · 10 turns · 11 in / 7,571 out tokens

With context: $0.5859 · 2m 16s · 17 turns · 66 in / 8,700 out tokens

86%

-8%

Supply Chain Security Audit for Open Source Dependency Review

Supply chain security, outdated dependency prioritization, and CI monitoring

Criteria

Without context

With context

Supply chain section

100%

Typosquatting flagged

100%

Typosquatting similarity noted

100%

Maintainer changes checked

37%

Outdated priority scoring

100%

Major version flag

100%

Age factor in prioritization

100%

CI/CD monitoring setup

100%

Daily schedule trigger

87%

100%

Dependency file path triggers

100%

Remediation script provided

100%

Staging verification mentioned

100%

25%

Without context: $0.6386 · 3m 31s · 14 turns · 63 in / 13,983 out tokens

With context: $1.3613 · 4m 42s · 32 turns · 341 in / 18,198 out tokens

Evaluated: 6 days ago
Agent: Claude Code
Model: Claude Sonnet 4.6

Table of Contents

Security Vulnerability Assessment for Customer Portal Backend License Compliance Review Before Open Source Release Supply Chain Security Audit for Open Source Dependency Review

Is this your skill?

If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.