Search Results: npm-supply-chain

Found 2 Skills

Security & Compliancenitorcreations/nitor-agen...

npm-supply-chain-audit

Audit and fix npm supply-chain security issues in the current repo. Detects the package manager, checks for missing protections (lockfile, lifecycle script blocking, release-age cooldown, pnpm exotic subdeps/trust policy, Yarn Berry hardened mode), presents findings, and applies fixes after user confirmation. Supports npm, pnpm, Yarn, Bun, and Aube. Use when asked to "harden npm", "fix supply chain", "secure dependencies", or "audit npm security".

🇺🇸|EnglishTranslated

Security & Compliancetartinerlabs/skills

deps

Use when hardening npm supply chain, pinning dependency versions, adding .npmrc security flags, or setting up Renovate and audit workflows. Locks down install-time scripts, registries, version ranges, and CI checks.

🇺🇸|EnglishTranslated