What package managers are supported by this skill?

The skill supports a wide range of popular package managers including npm, yarn, pnpm, and pip, making it versatile for both JavaScript and Python environments.

Can it automatically fix security vulnerabilities?

It identifies vulnerabilities and generates prioritized update plans and security audit reports, allowing developers to review and apply safe update paths.

How does it handle major version upgrades with breaking changes?

The skill analyzes update paths and provides migration guides specifically designed to address breaking changes and compatibility issues during version jumps.

Is a Windsurf IDE required to use this skill?

Yes, this skill is designed to work specifically with the Windsurf IDE and its Cascade feature to provide contextual dependency insights.

Windsurf Dependency Management

Name: Windsurf Dependency Management
Author: jeremylongshore

byjeremylongshore

•

1,030

Security & Testing

Automates dependency analysis and security vulnerability scanning for Windsurf projects across multiple package managers.

About

This skill streamlines the process of maintaining project health by integrating security audits and dependency updates directly into the Windsurf environment. It identifies vulnerabilities using tools like npm audit, suggests safe update paths based on semantic versioning, and helps developers navigate complex migration paths for major version upgrades across ecosystems like Node.js and Python, ensuring software supply chain security and stability.

Key Features

Semantic versioning-aware update recommendations
Multi-package manager support including npm, yarn, pnpm, and pip
Automated vulnerability scanning and security audits
Breaking change detection and migration path planning
Comprehensive compatibility matrix generation for versioning
1,030 GitHub stars

Use Cases

Routine security auditing and automated vulnerability patching
Planning and executing major version upgrades for project libraries
Automating the identification of outdated or insecure packages

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add jeremylongshore/claude-code-plugins-plus-skills windsurf-dependency-management

For use in Claude.ai and ChatGPT

Download Skill

GitHub