Overview

supply-chain-risk-auditor

CommunityLow risk

Identifies dependencies at heightened risk of exploitation or takeover. Use when assessing supply chain attack surface, evaluating dependency health, or scoping security engagements.

Claude CodeCodexCopilotgemini-clicursorwindsurfMaTE

Toolsgithubgitnpmgo

Languagesgo

Domainsecurityaisearch

Tasksgeneratesearchinstallcompare

Usage Guide

When to use

Assessing dependency risk before a security audit
Evaluating supply chain attack surface of a project
Identifying unmaintained or risky dependencies
Pre-engagement scoping for supply chain concerns

When not to use

Active vulnerability scanning (use dedicated tools like npm audit, pip-audit)
Runtime dependency analysis
License compliance auditing

AI Skill Advisor

AI SKILL ADVISOR

Should you use this skill?

AI-powered evaluation of trust, security posture, quality signals, and fit for your use case. Grounded in the skill's actual data.

Trust & Security

Quality Scores

Trust95%

Freshness80%

Compatibility100%

Adoption0%

Metadata Quality80%

Popularity

Source

Compatibility & Dependencies

Agent Compatibility

claude-code

inferrednpx-skills

codex

inferredagents-skills-dir

copilot

inferredgithub-skills-dir

gemini-cli

inferredgemini-skills-dir

cursor

inferred

windsurf

inferred

mate

inferrednpx-skills