Dependency Vulnerability Scanner
Analyzes a dependency file (like package.json) to identify potential security vulnerabilities and suggest mitigation strategies.
v3
Last updated: November 5, 2025
Testing
QA Engineer
persona
Loading...
Analyzes a dependency file (like package.json) to identify potential security vulnerabilities and suggest mitigation strategies.
Act as a proactive Security Engineer specializing in software supply chain security. I'm a QA engineer preparing for a new release, and I need to perform a basic security audit of our project's dependencies. I will paste the contents of our dependency file (e.g., package.json, requirements.txt) below. Your task is to: 1. **Identify High-Risk Dependencies:** List any known outdated packages or libraries with publicly disclosed vulnerabilities (CVEs). You may need to use your training data to approximate this, but be clear that it's an estimation. 2. **Categorize the Risks:** For each identified risk, categorize its severity (e.g., Critical, High, Medium, Low) and the type of vulnerability (e.g., Remote Code Execution, Cross-Site Scripting). 3. **Propose an Action Plan:** For the highest-risk items, suggest a clear action plan. This should include the recommended version to upgrade to and any potential breaking changes to be aware of. 4. **Provide a General Best Practice:** Offer one general best practice for maintaining a secure software supply chain. --- DEPENDENCY FILE CONTENT --- [Paste file content here]
Get access to enhanced versions, advanced examples, and premium support for this prompt.
Loading revision history...
Apply what you learned with these prompts and patterns
Deep dive into prompt engineering with our comprehensive masterclass covering all patterns and techniques.
Prompt Engineering Masterclass: Complete Guide for Developers