/sentinel:audit-deps

Dependency CVE Audit

Focused vulnerability audit. Reports CVEs with installed/fixed versions and exact upgrade commands.

What it does

Determines highest-safe-version (not just 'latest')

Accounts for major version bumps

Supports --fix for auto-upgrade of patch/minor bumps

Other Sentinel skills

/sentinel:assessSecurity AssessmentAssesses your project's security surface — detects stack, package managers, security tooling, and integrations. Generates config for ongoing scanning.

/sentinel:scanFull Security ScanCombines Semgrep static analysis and dependency audit. Writes findings to tasks-plans/tasks.md with severity mapping.

/sentinel:headersHTTP Security HeadersAnalyzes security headers for a given URL. Context-aware grading based on exploitable risk, not checkbox compliance.

/sentinel:package-riskPackage Risk AnalysisAnalyzes an installed package's source code for suspicious behavior patterns — eval calls, network requests, environment access, and obfuscation.

Get Started Back to Sentinel