Shipyard
/shipyard:deps-checkFREEDependency Health
Broader than Sentinel — includes outdated packages. Determines highest-safe-version accounting for cascading vulnerabilities.
What it does
Integrates with Composure commit gate (blocks on Critical/High CVEs on staged files)
What you get by plan
FREE
CVE + outdated audit that picks the highest safe version.
- npm / pnpm / yarn / pip / cargo auditing
- Highest-safe-version resolution per package
- Outdated package surfacing, not just CVEs
- Commit gate blocks Critical/High on staged files