Security Audit Weekly
Weekly npm audit scan, triage vulnerabilities by severity, and propose or apply safe patches.
Kickoff prompt
/loop 7d Start the "Security Audit Weekly" loop.
Goal: deliver a weekly npm audit summary with a remediation plan.
Between iterations run: npm audit --json
Exit when: summary is posted with prioritized fixes.
Step 1: Run npm audit, triage by severity, and propose safe remediation steps.Basic information
Category
Maintenance
Goal
deliver a weekly npm audit summary with a remediation plan.
Check command
npm audit --json
Exit when
summary is posted with prioritized fixes.
Supported agents
Claude Code
Steps
- 1
Run npm audit
Run npm audit and capture critical, high, and moderate findings.
npm audit --json - 2
Triage findings
Group vulnerabilities by severity and exploitability. Flag dev-only vs production exposure.
- 3
Propose fixes
Recommend npm audit fix, targeted overrides, or dependency bumps. Note breaking changes.
More Maintenance loops
Docs Sync After Edits
After code changes, find affected docs and update README, API references, and inline comments to match.
Dependency Upgrade One-by-One
Upgrade a single outdated package per iteration, fix breakages, and commit — safer than bulk npm update.
Knip Until Clean
Find and remove dead exports, unused files, and orphan dependencies — loop until knip reports clean.
Dependency Audit Weekly
Weekly loop to check outdated dependencies, propose safe upgrades, and open a summary.