← ClaudeAtlas

maven-dependency-auditlisted

Audit Maven dependencies for outdated versions, security vulnerabilities, and conflicts. Use when user says "check dependencies", "audit dependencies", "outdated deps", or before releases.
decebals/claude-code-java · ★ 599 · AI & Automation · score 82
Install: claude install-skill decebals/claude-code-java
# Maven Dependency Audit Skill Audit Maven dependencies for updates, vulnerabilities, and conflicts. ## When to Use - User says "check dependencies" / "audit dependencies" / "outdated dependencies" - Before a release - Regular maintenance (monthly recommended) - After security advisory ## Audit Workflow 1. **Check for updates** - Find outdated dependencies 2. **Analyze tree** - Find conflicts and duplicates 3. **Security scan** - Check for vulnerabilities 4. **Report** - Summary with prioritized actions --- ## 1. Check for Outdated Dependencies ### Command ```bash mvn versions:display-dependency-updates ``` ### Output Analysis ``` [INFO] The following dependencies in Dependencies have newer versions: [INFO] org.slf4j:slf4j-api ......................... 1.7.36 -> 2.0.9 [INFO] com.fasterxml.jackson.core:jackson-databind . 2.14.0 -> 2.16.1 [INFO] org.junit.jupiter:junit-jupiter ............. 5.9.0 -> 5.10.1 ``` ### Categorize Updates | Category | Criteria | Action | |----------|----------|--------| | **Security** | CVE fix in newer version | Update ASAP | | **Major** | x.0.0 change | Review changelog, test thoroughly | | **Minor** | x.y.0 change | Usually safe, test | | **Patch** | x.y.z change | Safe, minimal testing | ### Check Plugin Updates Too ```bash mvn versions:display-plugin-updates ``` --- ## 2. Analyze Dependency Tree ### Full Tree ```bash mvn dependency:tree ``` ### Filter for Specific Dependency ```bash mvn dependency:tree -Dincludes=org.slf4j `