How does this skill ensure my project doesn't break during updates?

Every optimization and update operation requires 'npm run build' and 'npm test' to pass successfully before the maintenance task is marked as complete.

Can I see what changes will be made before they happen?

Yes, you can use the /lt-dev:maintain-check command for a dry-run analysis that shows proposed changes and outdated packages without applying any modifications.

What is the best way to use this before a software release?

We recommend the /lt-dev:maintain-pre-release command, which performs conservative, patch-only updates to minimize risk before deployment.

Does it handle security vulnerabilities?

Yes, the skill includes a dedicated /lt-dev:maintain-security command that focuses specifically on fixing vulnerabilities identified by npm audit.

Can it distinguish between production and development dependencies?

Absolutely; the skill analyzes your codebase imports to intelligently move dev-only packages to the devDependencies section of your package.json.

NPM Package Maintenance

Name: NPM Package Maintenance
Author: lenneTech

bylenneTech

0•

安全与测试

Automates dependency optimization, security patching, and package lifecycle management for Node.js projects.

This skill provides a comprehensive suite of tools for maintaining npm packages, allowing users to automatically identify and remove unused dependencies, fix security vulnerabilities via npm audit, and properly categorize packages between dependencies and devDependencies. It offers several modes of operations—from dry-run analysis and conservative pre-release updates to full project-wide optimization—ensuring that every change is validated against the project's build and test suite to maintain repository stability.

主要功能

01Intelligent categorization of dependencies versus devDependencies

02Rapid security patching for vulnerabilities found via npm audit

03Specialized maintenance modes for pre-release and post-feature workflows

04Automated identification and removal of unused npm packages

05Risk-based version updates with build and test verification

060 GitHub stars

使用场景

01Cleaning up repository dependencies after a large feature development phase

02Performing urgent security audits and fixing CVEs without breaking the build

03Optimizing package.json for better bundle sizes and faster CI/CD pipelines

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add lennetech/claude-code maintaining-npm-packages

For use in Claude.ai and ChatGPT

Download Skill