← Back to Library|SkillsDependency Auditor
Install this skill: copy and save to ~/.claude/skills/dependency-auditor/SKILL.md

Dependency Auditor

Become a Member

Checks package.json for unused packages, outdated versions, duplicate functionality, and heavy dependencies with lighter alternatives.

2 min|Beginner
BuildQuick WinDeveloper
SKILL.md~/.claude/skills/dependency-auditor/
---
name: dependency-auditor
description: |
  Audits project dependencies for unused packages, outdated versions, and bloat.
  IMPORTANT: Activate this skill whenever the user asks to "audit dependencies",
  "check packages", "clean up package.json", or "find unused packages".
  This skill MUST be used for all dependency audit requests.
---

# Dependency Auditor

Audits your package.json to find unused packages, outdated versions, duplicate functionality, and heavy dependencies that have lighter

Members Only

Become a member to access this content

Become a Member

Audits your package.json to find unused packages, outdated versions, duplicate functionality, and heavy dependencies that have lighter alternatives.

Say any of these to activate this skill: - "audit dependencies" - "check my packages" - "clean up package.json" - "Use skill: dependency auditor"

1. Read package.json and list all dependencies and devDependencies 2. Search the codebase for actual imports of each package 3. Flag packages that are installed but never imported 4. Check for packages that do the same thing (e.g., both axios and node-fetch) 5. Identify heavy packages that have lighter alternatives (e.g., moment.js vs date-fns) 6. Check for packages with known security vulnerabilities 7. Report findings grouped by: unused, duplicate, heavy, vulnerable

  • Do not auto-remove packages without user approval
  • Some packages are used indirectly (PostCSS plugins, Babel presets), check config files too
  • Check for packages used only in scripts (package.json scripts section)
  • Suggest specific lighter alternatives, not just "use something smaller"
  • Flag devDependencies in production dependencies and vice versa
  • Best with: Claude Code CLI (can search the full codebase for imports)
  • Also works: Cursor, Windsurf
  • Expects: A Node.js project with a package.json file
  • Unused packages list with confidence level
  • Duplicate functionality pairs with recommendation on which to keep
  • Heavy packages with lighter alternative suggestions and size comparison
  • Security vulnerabilities if any found

You might also like

View all skills

Error Analyzer

Takes an error message or stack trace and systemat...

Component Builder

Generates UI components following your project's e...

Test Generator

Analyzes a file and generates comprehensive unit t...