harden-supply-chain-sec
Harden software supply chain security by configuring minimum release age across package managers. Auto-detects active managers or accepts explicit argument. Supports pnpm, yarn, bun, npm, uv. Warns for unsupported managers (pip, cargo, go). Includes dry-run confirmation, version compatibility check, frozen-lockfile awareness, and optional (--harden) post-config security hardening of CLAUDE.md/AGENTS.md. Default duration: 7 days. Triggers on keywords: harden supply chain, supply chain security, minimum release age, package age gate
Installation and usage
Harden software supply chain security by configuring minimum release age across package managers. Auto-detects active managers or accepts explicit argument. Supports pnpm, yarn, bun, npm, uv. Warns for unsupported managers (pip, cargo, go). Includes dry-run confirmation, version compatibility check, frozen-lockfile awareness, and optional (--harden) post-config security hardening of CLAUDE.md/AGENTS.md. Default duration: 7 days. Triggers on keywords: harden supply chain, supply chain security, minimum release age, package age gate
Depois de instalar, você pode usar esta skill executando o seguinte comando no terminal:
skills use harden-supply-chain-sec