playbooks

home / skills / openclaw / skills / deps-checker

deps-checker skill

/skills/lxgicstudios/deps-checker

This skill analyzes your project dependencies to identify unused and outdated packages, guiding automatic cleanup and safer upgrades.

npx playbooks add skill openclaw/skills --skill deps-checker

Review the files below or copy the command above to add this skill to your agents.

Files (8)
SKILL.md
1.9 KB
---
name: deps-analyzer
description: Find unused and outdated dependencies. Use when your package.json is a mess.
---

# Deps Analyzer

Your package.json has 87 dependencies and you use maybe 40 of them. This tool finds the dead weight and tells you what to do about it.

**One command. Zero config. Just works.**

## Quick Start

```bash
npx ai-deps
```

## What It Does

- Finds unused dependencies you can remove
- Flags outdated packages with security issues
- Explains what each problematic dependency does
- Can auto-fix by removing unused deps

## Usage Examples

```bash
# Audit current project
npx ai-deps

# Auto-remove unused deps
npx ai-deps --fix

# Check a specific directory
npx ai-deps --dir ./my-project
```

## Best Practices

- **Run before major updates** - clean slate before upgrading
- **Check devDependencies too** - test tools get stale
- **Review before fixing** - some deps are used dynamically
- **Update lockfile after** - run npm install after removals

## When to Use This

- Your install is taking forever
- Bundle size is way too big
- npm audit has 47 warnings
- You inherited a project with mystery deps

## Part of the LXGIC Dev Toolkit

This is one of 110+ free developer tools built by LXGIC Studios. No paywalls, no sign-ups, no API keys on free tiers. Just tools that work.

**Find more:**
- GitHub: https://github.com/LXGIC-Studios
- Twitter: https://x.com/lxgicstudios
- Substack: https://lxgicstudios.substack.com
- Website: https://lxgicstudios.com

## Requirements

No install needed. Just run with npx. Node.js 18+ recommended. Needs OPENAI_API_KEY environment variable.

```bash
npx ai-deps --help
```

## How It Works

Runs depcheck to find unused dependencies and npm outdated to find stale ones. Sends the results to GPT-4o-mini for analysis, which explains each issue and prioritizes what to fix first.

## License

MIT. Free forever. Use it however you want.

Overview

This skill finds unused and outdated Node.js dependencies so you can shrink install time, reduce bundle size, and remove security risks. It runs with a single command and requires no config, returning actionable suggestions and optional automated fixes. Designed for projects with cluttered package.json files and long install times.

How this skill works

The tool runs depcheck to detect unused dependencies and npm outdated to identify stale or vulnerable packages. Results are analyzed and explained using a large language model that summarizes what each problematic dependency does and prioritizes fixes. You can run a dry report or enable --fix to auto-remove items flagged as unused; always review dynamic usages before applying changes.

When to use it

  • Before major version upgrades to start from a clean dependency set
  • When installs or CI builds are slow because of many packages
  • If npm audit shows multiple warnings or security issues
  • After inheriting a project with many undocumented dependencies
  • When bundle size or deploy artifacts need trimming

Best practices

  • Run the analyzer locally and review its explanations before auto-fixing
  • Check devDependencies as well as runtime deps to remove stale tooling
  • Keep a recent lockfile and run npm install after removals
  • Watch for dynamically imported or runtime-resolved packages that depcheck may miss
  • Use the tool regularly as part of maintenance, not only for emergency cleanup

Example use cases

  • Quick audit: npx ai-deps to get a prioritized report of unused and outdated packages
  • Auto-clean: npx ai-deps --fix to remove deps flagged as unused (review first)
  • Targeted scan: npx ai-deps --dir ./my-project to inspect a specific directory
  • Pre-release maintenance: run before upgrading major frameworks to reduce upgrade surface
  • Security triage: identify dependencies with known vulnerabilities to prioritize patches

FAQ

Does this require installation?

No install is needed; run via npx. Node.js 18+ is recommended.

Will --fix break my project?

Auto-removal targets deps detected as unused, but dynamic usage may be missed. Always review changes and run tests after fixes.

Does it detect vulnerabilities?

It flags outdated packages and highlights known issues from npm outdated; combine with npm audit for deeper security checks.