Dependency Risk Audit

Purpose

Audit dependencies for licensing, security, and maintenance risk.

Inputs to request

• Dependency list and versions.
• License policies and security requirements.
• Criticality of each dependency.

Workflow

1. Inventory dependencies and ownership status.
2. Check licenses and known vulnerabilities.
3. Recommend replacements or mitigation plans.

Output

• Dependency risk report with priorities.

Quality bar

• Highlight unmaintained or high-risk packages.
• Include upgrade or replacement paths.