Security Scan

Resolve npm dependency vulnerabilities detected by Snyk.io security scans.

Activation Conditions

Action	Rule
Fix direct deps	`vuln-direct-deps.md`
Fix transitive deps	`vuln-transitive-deps.md`

Parse vulnerability report: package, version, CVE/CWE, severity, fixed version
Categorize as direct (in package.json) or transitive (pulled in by another package)

Check package.json for current versions and existing overrides
Check lockfile for actual resolved versions
Search source code for direct usage of vulnerable package
Check npm registry for available fixed versions: npm view <package> versions --json

See rules for specific fix patterns.

bun i --yarn
bun run type:check
bun run lint
bun run build
bun run test

All must pass.

See rules/ directory for detailed guidance.