← Back to browse
skill

Downgrading Build Tools for Transitive Vulnerabilities

From sbroenne/mcp-server-excel ★ 158

dependabot transitive-vulnerability tooling-downgrade npm-audit build-process

Summary

This skill guides developers through surgically downgrading build-only dependencies when Dependabot or npm audit flags unpatchable transitive vulnerabilities. It emphasises validating the fix by running the full packaging workflow, rather than relying solely on audit checks.

View on GitHub → Raw SKILL.md