ExQuality.Stages.Dependencies (ExQuality v0.2.0)

View Source

Checks dependency health by running:

  1. mix deps.unlock --check-unused - Detects dependencies in mix.lock that are no longer referenced in mix.exs
  2. mix deps.audit - Scans dependencies for known security vulnerabilities using the mix_audit package

Both checks run in parallel and results are combined.

This stage always runs (unused dependency check). The security audit is automatically enabled only if :mix_audit is in deps.

Summary

Functions

run(config)

Runs the dependencies stage.

Functions

run(config)

@spec run(keyword()) :: ExQuality.Stage.result()

Runs the dependencies stage.

Config options

  • check_unused - Check for unused dependencies (default: true)
  • audit - Run security audit if available (default: :auto)
  • audit_available - Whether mix_audit is available (set by auto-detection)