KiloClawPowered by OpenClaw
Back to Cookbook
OpenClaw recipe

Dependency Watchdog

Daily scans for vulnerable and outdated dependencies so you don't patch manually

A daily security scanner for your GitHub repos that reads dependency files, cross-references versions against CVE databases and GitHub Security Advisories, and delivers a prioritized Telegram digest grouped by severity — with memory to suppress repeat alerts.

CommunitySubmitted by CommunityWork15 min
Try in KiloClawFree 7-day trial

INTEGRATIONS NEEDED

🐙GitHub

PROMPT

Set up Dependency Watchdog for my GitHub repos. Scan all dependency files (package.json, requirements.txt, Cargo.toml, go.mod) daily against CVE databases and GitHub Security Advisories. Categorize findings as 🔴 Critical (with fix instructions), 🟡 Outdated (major versions behind), or 🟢 Stale (minor patches), and send a prioritized Telegram digest each morning. Use memory to suppress repeat alerts — only re-surface an issue if severity escalates. My repos are: [repo1, repo2]

How It Works

Dependency Watchdog is a daily security scanner for your GitHub repos. Your Claw reads

dependency files across your projects (package.json, requirements.txt, Cargo.toml, go.mod,

and more), checks each package against its latest stable release, and cross-references

findings against CVE databases and GitHub Security Advisories using web search and browser

tools.

Findings are categorized into three tiers — 🔴 Critical (active CVEs with remediation

steps), 🟡 Outdated (major versions behind), 🟢 Stale (minor/patch updates) — and delivered

as a single Telegram digest each morning. When a critical vulnerability is found, the Claw

also searches for the recommended fix or workaround and includes it in the alert.

Memory prevents alert fatigue: previously reported issues are tracked and only re-surfaced

if severity escalates. The result is a clean, actionable security briefing — not a wall of

noise.

What Others Get

Scans your GitHub repos daily for vulnerable and outdated dependencies so you don't have

to do it manually.

Setup Steps

  1. List the repos you want monitored (supports package.json, requirements.txt, Cargo.toml, go.mod, and more)
  2. Connect your Telegram account for morning digest delivery
  3. Schedule the scan to run daily
  4. Review the first digest and adjust severity filtering if needed
Tags:#security#automation#productivity#github#devops

Related Recipes

Kapilot — Autonomous Dev Pipeline

Ship faster — phases run on cron while you sleep

Turn any development plan into a self-running pipeline. Build → Review → Security scan → Verify → Commit → Advance while you sleep — Kapilot handles each phase automatically and notifies you when it's done.

Work~5 min

Memory-Aware Research Agent

Research that builds on what you've already found

A research agent that tracks prior sessions and avoids redundant searches. It surfaces gaps in your existing knowledge base and picks up exactly where you left off.

Work5 min

CLAWBITE AI

Local-first AI assistant that automates small daily tasks safely on your device

A personal, local-first AI assistant that automates small daily tasks—organizing files, setting reminders, and monitoring system events—without touching sensitive data or taking risky actions without your approval.

Personal5 min

Inbox Zero Bot

Email and calendar without leaving your terminal

Full Gmail control via the gog CLI. Read, send, search, organize emails. Create events, set reminders, RSVP to invitations. All from natural language or CLI commands.

Personal5 min setup