[FEATURE]: Dependency Audit & Outdated Analysis

[helabenkhalfallah]

✨ Description

This feature integrates dependency and security analysis into Vitality, leveraging tools like pnpm audit, pnpm outdated (or yarn audit, npm audit, etc., depending on the project) to provide insights into project health and security vulnerabilities. This will offer developers a centralized view of potential issues and help them maintain secure and up-to-date project dependencies.

🚀 Motivation

• Enhanced Security: Proactively identify and address security vulnerabilities in project dependencies, reducing the risk of exploits.
• Dependency Management: Keep track of outdated dependencies and receive recommendations for updates, ensuring optimal performance and compatibility.
• Improved Code Quality: Promote healthy development practices by encouraging regular dependency checks and updates.
• Reduced Maintenance Costs: Prevent potential issues caused by outdated or insecure dependencies, saving time and resources in the long run.

📝 Proposed Solution

1. Integrating analysis with the existing DependenciesAuditor.
2. According to project: pnpm audit, pnpm outdated (or equivalent commands for yarn and npm).
3. Process reports.
4. Identify recommendations and keywords.
5. Store reports.
6. Update BFF schemas and resolvers.
7. Frontend Visualisation.

🔗 Relevant Links (if any)

https://docs.npmjs.com/cli/v10/commands/npm-audit
https://classic.yarnpkg.com/en/docs/cli/audit/
https://owasp.org/www-project-dependency-check/
https://pnpm.io/cli/audit

[helabenkhalfallah]

This approach is replaced with:
#33

And:
https://github.com/ekino/v6y/blob/main/src/v6y-bfb-frontend-auditor/src/auditors/dependencies-auditor/DependenciesUtils.ts#L16