| name | syncable-project-assessment |
|---|---|
| description | Run a comprehensive project health check combining stack analysis, security scanning, vulnerability detection, and dependency auditing using the Syncable CLI sync-ctl tool |
Run a comprehensive project health check by chaining multiple Syncable CLI commands. Produces a unified report covering tech stack, security posture, vulnerability status, and dependency health.
sync-ctlbinary installed and on PATH- Agent has access to the project directory
sync-ctl analyze <PATH> --agentParse the output to understand:
- What languages and frameworks are present
- Whether dependencies exist (needed for steps 3 and 4)
- Whether secrets-capable files exist (affects step 2 mode)
Save the full_data_ref from the analyze output — you'll use it to retrieve details without re-running analyze.
sync-ctl security <PATH> --mode balanced --agentDecision point: If step 1 shows no config files, secrets files, or environment files, use --mode lightning instead of --mode balanced to save time.
sync-ctl vulnerabilities <PATH> --agentDecision point: If step 1 detected no dependencies (no package.json, requirements.txt, Cargo.toml, go.mod, etc.), skip this step entirely and note "No dependencies detected" in the report.
sync-ctl dependencies <PATH> --licenses --agentDecision point: Same as step 3 — skip if no dependencies detected.
| Condition | Action |
|---|---|
| No dependencies detected in step 1 | Skip steps 3 and 4 |
| No secrets-capable files in step 1 | Use --mode lightning in step 2 |
| Vulnerability scanner missing | Run sync-ctl tools install --yes, then retry step 3 |
After all steps complete, synthesize a unified report for the user:
- Tech Stack — primary language, frameworks, runtimes
- Security Score — score from security scan, critical/high finding count
- Vulnerabilities — critical/high CVE count, packages with available fixes
- Dependencies — total count, license concerns (copyleft, unknown)
- Recommendations — top 3-5 actionable items prioritized by severity
Assess current directory:
The agent runs these commands in sequence, skipping steps based on decision points:
sync-ctl analyze . --agent
sync-ctl security . --mode balanced --agent
sync-ctl vulnerabilities . --agent
sync-ctl dependencies . --licenses --agentThen synthesizes the results into a single report for the user.
Each step produces a full_data_ref in its output. You can retrieve details from any previous step at any time:
# Check what data is available from all steps
sync-ctl retrieve --list
# Get framework details from Step 1 (analyze)
sync-ctl retrieve <analyze_ref_id> --query "section:frameworks"
# Get critical security findings from Step 2
sync-ctl retrieve <security_ref_id> --query "severity:critical"
# Get vulnerability details from Step 3
sync-ctl retrieve <vuln_ref_id> --query "severity:high"Do NOT re-run a command just to get more detail — use sync-ctl retrieve instead.