Implement automated dependency vulnerability scanning

[RUKAYAT-CODER]

Background

undefined

Description

Run npm audit or Snyk in CI to detect vulnerable dependencies and fail builds with high-severity issues.

Current Behavior

Manual security reviews, no automated scanning

Expected Behavior

Automated CI scanning with typed policy

Impact

🔒 Faster security issue detection
🛡️ Prevent vulnerable deps in production

Acceptance Criteria

• Integrate vulnerability scanner to CI
• Fail on high-severity vulnerabilities
• Generate dependency reports
• Create remediation alerts
• Test with known vulnerable package

Implementation Hints

undefined

Related Issues

• Implement Mobile Messaging #10
• Implement Mobile Profile Management #11

[yusstyle]

@yusstyle has applied to work on this issue as part of the Stellar Wave Program's 5th wave.

hello maintainer ..ill like to work on this

ℹ️ Repo Maintainers: To accept this application, review their application or assign @yusstyle to this issue.

[drips-wave]

Congratulations, @yusstyle! 🎉 Your application was accepted by the repo's maintainers, and the issue is due on June 2, 2026.

🧑‍💻 @yusstyle: Please resolve the issue such that the repo's maintainers have enough time to review your contribution before the due date. You'll earn Points for completing the issue on-time, which will make you eligible for a share of the Stellar Wave Program's reward pool.

Warning

When opening a PR, please link it to this issue to ensure it gets tracked accurately. Points are awarded when this issue is marked as completed by the maintainer.

🤠 Repo maintainers: Please keep an eye on the contributor's progress and review their work before the due date. You can manage this issue, including adjusting its complexity and points, here.

🌊 Happy Wave 🌊