| ✅ Verified ✅ | How you know |
|---------------|--------------|
| Yarn version locked | .yvmrc present & yvm use works |
| Dependencies listed | package.json contains all needed dependencies/devDependencies |
| Lockfile in sync | yarn install --frozen-lockfile succeeds |
| Schema‑valid | ajv validation passes |
| No critical security issues | yarn audit returns 0 high‑severity findings |
| Build works on a clean machine | CI pipeline (or local rm -rf node_modules && yarn install) passes |
When all the rows are green, you can confidently say the depfile is verified. yvm larisa kristina depfile verified
| Purpose | Recommendation |
|---------|----------------|
| Language | Python 3.9+ |
| HTTP client | requests + cloudscraper (Depfile may use Cloudflare) |
| HTML parsing | BeautifulSoup4 |
| Async checks | asyncio + aiohttp |
| Storage | SQLite (for verified link DB) |
| Verification logic | Regex + filename pattern matching | | ✅ Verified ✅ | How you know
| Command | Purpose |
|---------|---------|
| yvm install <ver> | Install a specific Yarn version |
| yvm use <ver> | Pin that version to the current folder (.yvmrc) |
| yarn init -y | Scaffold a fresh package.json |
| yarn add <pkg> | Add a runtime dependency |
| yarn add -D <pkg> | Add a dev‑dependency |
| yarn remove <pkg> | Delete a dependency |
| yarn audit --level high | Fail on high‑severity security issues |
| ajv validate -s … -d package.json | Validate JSON schema |
| yarn install --frozen-lockfile | Verify lockfile matches package.json |
| rm -rf node_modules yarn.lock && yarn install | Full reproducibility test | yvm larisa kristina depfile verified
