Use dependency checker

[dAnjou]

In #10 I've mentioned CI. For a project like this that bundles sooo many dependencies CI should also include a dependency check and security scan.