Continuously Test Your Dependencies

Automatic compliance testing for all of the dependencies in your application.

 Sign Up with GitHub

Analyse your dependencies after every commit

Check the status, licenses and security of every library you depend upon as soon as you push.

Integrates directly with GitHub

Login with GitHub and instantly enable Dependency CI on your repositories with a single click and start testing.

Get a better view of your dependencies

See an overview of all of your dependencies across many different package managers, along with license and version information.

Works great with Pull Requests

Catch potentially insecure or unlicensed libraries before you merge them by testing the dependencies on every pull request.

Improve your code quality

Discover deprecated or unmaintained libraries that your projects depend upon early to help avoid potential issues.

Highly configurable per project

Configure which tests to run on a per repo or even per branch basis with a dependencyci.yaml file.

Keep your projects secure

Find out about relevant security advisories for your whole dependency tree and avoid merging potentially insecure libraries.

Keep on top of compliance

Fix potential compliance issues with dependencies before they become expensive to change, saving time and money.

Test your project after every commit for:

Deprecated Dependencies

Checks if the maintainer of the dependency has marked the project as deprecated.

Unmaintained Dependencies

Checks if the maintainer of the dependency has marked the project as unmaintained.

Unavailable Dependencies

Checks if the dependency has been removed from the package manager central repository.

Unlicensed Dependencies

Checks if the dependency has an open source license and you are allowed to use it.

Insecure Dependencies Coming soon

Checks if the dependency has any published security advisories or vulnerabilities.

Outdated Dependencies Coming soon

Checks if there is a newer version of the dependency than you're using.

Bus factored Dependencies Coming soon

Checks if the dependency has a low bus factor with few people maintaining it.

Conflicting Licenses Coming soon

Checks if the dependency's license can be used with the license of your code.

Supported Package Managers

npm

package.json, npm-shrinkwrap.json, yarn.lock

Maven

pom.xml, ivy.xml, build.gradle

RubyGems

Gemfile, Gemfile.lock, gems.rb, gems.locked, *.gemspec

Packagist

composer.json, composer.lock

PyPi

setup.py, req*.txt, req*.pip, requirements/*.txt, requirements/*.pip

Nuget

packages.config, Project.json, Project.lock.json, *.nuspec, paket.lock

Bower

bower.json

CPAN

META.json, META.yml

CocoaPods

Podfile, Podfile.lock, *.podspec

Clojars

project.clj

Meteor

versions.json

CRAN

DESCRIPTION

Cargo

Cargo.toml, Cargo.lock

Hex

mix.exs, mix.lock

Swift

Package.swift

Pub

pubspec.yaml, pubspec.lock

Carthage

Cartfile, Cartfile.private, Cartfile.resolved

Dub

dub.json, dub.sdl

Julia

REQUIRE

Shards

shard.yml, shard.lock

Go

glide.yaml, glide.lock, Godeps, Godeps/Godeps.json, vendor/manifest, vendor/vendor.json, Gopkg.toml, Gopkg.lock

Haxelib

haxelib.json

Elm

elm-package.json, elm_dependencies.json, elm-stuff/exact-dependencies.json

Hackage

*.cabal, cabal.config

Pricing & Plans

Affordable, unlimited plans for users and organizations of all sizes

Open Source

  • Unlimited open source repos
  • Unlimited collaborators
  • Standard priority builds
  • Free forever

Personal

  • Unlimited private repos on your account
  • Unlimited open source repos
  • Unlimited collaborators
  • High priority builds
  • Currently Free

Organization

  • Unlimited private repos on your organization
  • Unlimited open source repos
  • Unlimited collaborators
  • High priority builds
  • Currently Free

Enterprise

  • Unlimited private repos on your organization
  • Unlimited open source repos
  • Unlimited collaborators
  • Run on your own servers

Used by Developers from Top Organisations

Microsoft Heroku Ibm Google Salesforce Linkedin Paypal Theodi Producthunt Financial times Github Joyent Docker Dnsimple Artsy Mozilla React native community Eclipse Npm Rubygems Jquery Nordstrom Travis ci Neo4j Cloudflare Guardian Wikia Opentable Cloudfoundry Suse Twilio Circleci

Popular Open Source Projects using Dependency CI See more »

Unitech

Unitech/pm2 23521 stars

Node.js Production Process Manager with a built-in Load Balancer.
Gatsbyjs

gatsbyjs/gatsby 19089 stars

⚛️📄🚀 Blazing fast static site generator for React
Pugjs

pugjs/pug 16112 stars

Pug – robust, elegant, feature rich template engine for Node.js
Vapor

vapor/vapor 12790 stars

💧 A server-side Swift web framework.
Servo

servo/servo 11238 stars

The Servo Browser Engine
Mitmproxy

mitmproxy/mitmproxy 9591 stars

An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.
Node red

node-red/node-red 5586 stars

A visual tool for wiring the Internet of Things
Chaijs

chaijs/chai 5079 stars

BDD / TDD assertion framework for node.js and the browser that can be paired with any testing fra...
Electron userland

electron-userland/electron-packager 4861 stars

Customize and package your Electron app with OS-specific bundles (.app, .exe, etc.) via JS or CLI
Sass

sass/node-sass 4765 stars

rainbow Node.js bindings to libsass