Continuously Test Your Dependencies

Automatic compliance testing for all of the dependencies in your application.

 Sign Up with GitHub

Analyse your dependencies after every commit

Check the status, licenses and security of every library you depend upon as soon as you push.

Integrates directly with GitHub

Login with GitHub and instantly enable Dependency CI on your repositories with a single click and start testing.

Get a better view of your dependencies

See an overview of all of your dependencies across many different package managers, along with license and version information.

Works great with Pull Requests

Catch potentially insecure or unlicensed libraries before you merge them by testing the dependencies on every pull request.

Improve your code quality

Discover deprecated or unmaintained libraries that your projects depend upon early to help avoid potential issues.

Highly configurable per project

Configure which tests to run on a per repo or even per branch basis with a dependencyci.yaml file.

Keep your projects secure

Find out about relevant security advisories for your whole dependency tree and avoid merging potentially insecure libraries.

Keep on top of compliance

Fix potential compliance issues with dependencies before they become expensive to change, saving time and money.

Test your project after every commit for:

Deprecated Dependencies

Checks if the maintainer of the dependency has marked the project as deprecated.

Unmaintained Dependencies

Checks if the maintainer of the dependency has marked the project as unmaintained.

Unavailable Dependencies

Checks if the dependency has been removed from the package manager central repository.

Unlicensed Dependencies

Checks if the dependency has an open source license and you are allowed to use it.

Insecure Dependencies Coming soon

Checks if the dependency has any published security advisories or vulnerabilities.

Outdated Dependencies Coming soon

Checks if there is a newer version of the dependency than you're using.

Bus factored Dependencies Coming soon

Checks if the dependency has a low bus factor with few people maintaining it.

Conflicting Licenses Coming soon

Checks if the dependency's license can be used with the license of your code.

Supported Package Managers

npm

package.json, npm-shrinkwrap.json, yarn.lock

Maven

pom.xml, ivy.xml, build.gradle

RubyGems

Gemfile, Gemfile.lock, gems.rb, gems.locked, *.gemspec

Packagist

composer.json, composer.lock

PyPi

setup.py, req*.txt, req*.pip, requirements/*.txt, requirements/*.pip

Nuget

packages.config, Project.json, Project.lock.json, *.nuspec, paket.lock

Bower

bower.json

CPAN

META.json, META.yml

CocoaPods

Podfile, Podfile.lock, *.podspec

Clojars

project.clj

Meteor

versions.json

CRAN

DESCRIPTION

Cargo

Cargo.toml, Cargo.lock

Hex

mix.exs, mix.lock

Swift

Package.swift

Pub

pubspec.yaml, pubspec.lock

Carthage

Cartfile, Cartfile.private, Cartfile.resolved

Dub

dub.json, dub.sdl

Julia

REQUIRE

Shards

shard.yml, shard.lock

Go

glide.yaml, glide.lock, Godeps, Godeps/Godeps.json, vendor/manifest, vendor/vendor.json

Elm

elm-package.json, elm_dependencies.json, elm-stuff/exact-dependencies.json

Pricing & Plans

Affordable, unlimited plans for users and organizations of all sizes

Open Source

  • Unlimited open source repos
  • Unlimited collaborators
  • Standard priority builds
  • Free forever

Personal

  • Unlimited private repos on your account
  • Unlimited open source repos
  • Unlimited collaborators
  • High priority builds
  • Currently Free

Organization

  • Unlimited private repos on your organization
  • Unlimited open source repos
  • Unlimited collaborators
  • High priority builds
  • Currently Free

Enterprise

  • Unlimited private repos on your organization
  • Unlimited open source repos
  • Unlimited collaborators
  • Run on your own servers

Used by Developers from Top Organisations

Microsoft Heroku Ibm Google Salesforce Linkedin Paypal Theodi Producthunt Financial times Github Joyent Docker Dnsimple Artsy Mozilla React native community Eclipse Npm Rubygems Jquery Nordstrom Travis ci Neo4j Cloudflare Guardian Wikia Opentable Cloudfoundry Suse Twilio Circleci

Popular Open Source Projects using Dependency CI See more »

Unitech

Unitech/pm2 22424 stars

PM2 CE: Production Process Manager for Node.js apps with a built-in Load Balancer.
Fastlane

fastlane/fastlane 19676 stars

🚀 The easiest way to automate building and releasing your iOS and Android apps
Pugjs

pugjs/pug 15692 stars

Pug – robust, elegant, feature rich template engine for Node.js
Avajs

avajs/ava 12196 stars

rocket Futuristic JavaScript test runner
Vapor

vapor/vapor 11912 stars

💧 A server-side Swift web framework.
Servo

servo/servo 10789 stars

The Servo Browser Engine
Mitmproxy

mitmproxy/mitmproxy 8950 stars

An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers
Node red

node-red/node-red 5227 stars

A visual tool for wiring the Internet of Things
Tymondesigns

tymondesigns/jwt-auth 5058 stars

JSON Web Token Authentication for Laravel & Lumen
Chaijs

chaijs/chai 4833 stars

BDD / TDD assertion framework for node.js and the browser that can be paired with any testing fra...