Continuously Test Your Dependencies

Automatic compliance testing for all of the dependencies in your application.

 Sign Up with GitHub

Analyse your dependencies after every commit

Check the status, licenses and security of every library you depend upon as soon as you push.

Integrates directly with GitHub

Login with GitHub and instantly enable Dependency CI on your repositories with a single click and start testing.

Get a better view of your dependencies

See an overview of all of your dependencies across many different package managers, along with license and version information.

Works great with Pull Requests

Catch potentially insecure or unlicensed libraries before you merge them by testing the dependencies on every pull request.

Improve your code quality

Discover deprecated or unmaintained libraries that your projects depend upon early to help avoid potential issues.

Highly configurable per project

Configure which tests to run on a per repo or even per branch basis with a dependencyci.yaml file.

Keep your projects secure

Find out about relevant security advisories for your whole dependency tree and avoid merging potentially insecure libraries.

Keep on top of compliance

Fix potential compliance issues with dependencies before they become expensive to change, saving time and money.

Test your project after every commit for:

Deprecated Dependencies

Checks if the maintainer of the dependency has marked the project as deprecated.

Unmaintained Dependencies

Checks if the maintainer of the dependency has marked the project as unmaintained.

Unavailable Dependencies

Checks if the dependency has been removed from the package manager central repository.

Unlicensed Dependencies

Checks if the dependency has an open source license and you are allowed to use it.

Insecure Dependencies Coming soon

Checks if the dependency has any published security advisories or vulnerabilities.

Outdated Dependencies Coming soon

Checks if there is a newer version of the dependency than you're using.

Bus factored Dependencies Coming soon

Checks if the dependency has a low bus factor with few people maintaining it.

Conflicting Licenses Coming soon

Checks if the dependency's license can be used with the license of your code.

Supported Package Managers

npm

package.json, npm-shrinkwrap.json

Maven

pom.xml, ivy.xml, build.gradle

RubyGems

Gemfile, Gemfile.lock, gems.rb, gems.locked, *.gemspec

Packagist

composer.json, composer.lock

PyPi

setup.py, req*.txt, req*.pip, requirements/*.txt, requirements/*.pip

Nuget

packages.config, Project.json, Project.lock.json, *.nuspec, paket.lock

Bower

bower.json

CPAN

META.json, META.yml

CocoaPods

Podfile, Podfile.lock, *.podspec

Clojars

project.clj

Meteor

versions.json

CRAN

DESCRIPTION

Cargo

Cargo.toml, Cargo.lock

Hex

mix.exs, mix.lock

Swift

Package.swift

Pub

pubspec.yaml, pubspec.lock

Carthage

Cartfile, Cartfile.private, Cartfile.resolved

Dub

dub.json, dub.sdl

Julia

REQUIRE

Shards

shard.yml, shard.lock

Go

glide.yaml, glide.lock, Godeps/Godeps.json, vendor/manifest

Elm

elm-package.json, elm_dependencies.json, elm-stuff/exact-dependencies.json

Pricing & Plans

Affordable, unlimited plans for users and organizations of all sizes

Open Source

  • Unlimited open source repos
  • Unlimited collaborators
  • Standard priority builds
  • Free forever

Personal

  • Unlimited private repos on your account
  • Unlimited open source repos
  • Unlimited collaborators
  • High priority builds
  • $15/month

Organization

  • Unlimited private repos on your organization
  • Unlimited open source repos
  • Unlimited collaborators
  • High priority builds
  • $50/month

Enterprise

  • Unlimited private repos on your organization
  • Unlimited open source repos
  • Unlimited collaborators
  • Run on your own servers

Used by Developers from Top Organisations

Microsoft Heroku Ibm Theodi Producthunt Financial times Github Joyent Docker Dnsimple Codacy Artsy Mozilla Googlecloudplatform Eclipse Environmentagency Npm Jquery Nordstrom Travis ci Neo4j Cloudflare Guardian Wikia Opentable Cloudfoundry Suse Twilio Infoq Xsf Circleci Octoprint

Popular Open Source Projects using Dependency CI See more »

Unitech

Unitech/pm2 16193 stars

Production process manager for Node.js apps with a built-in load balancer
Pugjs

pugjs/pug 12972 stars

Pug – robust, elegant, feature rich template engine for Node.js
Servo

servo/servo 8397 stars

The Servo Browser Engine
Vapor

vapor/vapor 7758 stars

A web framework and server for Swift that works on macOS and Ubuntu.
Avajs

avajs/ava 7373 stars

rocket Futuristic JavaScript test runner
Mitmproxy

mitmproxy/mitmproxy 6193 stars

An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers
Dropwizard

dropwizard/dropwizard 5237 stars

A damn simple library for building production-ready RESTful web services.
Talater

TalAter/UpUp 3991 stars

airplane Easily create sites that work offline as well as online
Jazzband

jazzband/django-debug-toolbar 3930 stars

A configurable set of panels that display various debug information about the current request/res...
Basscss

basscss/basscss 3782 stars

Low-level CSS Toolkit