deppbot
Automated Dependency Updates for your Ruby Apps
deppbot ensures that dependencies in your Ruby applications are always up-to-date. Based on your configured schedule, deppbot will bundle update
your Ruby application and send the update as a Pull Request to GitHub. You just have to review and merge the informative Pull Request if all's good and wait for the next one from deppbot.
Why Update Your Apps Frequently?
You're not taking advantage of daily improvements made to gems included in your app, and your app is prone to security risks and bugs when it's not being updated frequently.
"Can't I update my application only when needed or things break?" - Yes, you surely can. However, the update could be massive and even result in regressions because you haven't updated the app in a while. Ouch.
Hence, it's just better to keep your applications updated, always.
Need more reasons? Read the blog post now.
Features
Get Set Up Easily
Sign up with GitHub and subscribe a valid Ruby repo (with Gemfile
and Gemfile.lock
). deppbot will do its work and you'll see a Pull Request in no time.
Start Free for Public Repos
Subscribe all your public repos for free and keep your open source projects up-to-date. Turn on deppbot for your private repos easily with our Paid Plans.
Review Informative Pull Request
Every Pull Request will list all the gems that's been added, removed or updated in Gemfile.lock
after running bundle update
.
And it also includes links to compare the differences between the old and updated version for each updated gem, or a link to the Changelog file if it exists.
Reviewing changes in Gemfile.lock
can't get any easier than this.
Fix Your Security Vulnerabilities Automagically
Checking your app for vulnerabilities is easy, but fixing them could be a non-trivial task. Count on deppbot to do that for you!
The resulting Pull Request will include details of the fixes and vulnerabilities, again making reviewing and merging of the security fix effortless.
Read the announcement for more details.
Configure Base Branch
The base branch for Pull Requests issued can be configured to suit your Git strategy, and so you can merge the updates easily to the master branch or a custom branch like development which your workflow uses.
deppbot is here to help you update early and update often.
Build better software with deppbot.
Authorize deppbot to access your GitHub account.
deppbot is provided by a third-party and is governed by separate terms, privacy, and support documentation.
Supported languages
-
Ruby
Categories
More info
Developer
-
The GitHub logo, Invertocat logo, the images and other content are trademarks or copyrights of GitHub, Inc. All other trademarks are the property of their respective owners.