Depfu
UnclaimedAutomated dependency updates done right for GitHub and GitLab repositories.
Visit WebsiteFreemiumVisit Website
TL;DR - Depfu
- Automates dependency updates by creating pull requests in GitHub/GitLab.
- Provides detailed information for each update, including security advisories and changelogs.
- Intelligently schedules updates to avoid overwhelming developers and CI systems.
Pricing: Free plan available
Best for: Growing teams
Pros & Cons
Pros
- Reduces manual effort and time spent on dependency management
- Helps maintain application security by facilitating timely updates
- Prevents overwhelming developers with too many updates
- Provides comprehensive information for informed update decisions
- Supports continuous integration workflows
Cons
- Primarily focused on GitHub and GitLab, potentially limiting for other VCS users
- Enterprise version for on-premise solutions requires direct contact
Preview
Key Features
Automated pull request generation for new versionsIntegration with GitHub and GitLabSecurity advisory notificationsRelease notes and changelog parsingConfigurable update frequency (per version, weekly, monthly)Intelligent update scheduling based on release frequencySupport for bringing out-of-date apps up to speed gradually21-day free trial for all plans
Pricing Plans
Free TrialOpen Source/Personal
Free
- Free for public and personal account repos
- Unlimited dependency updates
Starter
$29/mo
- 5 private repos
- Unlimited dependency updates
Team
$59/mo
- 25 private repos
- Unlimited dependency updates
Business
$99/mo
- 100 private repos
- Unlimited dependency updates
- Premium Support
What is Depfu?
Depfu automates the process of keeping software dependencies up-to-date for teams using GitHub and GitLab. It integrates directly into development workflows by creating pull requests for new dependency versions, providing all necessary information like security advisories, release notes, and changelog details to help developers make informed decisions. The tool is designed to prevent overwhelming users with updates by intelligently scheduling PRs based on a library's release frequency, reducing the number of pull requests by approximately 50% compared to sending every new version.
This solution is ideal for busy development teams and individual developers who want to maintain secure and maintainable applications without the manual, time-consuming chore of constantly checking for and applying dependency updates. By facilitating small, continuous updates, Depfu helps teams avoid large, risky update batches and ensures they can quickly address security vulnerabilities, even for older applications.
Reviews
Be the first to review Depfu
Your take helps the next buyer. Verified LinkedIn reviewers get a badge.
Write a reviewBest Depfu Alternatives
Top alternatives based on features, pricing, and user needs.
Explore More
Depfu FAQ
What is Depfu?
Depfu is a tool that automates the process of keeping your software dependencies up-to-date by creating pull requests in your GitHub or GitLab repositories. It provides all the necessary information for each update, including security advisories and changelogs, to help you make informed decisions.
How much does Depfu cost?
Depfu offers a free tier for public and personal open-source repositories. Paid plans start at $29/month for 5 private repositories (Starter), $59/month for 25 private repositories (Team), and $99/month for 100 private repositories (Business). Annual payment options are available, offering 2 months free.
Is Depfu free?
Yes, Depfu is free for public and personal open-source repositories. All paid plans also come with a 21-day free trial, no credit card required.
Who is Depfu for?
Depfu is for development teams and individual developers who use GitHub or GitLab and want to automate and streamline their dependency update process. It's particularly useful for those looking to improve application security, maintainability, and reduce the manual effort involved in keeping dependencies current.
Source: depfu.com