Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

About Dependabot Tracker

What is this?

This is a specialized tracking system for Dependabot pull requests across open source repositories. We collect and analyze Dependabot activity to provide insights for package maintainers about which repositories are receiving updates for their packages.

Who is this for?

  • 📦 Package Maintainers - See which repositories are updating to your latest versions
  • 🔒 Security Researchers - Track adoption of security fixes across the ecosystem
  • 🏢 Development Teams - Monitor dependency update patterns in your ecosystem

Data Sources

We process data from GitHub's public event stream to track Dependabot pull requests in real-time. This includes pull request creation, merging, closing, and security advisory information.

Security advisory data is sourced from advisories.ecosyste.ms

Supported Ecosystems

  • 📦 npm (JavaScript/Node.js)
  • 💎 RubyGems (Ruby)
  • 🐍 PyPI (Python)
  • ☕ Maven (Java)
  • 🎯 Gradle (Java/Kotlin)
  • 📦 NuGet (.NET)
  • 🦀 Cargo (Rust)
  • 🐹 Go modules
  • 🐘 Packagist (PHP)
  • 🐳 Docker
  • ⚡ GitHub Actions
  • 🔧 And more...

API Access

All data is available through our REST API. Perfect for integrating dependency update monitoring into your own tools and dashboards.

API Documentation Open Data Exports

Open Source

This project is part of the Ecosyste.ms initiative and is open source. Built with Ruby on Rails and available on GitHub.

View on GitHub 💚 Support the Project
Data updated continuously from GitHub's public event stream. All data is publicly available and respects repository visibility settings.