Top 12 Open-Source Alternatives to Dependabot

Product categories

BitBucket Code Analysis Code Review License Management News OS & Utilities Open Source Security Security & Privacy Security Monitoring Software Development Web Application Security

Summary

The top open-source alternatives to Dependabot are Snyk, SonarQube, and Violinist.io. One of the criteria for ordering this list is the number of mentions that products have on reliable external sources. You can suggest additional sources through the form here.

Snyk Landing Page
1

Snyk

Snyk helps you use open source and stay secure. Continuously find and fix vulnerabilities for npm, Maven, NuGet, RubyGems, PyPI and much more.
Pricing:
- Open Source
#Security #Security Monitoring #Security CI 85 social mentions
SonarQube Landing Page
2

SonarQube

SonarQube, a core component of the Sonar solution, is an open source, self-managed tool that systematically helps developers and organizations deliver Clean Code.
Pricing:
- Open Source
- Freemium
- Free Trial
- $150.0 / Annually
#Code Analysis #Code Review #Code Coverage 1 social mentions
Violinist.io Landing Page
3

Violinist.io

Automatically update your composer (php) dependencies
Pricing:
- Open Source
- Freemium
- Free Trial
- $10.0 / Monthly (5 private projects)
#Security #Software Development #News
NewReleases Landing Page
4

NewReleases

Stop wasting your time checking manually if some piece of software is updated. Get Email, Slack, Telegram, Discord, Hangouts Chat, Microsoft Teams, Mattermost, Rocket.Chat, or Webhooks notifications.
Pricing:
- Open Source
- Free
#Software Development #News #DevOps Services 18 social mentions
Dependency-Check Landing Page
5

DC

Dependency-Check

Dependency-Check is a utility that identifies project dependencies and checks if there are any...
Pricing:
- Open Source
#Security #Software Development #Code Analysis 16 social mentions
OWASP Dependency-Track Landing Page
6

OWASP Dependency-Track

OWASP Dependency-Track is an intelligent Software Composition Analysis (SCA) platform that allows...
Pricing:
- Open Source
#Security #Code Analysis #Security & Privacy 19 social mentions
FOSSA Landing Page
7

FOSSA

Open source license compliance and dependency analysis
Pricing:
- Open Source
#Security #Code Analysis #Web Application Security 7 social mentions
pyup.io Landing Page
8

pyup.io

Helps you to keep your dependencies updated and secure.
Pricing:
- Open Source
#License Management #OS & Utilities #Security & Privacy 2 social mentions
David Landing Page
9

D

David

Watching your Node.js dependencies
Pricing:
- Open Source
#License Management #Security & Privacy #OS & Utilities
dependencies.io Landing Page
10

dependencies.io

Automated dependency updates, using the same tools that you use.
Pricing:
- Open Source
#Software Development #Security #News
SpotBugs Landing Page
11

SpotBugs

Static Application Security Testing (SAST)
Pricing:
- Open Source
#Code Analysis #Code Review #Web Application Security 3 social mentions
GitHub Actions Landing Page
12

GitHub Actions

Automate your workflow from idea to production
Pricing:
- Open Source
#DevOps Tools #Continuous Integration #Continuous Deployment 275 social mentions