renovate

v23.86.2

Automated dependency updates. Flexible so you don't need to be.

AGPL-3.0
Latest version published about 7 hours ago
    npm install renovate
  

Package Health Score

79 / 100
  • Popularity
    Popular
  • Maintenance
    Healthy
  • Security
    Security review needed
  • Community
    Sustainable

Popularity

Popular
Weekly Downloads (52,543)
Dependents
72
GitHub Stars
4K
Forks
561
Contributors
310

The npm package renovate receives a total of 52,543 downloads a week. As such, we scored renovate popularity level to be Popular.

Based on project statistics from the GitHub repository for the npm package renovate, we found that it has been starred 4,002 times, and that 72 other projects on the ecosystem are dependent on it.

Downloads are calculated as moving averages for a period of the last 12 months, excluding weekends and known missing data points.

Security

Security review needed

Security and license risk for significant versions

All Versions

Direct Vulnerabilities

22.24.5
22.25.6
23.35.3
23.85.0
23.86.2
  • 0
    H
  • 0
    M
  • 0
    L
  • 0
    H
  • 0
    M
  • 0
    L
  • 0
    H
  • 0
    M
  • 0
    L
  • 0
    H
  • 0
    M
  • 0
    L
  • 0
    H
  • 0
    M
  • 0
    L

Indirect Vulnerabilities

22.24.5
22.25.6
23.35.3
23.85.0
23.86.2
  • 0
    H
  • 0
    M
  • 0
    L
  • 0
    H
  • 0
    M
  • 0
    L
  • 0
    H
  • 0
    M
  • 0
    L
  • 0
    H
  • 0
    M
  • 0
    L
  • 0
    H
  • 0
    M
  • 0
    L

License Risks

22.24.5
22.25.6
23.35.3
23.85.0
23.86.2
All security vulnerabilities belong to production dependencies of direct and indirect packages.

Security Policy
Yes

Snyk detected that the latest version of renovate has a security vulnerability.

We highly advise you to review these security issues.

You can connect your project's repository to Snyk to stay up to date on security alerts and receive automatic fix pull requests.

    # Install the Snyk CLI and test your project
npm i snyk && snyk test renovate
Fix it in your project with Snyk!

Maintenance

Healthy
Commit Frequency
Open Issues
636
Merged PR
4.3K
Open PR
36
Last Commit
7 hours ago

Further analysis of the maintenance status of renovate based on released npm versions cadence, the repository activity, and other data points determined that its maintenance is Healthy.

We found that renovate demonstrates a positive version release cadence with at least one new version released in the past 3 months.

As a healthy sign for on-going project maintenance, we found that the GitHub repository had at least 1 pull request or issue interacted with by the community.

Community

Sustainable
Readme.md
No
Contributing.md
No
Code of Conduct
No
Contributors
310
Funding
No
License
AGPL-3.0

A good and healthy external contribution signal for renovate project, which invites more than one hundred open source maintainers to collaborate on the repository.

We found a way for you to contribute to the project! Looks like renovate is missing a Code of Conduct.

We noticed that this project uses a license which requires less permissive conditions such as disclosing the source code, stating changes or redistributing the source under the same license. It is advised to further consult the license terms before use.


Embed Package Health Score Badge

package health: 79/100 package health 79/100

Package

Node.js Compatibility
^12.13.0 || >=14.15.0

Age
4 years
Dependencies
64 Direct / 557 Total
Versions
5
Install Size
4.76 MB
Dist-tags
4
# of Files
1.39K
Maintainers
3
TS Typings
No

We detected a total of 557 direct & transitive dependencies for renovate. See the full dependency tree of renovate

renovate has more than a single and default latest tag published for the npm package. This means, there may be other tags available for this package, such as next to indicate future releases, or stable to indicate stable releases.