{"payload":{"featured":[],"recommended":[],"recentlyAdded":[],"searchResults":{"results":[{"bgColor":"ffffff","copilotApp":false,"documentationUrl":"https://www.signal.fyi/","extendedDescription":null,"fullDescription":"signal.fyi automates Docker image version updates through pull requests against your default branch, monitoring\nmulti-file and/or multi-stage Dockerfiles in your repository (max:3/repository). Enhance compliance, security, and the a\nhref=\nhttps://www.cisa.gov/sbom#:~:text=A%20%E2%80%9Csoftware%20bill%20of%20materials,that%20make%20up%20software%20components.\ntarget= _blank Software Bill of Materials (SBOM) /a context with auditable and traceable records of your Docker image\nversions.\n","id":17323,"installationCount":6,"isVerifiedOwner":true,"listingLogoUrl":"https://avatars.githubusercontent.com/ml/17323?s=400&v=4","name":"signal.fyi","ownerLogin":"signalfyi","pricingUrl":null,"primaryCategory":"Dependency management","privacyPolicyUrl":"https://www.signal.fyi/legal/","secondaryCategory":"Utilities","shortDescription":"Automates multifile and/or multistage Docker image version updates via PR's against the default branch (max:3/repo)","slug":"www-signal-fyi","statusUrl":"https://www.signal.fyi/","supportUrl":"https://github.com/signalfyi/support","tosUrl":"https://www.signal.fyi/legal/","type":"marketplace_listing"},{"bgColor":"ffffff","copilotApp":false,"documentationUrl":"","extendedDescription":null,"fullDescription":"Drowning in open upgrade PRs?\n\nWe researched, parsed, and validated thousands of open source changelogs so you can upgrade quickly and safely.\n","id":14937,"installationCount":74,"isVerifiedOwner":false,"listingLogoUrl":"https://avatars.githubusercontent.com/ml/14937?s=400&v=4","name":"InfieldAI","ownerLogin":"infieldai","pricingUrl":null,"primaryCategory":"Dependency management","privacyPolicyUrl":"https://www.infield.ai/privacy","secondaryCategory":"Security","shortDescription":"Upgrade dependencies safely and easily with Infield-verified changelogs","slug":"infieldai","statusUrl":"","supportUrl":"support@infield.ai","tosUrl":"https://www.infield.ai/terms","type":"marketplace_listing"},{"bgColor":"ffffff","copilotApp":false,"documentationUrl":"https://docs.threatrix.io/","extendedDescription":null,"fullDescription":"Graduate To Threatrix\n\nThreatrix is the first-to-market, cost-effective solution, providing continual license compliance and automated\nsecurity, allowing organizations to determine their exposure to open source risks with one solution. Actionable results\ndrive measurable reductions in risk, saving organizations developer time and costly remediation efforts for compliance\nteams.\n\nThreatrix provides hyper-accurate, audit quality results with its first-to-market technology.\n","id":13233,"installationCount":38,"isVerifiedOwner":true,"listingLogoUrl":"https://avatars.githubusercontent.com/ml/13233?s=400&v=4","name":"Threatrix","ownerLogin":"threatrix","pricingUrl":null,"primaryCategory":"Security","privacyPolicyUrl":"https://threatrix.io/privacy","secondaryCategory":"Dependency management","shortDescription":"Audit quality, snippet level, open source security and license compliance in build-time with auto-remediation","slug":"threatrix","statusUrl":"","supportUrl":"support@threatrix.io","tosUrl":"https://threatrix.io/terms","type":"marketplace_listing"},{"bgColor":"fff","copilotApp":false,"documentationUrl":"https://edgebit.io/docs/0.x/","extendedDescription":null,"fullDescription":"Prevent insecure dependencies before they can merge. Track and remediate vulnerabilities in your entire supply chain.\n\nEdgeBit is a real-time SCA tool that uses data about how your app executes in production to filter out irrelevant\nvulnerabilities and dormant code.\n","id":16139,"installationCount":15,"isVerifiedOwner":false,"listingLogoUrl":"https://avatars.githubusercontent.com/ml/16139?s=400&v=4","name":"EdgeBit Security","ownerLogin":"edgebitio","pricingUrl":null,"primaryCategory":"Security","privacyPolicyUrl":"https://edgebit.io/legal/privacy/","secondaryCategory":"Dependency management","shortDescription":"Real-time SCA tool to find issues in your supply chain and rank threats with context from production execution","slug":"edgebit-security","statusUrl":"https://status.edgebit.io","supportUrl":"https://edgebit.io/support/","tosUrl":"https://edgebit.io/legal/terms/","type":"marketplace_listing"},{"bgColor":"bdee63","copilotApp":false,"documentationUrl":"","extendedDescription":null,"fullDescription":"Update all your dependencies on autopilot.\n\nWe use AI to process changelogs and release notes, analyze your codebase, and automatically update your dependencies,\nincluding any breaking changes.\n\nDepsHub helps you to save time by providing a simple and easy way to monitor and update your dependencies.\n","id":17410,"installationCount":32,"isVerifiedOwner":true,"listingLogoUrl":"https://avatars.githubusercontent.com/ml/17410?s=400&v=4","name":"DepsHub App","ownerLogin":"DepshubHQ","pricingUrl":null,"primaryCategory":"Dependency management","privacyPolicyUrl":"https://depshub.com/privacy","secondaryCategory":"AI Assisted","shortDescription":"Update all your dependencies on autopilot","slug":"depshub-app","statusUrl":"","supportUrl":"https://depshub.com/","tosUrl":"","type":"marketplace_listing"},{"bgColor":"0d1840","copilotApp":false,"documentationUrl":"https://debricked.com/documentation/1.0/integrations/ci-build-systems/github?utm_source=github&utm_medium=marketplace&utm_campaign=github-marketplace","extendedDescription":null,"fullDescription":"Debricked s tool allows you to discover known vulnerabilities in your open source-libraries in an early stage of your\ndevelopment process. Identify, fix and prevent open source vulnerabilities automatically with enforceable pipeline\nrules. Spend less time on manual security research and fixes; let Debricked do the work for you.\n\nDebricked is free for all open source projects!\n","id":3768,"installationCount":2377,"isVerifiedOwner":true,"listingLogoUrl":"https://avatars.githubusercontent.com/ml/3768?s=400&v=4","name":"Debricked","ownerLogin":"debricked","pricingUrl":null,"primaryCategory":"Security","privacyPolicyUrl":"https://debricked.com/privacy-policy/?utm_source=github&utm_medium=marketplace&utm_campaign=github-marketplace","secondaryCategory":"Dependency management","shortDescription":"Automatically identify, fix and prevent vulnerabilities in your open source dependencies","slug":"debricked","statusUrl":"","supportUrl":"https://debricked.com/contact/?utm_source=github&utm_medium=marketplace&utm_campaign=github-marketplace","tosUrl":"https://debricked.com/terms-and-conditions/?utm_source=github&utm_medium=marketplace&utm_campaign=github-marketplace","type":"marketplace_listing"},{"bgColor":"ffffff","copilotApp":false,"documentationUrl":"","extendedDescription":null,"fullDescription":"OpenSCA is the open source realization of SCA (Software Composition Analysis) technology. As the open source version of\nXmirror SCA, it has been endowed with the core abilities of mixed-source application security detection. Aiming at\nguarding open source security, it is competent to dig out the hiding vulnerabilities and compliance risks in all\ncomponents by dependency analysis, characteristic analysis, reference identification and compliance analysis.\n","id":17133,"installationCount":3,"isVerifiedOwner":false,"listingLogoUrl":"https://avatars.githubusercontent.com/ml/17133?s=400&v=4","name":"OpenSCA SaaS OAuth","ownerLogin":"XmirrorSecurity","pricingUrl":null,"primaryCategory":"Security","privacyPolicyUrl":"https://opensca.xmirror.cn","secondaryCategory":"Dependency management","shortDescription":"OpenSCA is an open source solution to check your software for supply chain security risks","slug":"opensca-saas-oauth","statusUrl":"","supportUrl":"https://github.com/XmirrorSecurity/OpenSCA-cli/issues","tosUrl":"","type":"marketplace_listing"},{"bgColor":"ffffff","copilotApp":false,"documentationUrl":"https://github.com/ossillate-inc/packj","extendedDescription":null,"fullDescription":"PackjGuard is a Github app that monitors :eyes: your public/private repos 24x7 for malicious, vulnerable,\nabandoned/deprecated, and other risky dependencies and mitigates :shield: software supply-chain attacks by creating pull\nrequests for automatic remediation.\n\nA recent (Dec 22) example is PyTorch package that was compromised using dependency confusion vulnerability (no CVE\nassigned).\n\nIt is based on our open-source auditing tool Packj\n","id":15130,"installationCount":11,"isVerifiedOwner":false,"listingLogoUrl":"https://avatars.githubusercontent.com/ml/15130?s=400&v=4","name":"PackjGuard","ownerLogin":"ossillate-inc","pricingUrl":null,"primaryCategory":"Security","privacyPolicyUrl":"https://packj.dev/privacy","secondaryCategory":"Dependency management","shortDescription":"Hardens your repo, detects dependency confusion & typo-squatting attempts, blocks malicious/risky open-source dependencies","slug":"packjguard","statusUrl":"","supportUrl":"https://packj.dev/contact","tosUrl":"","type":"marketplace_listing"},{"bgColor":"2D1DFF","copilotApp":false,"documentationUrl":"https://docs.grit.io/","extendedDescription":null,"fullDescription":"Grit provide an automated maintenance engineer that continuously modernizes your codebase by generating pull requests to\ntake care of maintenance tasks and standards enforcement.\n\nWe provide off-the-shelf modernizations (ex. upgrading old versions of Java, converting from Angular to React) and API\nupgrades, but also allow you to easily define your own internal conventions with a single example.\n","id":16632,"installationCount":1494,"isVerifiedOwner":false,"listingLogoUrl":"https://avatars.githubusercontent.com/ml/16632?s=400&v=4","name":"Grit App","ownerLogin":"getgrit","pricingUrl":null,"primaryCategory":"AI Assisted","privacyPolicyUrl":"https://docs.grit.io/privacy","secondaryCategory":"Dependency management","shortDescription":"Software maintenance on autopilot","slug":"grit-app","statusUrl":"","supportUrl":"https://docs.grit.io/","tosUrl":"https://docs.grit.io/terms","type":"marketplace_listing"}],"total":9,"totalPages":1},"categories":{"apps":[{"name":"API management","slug":"api-management","description_html":"<p>Structure your API infrastructure to enable various internet gateways to interact with your service.</p>\n"},{"name":"Backup Utilities","slug":"backup-utilities","description_html":"<p>Utilities providing periodic backups of your GitHub data</p>\n"},{"name":"Chat","slug":"chat","description_html":"<p>Bring GitHub into your conversations.</p>\n"},{"name":"Code quality","slug":"code-quality","description_html":"<p>Automate your code review with style, quality, security, and test‑coverage checks when you need them.</p>\n"},{"name":"Code review","slug":"code-review","description_html":"<p>Ensure your code meets quality standards and ship with confidence.</p>\n"},{"name":"Container CI","slug":"container-ci","description_html":"<p>Continuous integration for container applications.</p>\n"},{"name":"Continuous integration","slug":"continuous-integration","description_html":"<p>Automatically build and test your code as you push it to GitHub, preventing bugs from being deployed to production.</p>\n"},{"name":"Dependency management","slug":"dependency-management","description_html":"<p>Secure and manage your third-party dependencies.</p>\n"},{"name":"Deployment","slug":"deployment","description_html":"<p>Streamline your code deployment so you can focus on your product.</p>\n"},{"name":"Deployment Protection Rules","slug":"deployment-protection-rules","description_html":"<p>Enables custom protection rules to gate deployments with third-party services</p>\n"},{"name":"Game CI","slug":"game-ci","description_html":"<p>Tools for building a CI pipeline for game development</p>\n"},{"name":"IDEs","slug":"ides","description_html":"<p>Find the right interface to build, debug, and deploy your source code.</p>\n"},{"name":"Learning","slug":"learning","description_html":"<p>Get the skills you need to level up.</p>\n"},{"name":"Localization","slug":"localization","description_html":"<p>Extend your software's reach. Localize and translate continuously from GitHub.</p>\n"},{"name":"Mobile","slug":"mobile","description_html":"<p>Improve your workflow for the small screen.</p>\n"},{"name":"Mobile CI","slug":"mobile-ci","description_html":"<p>Continuous integration for Mobile applications</p>\n"},{"name":"Monitoring","slug":"monitoring","description_html":"<p>Monitor the impact of your code changes. Measure performance, track errors, and analyze your application.</p>\n"},{"name":"Project management","slug":"project-management","description_html":"<p>Organize, manage, and track your project with tools that build on top of issues and pull requests.</p>\n"},{"name":"Publishing","slug":"publishing","description_html":"<p>Get your site ready for production so you can get the word out.</p>\n"},{"name":"Recently added","slug":"recently-added","description_html":"<p>The latest tools that help you and your team build software better, together.</p>\n"},{"name":"Security","slug":"security","description_html":"<p>Find, fix, and prevent security vulnerabilities before they can be exploited.</p>\n"},{"name":"Support","slug":"support","description_html":"<p>Get your team and customers the help they need.</p>\n"},{"name":"Testing","slug":"testing","description_html":"<p>Eliminate bugs and ship with more confidence by adding these tools to your workflow.</p>\n"},{"name":"Utilities","slug":"utilities","description_html":"<p>Auxiliary tools to enhance your experience on GitHub</p>\n"}],"actions":[{"name":"API management","slug":"api-management","description_html":"<p>Structure your API infrastructure to enable various internet gateways to interact with your service.</p>\n"},{"name":"Backup Utilities","slug":"backup-utilities","description_html":"<p>Utilities providing periodic backups of your GitHub data</p>\n"},{"name":"Chat","slug":"chat","description_html":"<p>Bring GitHub into your conversations.</p>\n"},{"name":"Code quality","slug":"code-quality","description_html":"<p>Automate your code review with style, quality, security, and test‑coverage checks when you need them.</p>\n"},{"name":"Code review","slug":"code-review","description_html":"<p>Ensure your code meets quality standards and ship with confidence.</p>\n"},{"name":"Container CI","slug":"container-ci","description_html":"<p>Continuous integration for container applications.</p>\n"},{"name":"Continuous integration","slug":"continuous-integration","description_html":"<p>Automatically build and test your code as you push it to GitHub, preventing bugs from being deployed to production.</p>\n"},{"name":"Dependency management","slug":"dependency-management","description_html":"<p>Secure and manage your third-party dependencies.</p>\n"},{"name":"Deployment","slug":"deployment","description_html":"<p>Streamline your code deployment so you can focus on your product.</p>\n"},{"name":"Deployment Protection Rules","slug":"deployment-protection-rules","description_html":"<p>Enables custom protection rules to gate deployments with third-party services</p>\n"},{"name":"Game CI","slug":"game-ci","description_html":"<p>Tools for building a CI pipeline for game development</p>\n"},{"name":"GitHub Sponsors","slug":"github-sponsors","description_html":"<p>Tools to manage your <a href=\"https://github.com/sponsors\">GitHub Sponsors</a> community</p>\n"},{"name":"IDEs","slug":"ides","description_html":"<p>Find the right interface to build, debug, and deploy your source code.</p>\n"},{"name":"Learning","slug":"learning","description_html":"<p>Get the skills you need to level up.</p>\n"},{"name":"Localization","slug":"localization","description_html":"<p>Extend your software's reach. Localize and translate continuously from GitHub.</p>\n"},{"name":"Mobile","slug":"mobile","description_html":"<p>Improve your workflow for the small screen.</p>\n"},{"name":"Mobile CI","slug":"mobile-ci","description_html":"<p>Continuous integration for Mobile applications</p>\n"},{"name":"Monitoring","slug":"monitoring","description_html":"<p>Monitor the impact of your code changes. Measure performance, track errors, and analyze your application.</p>\n"},{"name":"Project management","slug":"project-management","description_html":"<p>Organize, manage, and track your project with tools that build on top of issues and pull requests.</p>\n"},{"name":"Publishing","slug":"publishing","description_html":"<p>Get your site ready for production so you can get the word out.</p>\n"},{"name":"Security","slug":"security","description_html":"<p>Find, fix, and prevent security vulnerabilities before they can be exploited.</p>\n"},{"name":"Support","slug":"support","description_html":"<p>Get your team and customers the help they need.</p>\n"},{"name":"Testing","slug":"testing","description_html":"<p>Eliminate bugs and ship with more confidence by adding these tools to your workflow.</p>\n"},{"name":"Utilities","slug":"utilities","description_html":"<p>Auxiliary tools to enhance your experience on GitHub</p>\n"}]}},"title":"Marketplace"}