Effortless dependency compliance with your license policies

Spend less time managing your GitHub notifications

A sidekick for repository maintainers

Beautiful automated tech stack docs that live in your repos

A Developer Relations Platform

Scoreboard for your public Github repositories

MergeBase CodeGreen scans your projects for vulnerable components. Track and eliminate vulnerable components

Build team morale by giving kudos to your teammates directly from issues, pull requests and discussions

The knottersbot to help you grow on Knotters via your GitHub activities

WIP App is a fork of WIP which allows developers to block merging of pull requests containing WIP in the title

Find and fix security problems like Log4Shell automatically. Available Open Source or as a hosted SaaS powered by GitHub Apps

A GitHub repo traffic history tracker

Automates releases using changesets and conventional commits

Seal helps you remediate open source vulnerabilities without enduring difficult upgrades

Prevent security issues before they become threats

Scan packages and Docker images uploaded to GitHub Packages

Action to validate that a repo contains a license of one of the allowed types

Generate an SBOM via the REST API

A GitHub action to perform a Detect rapid scan and record the results

DustiLock is a tool to find which of your dependencies is susceptible to Dependency Confusion attack