depGraph

Welcome to DepGraph.

DepGraph is a dependency intelligence platform that gives developers real-time health scores, abandonment risk forecasts, and supply-chain integrity signals for every open-source library in their project.

Core Products

// CLI Guide

Scan projects locally with zero configuration.

// GitHub Action

Automate health checks in your CI/CD pipelines.

// API Reference

Integrate DepGraph into your own internal tooling.

Why DepGraph?

Unlike reactive tools (Snyk, Dependabot) that only alert after a vulnerability is published, DepGraph is predictive — surfacing libraries at risk of abandonment, maintainer compromise, or breaking changes before they become production emergencies.

The Three Pillars

  • +Predict: Health scores and abandonment risk for every dependency, updated daily.
  • +Protect: Supply chain integrity monitoring for suspicious maintainer behavior.
  • +Fix: Migration path generator with effort estimates and drop-in alternatives.