Dependency healthKnow which packages are maintained, abandoned, risky, or quietly drifting before releases depend on them.
- Commit age tracking
- Maintainer signals
- Risk scoring
Revenue-grade dependency health
See every package in realtime and catch the moment a dependency becomes a production risk.
npmGitHubVercelSupabaseNode
rottenpack/web
Packages
2,369
-30%
Healthy
1,902
+32%
Watchlist
103
-18%
Critical
04
0%
Licenses
21
+8%
Age
10m
-25%
⚡⚡
28 packages changedRealtime
Experience score
94
Clean
No critical package regressions found.
Critical queue
license drift2
stale package4
solo maintainer9
Lightweight scans. Fast enough for every repository and every release cycle.
5-minute setup. Connect GitHub, pick a repo, and run your first package report.
Independent signals. See maintainer, license, age, and security context together.
Features
Everything you need to understand your packages
From maintainer risk to license tracking, get the full picture of how your dependencies behave.
Realtime scanningConnect a repository and watch RottenPack map dependency risk across every package manifest.
- Repo-level overview
- Package drilldowns
- Live scan status
Maintainer profilesSpot solo-maintainer and low-activity risks that traditional CVE-only scanners miss.
- Contributor count
- Project vitality
- Ecosystem context
Actionable alertsGet a clean list of the dependency changes that matter instead of another noisy security inbox.
- Critical changes
- License drift
- Production watchlist
Workflow
Ship safer releases in three steps
01
Connect repository
Read-only GitHub access keeps setup quick and focused.
02
Analyze packages
RottenPack scores security, activity, license, and maintainer risk.
03
Ship with context
Fix high-risk dependencies before they surprise production.
FAQ
Questions? We've got answers.
Everything you need to know about RottenPack before you sign up.
Keep your dependencies healthy
Monitor package health, security issues, and license risk before they impact production.
Scan for free