Complete control of all your projects dependencies and security.

Project overview

The project overview allows quick identification of CVE's, dependencies update status and immediate actions.

Automatic updates

Configure a git hook on your project with a single command and every time your dependencies lock file is changed, it is updated automatically on Octotrack.

Invite your colleagues

Invite your team to join a specific project and keep them updated of new releases and security vulnerabilities.

Export CVE's

Share with anyone the vulnerabilities affecting your project and get feedback.

Analyse release notes

Know what the latest changes on your dependencies are and choose to upgrade based on that.

Latest Vulnerabilities

Nokogiri gem, via libxml, is affected by DoS and RCE vulnerabilities

September 19, 2017

The version of libxml2 packaged with Nokogiri contains several vulnerabilities. Nokogiri has mitigated these issues by upgrading to libxml 2.9.5. It was discovered that a type confusion error existed in libxml2. An attacker could use this to specially construct XML data that could cause a denial...

Nokogiri gem contains two upstream vulnerabilities in libxslt 1.1.29

May 09, 2017

nokogiri version 1.7.2 has been released. This is a security update based on 1.7.1, addressing two upstream libxslt 1.1.29 vulnerabilities classified as "Medium" by Canonical and given a CVSS3 score of "6.5 Medium" and "8.8 High" by RedHat. These patches only apply when using Nokogiri's vendor...