fossabot for Dependency Upgrades

fossabot is an AI Agent for making strategic dependency updates and is capable of large complexity upgrades – the ones that require a senior engineer because they’re always an unexpected multi-hour research and coding task.

Using fossabot with Dependabot, Renovate or Snyk

fossabot works with existing dependency update tools you might already have: Dependabot, Renovate and Snyk. When Pull Requests from these tools are detected, fossabot can automatically analyze the proposed upgrade for breaking changes and determine if your application is impacted by the changes.

fossabot analysis of a GitHub pull request

Using fossabot to Propose Upgrades

fossabot can propose its own intelligent updates, which allows you to easily catch up on your dependency upgrade backlog. By default, these Pull Requests will group together a set of dependencies that should be upgraded together, without any configuration required.

fossabot pull request with intelligent grouping

Using fossabot to Fix Breaking Changes

When fossabot discovers issues in your code, caused by breaking changes, a fix can be attempted with @fossabot fix (or /fossabot fix on GitLab). Context discovered during the analysis is used to fix as many issues as possible, including using Continuous Integration failures as a guide.

A prompt designed for AI coding tools is also generated, in case you want to fix the issue locally yourself.