Pyup automates dependency updates and vulnerability management for your GitHub projects via a CLI and web service.
A tool to update your project's dependencies on GitHub. Runs on pyup.io, comes with a command line interface.
Pyup is used by developers and security teams to keep project dependencies up-to-date and secure by automatically scanning for vulnerabilities and creating update pull requests. It integrates with GitHub repositories to streamline dependency maintenance and reduce security risks.
To fully leverage Pyup's capabilities, users should link their GitHub repositories with pyup.io and ensure proper API token configuration. Regular use helps maintain security hygiene by automating dependency updates and vulnerability fixes.
Install via pip: pip install pyup
Configure Pyup with your GitHub repository and API token
Run Pyup CLI commands to check and update dependenciespyup check
Scans the project dependencies for outdated packages and vulnerabilities.
pyup update
Updates the dependencies and creates pull requests with the necessary changes.
pyup --help
Displays help information and available commands for the Pyup CLI.