Fix security vulnerabilities in dependencies
remediate-dependabot-alertscommandsetup L2★3
Blink-Build-Studios/dependabot-remediator ↗What it does
Upgrade vulnerable dependencies, fix breaking changes, run tests, and merge green PR
Best for
Batch remediation of security vulnerabilities with comprehensive breaking-change migration and test validation
Inputs
- · open Dependabot alerts (GitHub API)
- · manifest files (requirements.txt, package.json, Cargo.toml, etc.)
- · test suite commands
Outputs
- · updated dependency versions
- · code fixes for breaking changes
- · passing test suite
- · merged dependabot PR
Requires
- · gh CLI
- · package managers (pip/npm/cargo/go/bundle)
- · project test/lint tools
Preconditions
- · Dependabot alerts exist
- · package managers configured
- · tests runnable
Failure modes
- · no patched version available
- · test failures from upgrade
- · linting failures
- · breaking API changes
- · transitive dependency conflicts
Trust signals
- · discovers all fixable alerts first
- · documents unfixable ones in PR
- · iterates test failures until green
- · documents per-alert severity and CVE
- · requires CI green before closing