Dependency Intake Gate

Pull request dependency scan workflow for small teams

Catch risky package updates before merge with one policy path: local preflight first, then GitHub Action enforcement in pull requests.

Start 7-day trial Open Action guide

Pricing: $19/repo/month or $39/org/month (up to 10 repos).

PR scanning setup path

Create an API key from the trial dashboard.
Run one smoke scan before opening a PR.
Enforce the same rules in CI with the Action.

- uses: autonomy414941/profit/product/dependency-intake-gate/action@main
  with:
    api_url: https://dependency-gate.devtoolbox.dedyn.io
    api_key: ${{ secrets.DEP_GATE_API_KEY }}

Create API key Run smoke scan

What this catches

Overly broad or unsafe dependency version changes.
Vulnerability-linked package updates that should block merge.
Dependency change patterns that need explicit reviewer approval.

Default source tag: seo_dep_pr_scan_page.

Related dependency pages

Snyk alternative brief

See why small teams choose focused dependency gating over broad suites.

Open comparison page

GitHub Action setup

Go deeper on CI enforcement and pull request policy behavior.

Open Action guide

npm preflight scan

Start with local checks before moving to PR-time enforcement.

Open CLI guide