Extract your project dependencies using GitLab API. supports pom.xml, package.json, composer.json, Gemfile
This is a noop dependency to be able to prune parts of a dependency graph.
GitLab UI Components
Parser for Github, GitLab and Bitbucket issues actions, references and mentions
Show ESLint results directly in the GitLab code quality results
GitLab Duo provider for Vercel AI SDK
semantic-release plugin to publish a GitLab release
GitLab Stylelint base configuration
SVG Assets for GitLab
GitLab MCP server for projects, merge requests, issues, pipelines, wiki, releases, and more
ESLint rules using Regular Expression
GitLab Duo for your command line
A Backstage backend plugin that handles authentication
Utility functions for requester implementatons used in @gitbeaker
Parse repository URLs to extract, SCM platform, domain, user, and project information.
Formatter that transforms ESLint reports into a format suitable for use with GitLab widgets.
Core API implementation of the GitLab API
Cross Platform implementation of the GitLab API
Fonts to be used in the GitLab product
Duo UI Components
The gitlab-provider backend module for the auth plugin.
This is a temporary fork of https://github.com/ichord/At.js.
[](https://github.com/un-ts/changesets-gitlab/actions/workflows/ci.yml?query=branch%3Amain) [![CodeRabbit Pull Request Revie
Create dynamic Gitlab CI/CD pipelines using TypeScript with types
Dependency Bot is a Ruby gem designed to automate the management and updating of dependencies in Ruby projects hosted on Gitlab. It simplifies the process of keeping your project's dependencies up-to-date, ensuring that you can focus on development without worrying about outdated libraries or security vulnerabilities.
Given a Chef cookbook, verifies its dependencies against a Chef Server and a Repository Manager instance (i.e., GitHub/GitLab)
WARNING: Contains intentional security vulnerabilities including command injection, YAML deserialization, eval injection, and hardcoded secrets. For testing GitLab dependency scanning, SAST tools, and security training ONLY. DO NOT use in production.
Analyses your Gemfile for dependency health: checks if gems are actively maintained (last commit dates via GitHub and GitLab, release dates), outdated versions, archived repos, OpenSSF Scorecard security scores, known vulnerabilities via deps.dev, and libyear drift. Ruby version freshness with EOL detection. Handles rubygems, git, path, and GitHub Packages sources. Outputs coloured terminal tables, markdown, or JSON. CI quality gates with --fail-if-critical, --fail-if-warning, --fail-if-vulnerable, --fail-if-outdated, and --ignore. A comprehensive alternative to running bundle outdated, bundler-audit, and libyear-bundler separately.