RepoWarden scans your NuGet packages across .csproj, .fsproj, and Directory.Packages.props files. It detects vulnerabilities via the NuGet API and opens tested pull requests with updated package versions.
RepoWarden understands the .NET project system and handles both traditional per-project references and centralized package management.
Scans PackageReference elements in your project files. Supports both C# (.csproj) and F# (.fsproj) projects. Version attributes are updated in place while preserving the rest of the XML structure.
Supports Directory.Packages.props for centralized version management. When detected, RepoWarden updates the central file instead of individual project files, keeping your version pins consistent across the solution.
Checks every package against the NuGet vulnerability API to detect known security issues. Severity levels are included in PR descriptions and security updates are prioritized over regular updates.
Reads your TargetFramework and TargetFrameworks properties to understand which .NET version you are running. Flags end-of-support runtimes with upgrade recommendations.
RepoWarden identifies your .NET project structure automatically from your repository files.
.csprojC# project files with PackageReference elements
.fsprojF# project files with PackageReference elements
Directory.Packages.propsCentralized package version management
Every scan checks your NuGet packages against the GitHub Advisory Database for known CVEs. Security updates are prioritized and clearly labeled in your pull request.
Packages are checked against the NuGet vulnerability API. Each advisory includes the severity level (critical, high, moderate, low) and affected version ranges.
Security updates appear first in the PR description. Critical and high severity issues are highlighted so you can address them immediately.
In addition to CVEs, RepoWarden screens for suspicious packages with recent ownership changes, low download counts, or unusual metadata.
Detects your target framework version and warns when you are running on an end-of-life or out-of-support .NET runtime.
Finds .csproj, .fsproj, and Directory.Packages.props in your repository tree.
Queries the NuGet API for latest versions and vulnerability advisories for each package.
Runs dotnet restore, dotnet build, and dotnet test in an isolated sandbox to verify updates.
Creates a pull request with updated package references, security notes, and changelog links.
Whether you are building an ASP.NET Core web app, a Blazor frontend, a MAUI mobile app, or a class library, RepoWarden keeps your NuGet packages current.
ASP.NET Core
Entity Framework
Blazor
MAUI
xUnit
NUnit
Serilog
MediatR
Free for 1 repo. No credit card required. Set up in under 5 minutes.
RepoWarden handles your polyglot fleet. Same install, same dashboard, same PR workflow across every language your team uses.