RepoWarden parses your go.mod, queries the Go module proxy for latest versions, and opens tested pull requests -- with govulncheck security scanning built in.
RepoWarden understands Go modules natively and handles the nuances of the Go dependency ecosystem.
Only direct dependencies are updated. Indirect deps are managed automatically by go mod tidy, keeping your module graph clean.
Modules with replace directives are automatically skipped. Local replacements, forks, and vendor overrides are left untouched.
Pseudo-versions (v0.0.0-timestamp-hash) are detected and skipped. These pin to specific commits and shouldn't be auto-updated.
Version lookups use proxy.golang.org for fast, reliable resolution. No authentication required, and results are cached.
Every Go repo gets automatic vulnerability scanning using the official Go vulnerability database.
Uses vuln.go.dev, the same database maintained by the Go security team. Covers CVEs and Go-specific advisories.
govulncheck doesn't just flag vulnerable packages -- it checks whether your code actually calls the vulnerable functions.
Get a clear report of all findings with severity, CVE IDs, and affected module paths. Findings are tracked across scans.
Reads your module file and extracts all require directives, skipping replaced and indirect deps.
Queries proxy.golang.org for the latest version of each direct dependency.
Applies updates, runs go build and go test in an isolated sandbox to verify correctness.
Creates a pull request with updated go.mod and go.sum, plus a summary of what changed.
RepoWarden uses the right Go version for your project by checking multiple sources in priority order.
| Source | File | Example |
|---|---|---|
| Version file | .go-version | 1.22.0 |
| asdf | .tool-versions | golang 1.22.0 |
| mise | .mise.toml | go = "1.22" |
| Go module | go.mod | go 1.22 |
Whether you are building APIs, CLIs, or cloud-native services, RepoWarden keeps your Go modules up to date.
gin-gonic/gin
gorilla/mux
go-chi/chi
labstack/echo
spf13/cobra
spf13/viper
stretchr/testify
uber-go/zap
Free for 1 repo. No credit card required. Set up in under 5 minutes.
RepoWarden handles your polyglot fleet. Same install, same dashboard, same PR workflow across every language your team uses.