RepoWarden parses your Cargo.toml, respects Rust's semver conventions (including the special 0.x caret behavior), and opens tested pull requests with updated crate versions.
RepoWarden handles all the nuances of Rust dependency declarations so you get correct, safe updates every time.
Both simple (name = "version") and inline table (name = { version = "x", features = [...] }) declarations are fully parsed and updated.
Both [dependencies] and [dev-dependencies] sections are scanned. Build dependencies under [build-dependencies] are included too.
Cargo treats ^0.8 as 0.8.x (not 0.x.x). RepoWarden respects this convention, so ^0.8.2 will update within 0.8.x but never jump to 0.9.0.
Path dependencies, git dependencies, wildcard (*), and exact-pinned (=) versions are automatically detected and skipped.
RepoWarden respects your version constraints exactly as Cargo does.
| Constraint | Behavior | Example |
|---|---|---|
^1.2.3 | Updates within 1.x.x | ^1.2.3 may update to 1.9.0 |
^0.8.2 | Updates within 0.8.x only | ^0.8.2 may update to 0.8.9 but not 0.9.0 |
~1.2.3 | Updates within 1.2.x | ~1.2.3 may update to 1.2.9 |
=1.0.0 | Skipped -- exact pins not updated | Stays at 1.0.0 |
* | Skipped -- wildcard not updated | Left unchanged |
Reads your manifest file and extracts all dependency declarations with their version constraints.
Queries the crates.io registry for the latest published version of each crate.
Applies updates, runs cargo build and cargo test in an isolated sandbox to verify correctness.
Creates a pull request with updated Cargo.toml and Cargo.lock, plus a summary and changelog links.
Whether you are building a web server, CLI tool, embedded system, or library, RepoWarden keeps your crates up to date.
tokio
serde
actix-web
axum
clap
reqwest
tracing
anyhow
Free for 1 repo. No credit card required. Set up in under 5 minutes.
RepoWarden handles your polyglot fleet. Same install, same dashboard, same PR workflow across every language your team uses.