What is Gemnasium?
Gemnasium keeps track of projects dependencies. Ruby, Node.js, PHP composer, Bower and Python projects dependencies are automatically parsed, and notifications sent when new versions are released or security advisories are published.
Gemnasium is a tool in the Dependency Monitoring category of a tech stack.
Who uses Gemnasium?
5 companies reportedly use Gemnasium in their tech stacks, including Wiki.js, Virtkick, and Nuuvem.
Python, PHP, npm, Ruby, and Yarn are some of the popular tools that integrate with Gemnasium. Here's a list of all 6 tools that integrate with Gemnasium.
- Know about security vulnerabilities affecting your code
- Know when new versions of your dependencies gets released
- Know what changed with integrated changelogs
Gemnasium Alternatives & Comparisons
What are some alternatives to Gemnasium?
See all alternatives
Automatically find & fix vulnerabilities in your code, containers, Kubernetes, and Terraform
It is an addictive Inversion of Control container for .NET Core, ASP.NET Core, .NET 4.5.1+, Universal Windows apps, and more. It provides activation events to let you know when components are being activated or released, allowing for a lot of customization with little code.
Dependabot helps you keep your dependencies up to date. Every day, it checks your dependency files for outdated requirements and opens individual PRs for any it finds. You review, merge, and get to work on the latest, most secure releases.
Continuously scan and comply with open source licenses across your deep dependencies.
The leading solution for agile open source security and license compliance management, WhiteSource integrates with the DevOps pipeline to detect vulnerable open source libraries in real-time.