Portable and language managers
npm install -g renovatelocal npm package metadata
npm / rank 555
Automated dependency updates. Flexible so you don't need to be. Version 43.227.1 via npm; verified 2026-06-21.
install
npm install -g renovatelocal npm package metadata
overview
Automated dependency updates. Flexible so you don't need to be.
security posture
No matching local secret-handling manifest was found for renovate. Nucleus package metadata is still published here so future coverage has a stable package URL.
Before unattended agent use, check whether the tool reads plaintext credentials, writes remote state, publishes artifacts, or shells out to plugins.
executables
| Command | Kind | Exposure | Note |
|---|---|---|---|
renovate | cli | global executable | |
renovate-config-validator | cli | global executable |
freshness
These signals separate page generation age, package-manager activity, and upstream release comparison. Version lag is warned only when an evidence URL and comparable versions are present.
https://github.com/renovatebot/renovate
install metadata
| Package key | npm:renovate |
|---|---|
| Version | 43.227.1 |
| Package manager | npm |
| Package manager page | https://www.npmjs.com/package/renovate |
| Homepage | https://renovatebot.com |
| Repository | https://github.com/renovatebot/renovate |
| Upstream docs | https://renovatebot.com |
| License | AGPL-3.0-only |
| Source archive | https://registry.npmjs.org/renovate/-/renovate-43.227.1.tgz |
| Issue tracker | https://github.com/renovatebot/renovate/issues |
| Last updated | 2026-06-21T06:13:21.709Z |
| Published | 2026-06-16T23:55:55.089Z |
| Pulse | updated |
| Dependencies | @aws-sdk/client-codecommit, @aws-sdk/client-ec2, @aws-sdk/client-ecr, @aws-sdk/client-eks, @aws-sdk/client-rds, @aws-sdk/client-s3, @aws-sdk/credential-providers, @baszalmstra/rattler, @breejs/later, @cdktf/hcl2json, @opentelemetry/api, @opentelemetry/context-async-hooks, @opentelemetry/exporter-trace-otlp-http, @opentelemetry/instrumentation, @opentelemetry/instrumentation-bunyan, @opentelemetry/instrumentation-http, @opentelemetry/instrumentation-redis, @opentelemetry/resource-detector-aws, @opentelemetry/resource-detector-azure, @opentelemetry/resource-detector-gcp, @opentelemetry/resource-detector-github, @opentelemetry/resources, @opentelemetry/sdk-trace-base, @opentelemetry/sdk-trace-node, @opentelemetry/semantic-conventions, @pnpm/parse-overrides, @qnighy/marshal, @redis/client, @renovatebot/detect-tools, @renovatebot/good-enough-parser, @renovatebot/osv-offline, @renovatebot/pep440, @renovatebot/pgp, @renovatebot/ruby-semver, @sindresorhus/is, @yarnpkg/core, @yarnpkg/parsers, adm-zip, ae-cvss-calculator, agentkeepalive, async-mutex, aws4, azure-devops-node-api, bunyan, cacache, changelog-filename-regex, clean-git-ref, commander, croner, cronstrue, deepmerge, dequal, detect-indent, diff, editorconfig, email-addresses, emoji-regex, emojibase, emojibase-regex, execa, find-packages, find-up, fs-extra, git-url-parse, github-url-from-git, glob, global-agent, google-auth-library, got, graph-data-structure, handlebars, ignore, ini, json-dup-key-validator, json-stringify-pretty-compact, json5, jsonata, jsonc-weaver, klona, lru-cache, luxon, markdown-it, markdown-table, minimatch, moo, ms, neotraverse, node-html-parser, p-all, p-map, p-queue, p-throttle, parse-link-header, prettier, protobufjs, punycode, remark, remark-gfm, remark-github, safe-stable-stringify, sax, semver, semver-stable, semver-utils, shlex, simple-git, slugify, source-map-support, strip-json-comments, toml-eslint-parser, tslib, upath, url-join, validate-npm-package-name, xmldoc, yaml, zod |
| Build dependencies | @biomejs/biome, @commander-js/extra-typings, @containerbase/istanbul-reports-html, @containerbase/semantic-release-pnpm, @hyrious/marshal, @ls-lint/ls-lint, @openpgp/web-stream-tools, @semantic-release/exec, @smithy/util-stream, @types/adm-zip, @types/aws4, @types/breejs__later, @types/bunyan, @types/cacache, @types/callsite, @types/changelog-filename-regex, @types/clean-git-ref, @types/common-tags, @types/eslint, @types/estree, @types/fs-extra, @types/github-url-from-git, @types/global-agent, @types/ini, @types/js-yaml, @types/json-dup-key-validator, @types/linkify-markdown, @types/lodash, @types/luxon, @types/markdown-it, @types/marshal, @types/mdast, @types/moo, @types/ms, @types/node, @types/parse-link-header, @types/punycode, @types/sax, @types/semver, @types/semver-stable, @types/semver-utils, @types/tmp, @types/validate-npm-package-name, @vitest/coverage-v8, ajv, ajv-formats, aws-sdk-client-mock, callsite, common-tags, conventional-changelog-conventionalcommits, emojibase-data, esbuild, expect-more-jest, graphql, husky, jest-extended, lint-staged, markdownlint-cli2, markdownlint-cli2-formatter-template, memfs, nock, npm-run-all2, nyc, oxlint, oxlint-tsgolint, rimraf, semantic-release, tar, tmp-promise, tsdown, type-fest, typescript, unified, vite, vitest, vitest-mock-extended |
| Bottle | not recorded |
| npm postinstall | not defined |
| Service | none declared |
| Keywords | automated, azure, bazel, bitbucket, buildkite, dependencies, dependency, docker, gitea, github, gitlab, management, meteor, node, npm, outdated |
registry facts
| Source Database | npm registry |
|---|---|
| Dist Tags | |
| Version Count | 6,270 |
| Maintainers |
|
| Publisher | GitHub Actions |
| Engines | |
| Optional Dependencies |
|
| Integrity | sha512-cF00N1X33lvSQzOccZqryDKeX0xobQRvJJDajpWNC/CfFq62ODJUo1ZywxU7hWJ51A/toAuinw3yKmQvVT5AWw== |
| Shasum | f436fb996c48dea74b7ef756e8b16d9d2d6ba47b |
| Unpacked Size | 11,878,901 |
| File Count | 0 |
| Created At | 2017-01-11T10:28:04.415Z |
| Latest Published At | 2026-06-16T23:55:55.089Z |
| Modified At | 2026-06-16T23:55:55.380Z |
source database matches
Matches are pulled from external package-manager indexes and kept separate from local Automic Vault package links.
renovate
nix profile install nixpkgs#renovatesource trail
This page is generated by av-web from the private package SQLite artifact built by scripts/generate-pkg-sqlite.py.