Install the Nerq Trust Bot on your GitHub repos. Every PR that changes dependencies gets an automatic trust report with CVE checks.
How it works
- Click 'Install' and select your repos
- Open a PR that changes requirements.txt or package.json
- Get an automatic trust report comment with CVE alerts