DepPulse – Real-time dependency health monitoring for VS Code

Summary: DepPulse monitors dependency health, detects vulnerabilities, tracks outdated packages, and ensures license compliance within VS Code. It performs automatic real-time scans using data from OSV.dev and GitHub Advisory Database, supports multiple package managers, and works offline with smart caching.

What it does

DepPulse automatically scans dependencies on workspace open, providing detailed vulnerability data and a customizable health score through an interactive dashboard. It supports npm, pnpm, and yarn workspaces, with fast rescans via intelligent cache invalidation.

Who it's for

Developers using VS Code who need continuous dependency monitoring and security insights across various JavaScript package managers.

Why it matters

It helps maintain secure, up-to-date dependencies and license compliance without manual scanning or internet access.