DependencyDesk analyzes an organization's GitHub repositories, producing a report listing all dependencies, the associated version number, and the license.
Jason Gilmore is an experienced, hands-on technical due diligence expert with over 20 years of experience in the software industry. He has led due diligence projects on behalf of numerous private equity firms, and has been a trusted advisor to many companies in the software industry. Email Jason at [email protected].
DependencyDesk connects to an organization's GitHub account, temporarily clones selected repositories, and then analyzes each repository's dependencies. The generated HTML-based report will list each repository and all dependencies, the associated version number, and the license.
Users can view the report in the browser, or download it as a PDF.
All repositories are automatically deleted from the DependencyDesk server 60 minutes after analysis is complete. There are no backups, no intellectual property is retained, and no human ever sees the repositories or their contents.
DependencyDesk connects to an organization's GitHub account using GitHub's officially supported App infrastructure. The app is configured with read-only access to the organization's repositories, and only has access to the repositories that are selected for analysis. It is impossible for DependencyDesk to access any other repositories or data in the organization's GitHub account.
It is technically impossible for DependencyDesk to edit any of the organization's repositories or data.
DependencyDesk founder Jason Gilmore has vast experience leading technical due diligence projects, often under extraordinarily tight deadlines. Email Jason with your questions at [email protected].