Development platform GitHub has launched a new service that searches project dependencies in JavaScript and Ruby for known vulnerabilities and then alerts project owners if it finds any.
The new service aims to help developers update project dependencies as soon as GitHub becomes aware of a newly announced vulnerability.
GitHub will identify all public repositories that use the affected version of the dependency. Projects under private repositories will need to opt into the vulnerability-detection service.
