Dependabot creates pull requests to keep your dependencies secure and up-to-date. Automated dependency updates for your Ruby, Python, JavaScript, PHP, .NET, Go, Elixir, Rust, Java and Elm.
It's sad that Github gets the financial advantages. Sad that the community is little, even though a lot of projects have been supported by Github, not many people know of it's existence.