Never miss a critical software update.

Free release & CVE monitoring across the registries you depend on — GitHub, npm, Docker, PyPI, Cargo and more — delivered to Slack, Discord, email and the channels you already use.

Get started freeBrowse latest releases

Free · Popular registries · Your favorite channels

How it works

Set up in under a minute

No agents to install, no YAML to write. Add what you depend on, choose where to hear about it, and we watch the registries for you.

01

Subscribe to a project

Subscribe in a click. Group related projects into a shareable collection to track them together.

GitHubfacebook/reactSubscribe
Add to Frontend stack
02

Choose your channels

Slack, Discord, webhook and more, with per-event filters, pre-release stages and an optional daily digest.

Telegram
Pushover
and more
03

Get pinged when it matters

New releases, alpha → stable transitions, and CVEs matched to the exact projects in your stack.

react 18.3.0· npm
CVE-2024-4068 · High

Coverage

Track packages across many registries

From system containers to language packages to desktop apps — tracked in one place.

GitHubGitHubDocker HubDocker HubnpmnpmGoGoGitLabGitLabRubyGemsRubyGemsCargoCargoPyPIPyPIPackagistPackagistNuGetNuGetChocolateyChocolateyVS MarketplaceVS MarketplaceWordPressWordPressApp StoreApp Store

Notifications

Get notified your way

One release, every channel. The same event — rendered exactly the way ReleaseAlert delivers it. Switch channels, or toggle between a new release and a matched CVE.

ReleaseAlert
ReleaseAlertApp2:14 PM
New release on npm
react
npm
Version: 18.3.0
Published at: Jun 27 14:14:05
View project

Release lifecycle

Stay ahead of breaking changes

Track every stage of the release cycle from alpha to stable. Get early visibility into breaking changes, test compatibility during beta phases, and upgrade confidently when stable versions land.

npmvue
  1. Alpha
    3.4.0-alpha.1

    The first look at what is changing — spot breaking changes before anyone else.

  2. Beta
    3.4.0-beta.1

    Start testing compatibility while the API is still settling.

  3. Release candidate
    3.4.0-rc.1

    A final dry run to validate your upgrade before it ships.

  4. Stable
    3.4.0

    Roll out with confidence the moment the stable release lands.

Notified at every stage — or set a minimum stability and only hear about stable releases.

Security

Security vulnerability matching

Common Vulnerabilities and Exposures (CVEs) are monitored and matched against the projects you track using NVD/CPE and OSV data — so you are notified the instant a new vulnerability is disclosed for something you depend on.

CVE-2022-2274
OSVCritical

The OpenSSL 3.0.4 release introduced a serious bug in the RSA implementation for X86_64 CPUs supporting the AVX512IFMA instructions, leading to memory corruption during computation.

Matched in your stack
openssl/openssl on GitHubopenssl/openssl
3.0.4 · affected3.0.5 · fixed
CVSS v3 9.8 · CVSS v2 10
View advisory →

  • Matched to your stack

    Cross-referenced against the exact projects you track using NVD/CPE configurations and OSV advisories — not loose keyword guesses.

  • Severity at a glance

    CVSS v2 and v3 scores and ratings, so you can triage what actually matters first.

  • The instant it lands

    Alerts fire the moment a vulnerability is disclosed for something you depend on — in whatever channel you choose.

Browse the latest CVEs →

Connected ecosystems

Cross-registry connections

Track related packages across multiple registries. When we detect a link between projects — a GitHub repo and its npm, Docker Hub or other counterparts — we connect them automatically, so you never miss an update anywhere in your stack.

Source
GitHub
grafana/grafana
GitHub repository
Linked across registries
  • Docker Hub
    grafana/grafana
    Docker Hub
  • npm
    @grafana/ui
    npm
  • npm
    @grafana/data
    npm

Start tracking releases in under a minute

Add a project, choose a channel, and we'll handle the rest.

Create your free accountBrowse latest releases

Free · Sign in with GitHub, a passkey, or a magic link

FAQ

Questions you might have

Is ReleaseAlert free?

Yes — tracking projects and receiving notifications is completely free.

Which registries do you track?

A growing list, including GitHub, npm, Docker Hub, PyPI, Go, GitLab, RubyGems, Cargo, Packagist, NuGet, Chocolatey, the Visual Studio Marketplace, WordPress and the Apple App Store.

How will I be notified?

Slack, Discord, Telegram, Microsoft Teams, Mattermost, email, Pushover or a raw webhook — pick one or several, each with filters and an optional daily digest.

Can it warn me about vulnerabilities?

Yes. ReleaseAlert matches newly published CVEs against the projects you track using NVD/CPE and OSV data, and alerts you the moment one lands.

Do I need to install anything?

No. It runs entirely on our side — add a project, choose a channel, done.

What do you know about me?

Honestly? Only what your browser just volunteered:

And that's roughly what every site you visit can see — no login required. Still no idea who you are or what you had for lunch, though. We don't store any of this — sign up and we keep your email and session, nothing more. And we'd never sell it.