Apps for GitHub
Discover the best apps, integrations, and tools for GitHub users.
AWS Connector for GitHub
Official AWS integration that notifies CodeBuild, CodePipeline, and other AWS services on repository events, enabling seamless source code retrieval for build, test, and deploy workflows.
Renovate
Open-source dependency automation by Mend.io that automatically opens pull requests for dependency updates across 50+ package managers, with crowdsourced safety data and configurable auto-merge rules.
GitGuardian
The most-installed GitHub App — detects and remediates 450+ types of hardcoded secrets, API keys, and credentials in pull requests and repositories before they reach production.
Codemagic CI/CD
Cloud-based mobile CI/CD purpose-built for Android, iOS, Flutter, React Native, Ionic, and Unity — with macOS M2 machines, code signing automation, and App Store / Google Play deployment.
Linear
Two-way sync between Linear issues and GitHub pull requests and commits — automatically moves issues through workflow states as PRs progress from draft to merge, with branch linking via issue IDs.
Infracost
Adds cloud cost estimates and FinOps best-practice checks for Terraform directly into pull requests, so engineers see the AWS, Azure, and GCP cost impact of infrastructure changes before they merge.
Socket Security
Developer-first supply chain security platform that protects against malicious, typosquatted, and vulnerable open source packages by scanning 70+ risk signals across dependency updates.
StepSecurity Actions Security
Stop CI/CD supply chain attacks by hardening GitHub Actions runners, detecting anomalous outbound network calls, and enforcing least-privilege permissions on every workflow run.
SonarQube Cloud
Automated code review for 35+ languages that detects security vulnerabilities, bugs, and code smells in every pull request, with quality gates to block bad code before it merges.
Codecov
Merges test coverage reports from all CI systems and languages into a single, annotated view inside every pull request, with trend graphs and configurable coverage gates.
Codacy
Plug-and-play DevSecOps platform covering SAST, secrets detection, dependency checks, SBOM, and license scanning across 49 languages — for both AI-generated and human-written code.
GitHub for Atlassian
Official Atlassian integration that syncs GitHub pull requests, commits, and branches bidirectionally with Jira issues, enabling AI-powered PR reviews through Rovo and Smart Commits across the Atlassian suite.
Microsoft Teams for GitHub
Brings GitHub notifications into Microsoft Teams with rich link previews, PR reminders, and the ability to open, close, or comment on issues and pull requests without leaving your Teams workspace.
WakaTime
Automatic programming activity metrics — tracks time spent per project, language, and file across all editors, generating dashboards, leaderboards, and embeddable charts without any manual time logging.
Mergify
Pull request automation service trusted by 2,000+ organizations — runs a merge queue that tests PRs against the real codebase before merging, with CI insights, flaky test detection, and customizable merge rules.
Sourcery
AI-powered code reviewer that analyzes pull requests to provide instant line-by-line feedback, PR summaries, security scanning, and repository analytics across JavaScript, Python, Java, Go, and Rust.
Snyk
Find, fix, and prevent known vulnerabilities across custom code, open source dependencies, containers, and infrastructure configurations, with automated fix pull requests on every repo.
Semgrep
Static analysis at ludicrous speed — scans code on every commit with 2,000+ built-in rules to catch bugs, reachable dependency vulnerabilities, and enforce standards across 10+ languages.
Render
Modern cloud platform that auto-deploys web services, static sites, cron jobs, and databases on every push to GitHub, with preview environments per pull request and built-in load balancing.
Doppler
Universal secrets manager that acts as a single source of truth for environment variables across local development, GitHub Actions, and production — with audit logs, versioning, and least-privilege access controls.
Slack + GitHub
Official GitHub app for Slack that delivers real-time repository notifications — commits, pull requests, reviews, issues, and deployments — with slash-command actions so you never have to leave Slack.
CircleCI
Fast, flexible CI/CD platform with Docker, Linux, macOS, Windows, Arm, and GPU execution environments, offering intelligent build caching and enterprise-grade security for shipping trusted code.
Azure Pipelines
Microsoft's cloud CI/CD service that continuously builds, tests, and deploys to any platform or cloud using YAML-based pipelines, with free parallel jobs for public repositories.
DeepSource
AI-powered code review platform combining 5,000+ deterministic rules with LLM analysis to catch bugs, anti-patterns, and security issues inline in PRs, with one-click Autofix.
Showing 1–24 of 26 apps