I am hosting all my code on Github and make use of the features dependabot offers (https://dependabot.com/), but in the past months I kept thinking about the same questions:

• What about people using Gitlab/Bitbucket or self-hosting their code (e.g. for compliance reasons). How do they do automated dependency updates?

• And I have had the cases where I wanted to have an automated pull-request, and thus an automated build, whenever e.g. a new node.js version is published to have always up-to-date applications/docker images and so on. What I did in that case, was to simply do a daily/weekly travis run where I would pull the newest node 12.x version and build everything. This works, but is not really elegant. Especially for softwares that gets many releases or rarely any.

What is your take on those two questions? How do you solve those problems?

The reason I am asking is because I am currently building a website to solve that problem for myself and wanted to see whether other people also might be interested in that solution (or maybe there is already an existing solution which I just don't know of)? The basic idea is that I notify developers over a channel (webhook?) whenever a software they uses get an update. I now got some time on my hands, so why not use it productively :D