Dependency-change radar

Paste your `package.json`. See what already broke.

In about 60 seconds, ChangelogRadar checks every dependency in your stack against our backfilled archive of API deprecations and vendor price changes — and tells you, plainly: which of your deps already shipped a breaking change, and which vendors quietly raised their prices. No signup. Just the verdict on the stack you're actually running.

Run the free scan See how it works

No account. No email. Paste · scan · verdict in ~60s.

412 vendors tracked Deprecations + price changes, dated to the day Sourced to every vendor's own changelog

The free blast-radius scan

Drop in your manifest. Get the verdict.

We read dependency names and versions only — no signup, no source code, nothing pushed to your repo.

blast-radius scan · live

Paste your package.json — or just the dependencies block.

We read dependency names + versions only. No signup, no source code, nothing pushed to your repo.

The gap nobody owns

You don't build on one API anymore. You build on thirty.

Stripe, Twilio, OpenAI, Auth0, SendGrid, Algolia, a payments gateway, three SDKs you forgot you installed. Each ships changes on its own schedule, on its own changelog, in its own tone — and none of them are reading your codebase to figure out whether this change touches you.

Breaking

A 410 at 2 a.m.

A 410 Gone in production, traced back to an endpoint a vendor sunset three weeks ago — in a changelog entry nobody on your team ever saw.

Price ↑

A bill that jumped 40%

A provider moved to per-seat pricing and the only notice was a line in a blog post. You found out when the invoice arrived.

Deprecation

A "later" that became today

A deprecation warning you did see, six months ago, filed under "deal with it later" — and "later" turned out to be today, in prod, on a Friday.

Most teams find out their dependency changed when it breaks or when the invoice arrives. Not because anyone is careless — because manually reading 30 changelogs every week is a job nobody has, and RSS gives you everything except the one thing that matters: does this affect my stack?

ChangelogRadar closes that gap in two moves: first, it shows you what already broke in the stack you paste in. Then it makes sure you never get blindsided by the next one.

What's in the radar

A vigilant newsroom for your dependencies.

Every change across your stack arrives pre-classified, dated, and sourced. You read four words and know whether to care.

Curated triage, not a firehose

Every change arrives pre-classified — Breaking, Deprecation, Price-change or Routine — with a sunset date and an explicit action required flag where it matters. Routine stays quiet; Breaking gets loud.

The Sunset Calendar

A live calendar of every upcoming deprecation and price change for your declared vendors. Subscribe the team to the .ics feed once; reminders fire ahead of each sunset so a deprecation becomes a planned ticket, not a 2 a.m. page.

Stack import — paste once, watch forever

Import your package.json and ChangelogRadar pins your exact versions. From then on it only flags changes that touch the versions you actually run — semver-aware, not "every Stripe change ever."

Pricing-history charts

See what each vendor's pricing has actually done over time — every tier change, every per-unit bump, dated and sourced. Walk into the renewal conversation with the receipts instead of a vibe.

Sourced and dated — every single item

No change ships from us without a link to the vendor's own changelog and a date or sunset window. When we're not sure, we say so — "low confidence: vendor hasn't confirmed a date yet" — rather than fake an all-clear. The trust is the product.

Instant alerts + weekly digest

A calm weekly digest of everything that moved in your stack, plus instant alerts the moment a Breaking change or price hike lands on a vendor you depend on. Team plan pipes both to a webhook so it lands in the channel you already watch.

How the scan works

Three steps. The first two are free.

They finish in about a minute. The third is the thing a one-time scan structurally can't give you.

Step 1

Paste your `package.json`

Drop in your dependency manifest (or just the dependencies block). Nothing leaves to sign up; nothing hits your repo. We read the names and the versions you've pinned — stripe@12.4.0, twilio@4.x — and nothing else.

Step 2

We match it. Free verdict in ~60s.

ChangelogRadar resolves each dependency against our archive of deprecations and price changes, version by version, then renders the verdict in plain language — the count, the classifications, and one concrete, sourced example. Enough to know it's true.

Step 3 · the paywall

Turn on your Sunset Calendar

The scan tells you what already broke. The Sunset Calendar tells you what's about to — for your exact stack, before it pages you. A live .ics feed plus Slack and email reminders ahead of each sunset date. It isn't a snapshot — it's a watch, and the window moves with you.

Pricing

Free forever to look. Paid to be warned ahead of time.

The scan and the public archive cost nothing; the recurring watch on your exact stack is the line.

Free

Look at what already happened.

$0/ forever

Full public archive — every tracked deprecation & price change, searchable
Free stack blast-radius scan — paste package.json, get the verdict (no signup)
Free Watch: up to 3 vendors — basic change notifications

Run the free scan

Pro

Never get blindsided again.

$24 / mo

Unlimited vendors — watch your whole stack, not just 3
The Sunset Calendar — auto-updating .ics + Slack/email reminders
Instant alerts on Breaking changes & price hikes the moment they land
Weekly digest of everything that moved in your stack
Stack import — semver-aware, version-pinned
Pricing-history charts for every vendor

Turn on my Sunset Calendar

Team

For the 2–15 person eng team.

$49 / mo

Everything in Pro, plus:
Webhooks — pipe alerts & digests into Slack/Discord/your own endpoint
5 seats — your whole engineering team on one watch
API access — query the change archive & your stack's status
Priority coverage — request a vendor and we backfill it first

Start the team watch

All plans: cancel anytime, self-serve in the billing portal. Annual billing saves ~2 months.

Straight answers

Questions engineers actually ask.

What exactly does the free scan show me — and what does it cost?

It costs nothing and needs no account. You paste your package.json; we match every dependency against our archive and return a verdict — how many of your deps have already shipped breaking changes, how many vendors raised prices in the window, and one concrete, sourced example. The free scan is a snapshot of the past. The Sunset Calendar — the live watch on upcoming changes for your exact stack — is the paid part, because that's the value that recurs.

Is $24 flat, or does it scale with my stack?

Flat. Pro is $24/mo for unlimited vendors — whether your stack is 8 APIs or 40, the price doesn't move. We don't meter per-vendor or per-alert; the whole point is that you watch your entire stack without doing pricing math first. Team is a flat $49/mo for 5 seats, webhooks, and API. Annual on either runs ~2 months free. No usage surprises, no per-seat creep below the plan limits.

Do you send my code or package.json anywhere? Is my stack private?

We read dependency names and versions — never your source. Your declared stack is yours: it's stored under row-level security, used only to compute your alerts and calendar, and never sold, pooled into a public list, or shown to anyone else. The public archive is built from vendors' own changelogs, not from customers' manifests.

Isn't this just an RSS reader, or a Dependabot I could set up myself?

RSS gives you every change from every vendor and leaves the filtering to you — which is the actual work. Dependabot watches package versions, not vendor changelogs, deprecations, or pricing. ChangelogRadar's job is the part neither does: read the firehose, classify each change (Breaking / Deprecation / Price-change / Routine), match it against the exact versions you run, and only ping you for the ones that touch your code — with the upcoming ones on a calendar before they break.

You're a small tool — what stops you from missing a change, or being cloned?

Two honest answers. On misses: we tell you our coverage edges. For a vendor we don't track yet, you see a coverage pending flag — never a false "all clear" — and every item is sourced and dated so you can verify us, not trust us blindly. On cloning: anyone can build a changelog reader; what's hard to copy fast is the backfilled archive of historical deprecations and price changes matched to specific versions — that's years of vendor history, and it's what makes your scan and your calendar accurate today, not in six months.

What happens when I cancel?

You drop to Free: the public archive and the blast-radius scan stay available, and your Free Watch covers up to 3 vendors. Your Sunset Calendar .ics feed and instant alerts switch off, and stack import past 3 vendors pauses. No data is deleted; resubscribe and your watch resumes where it left off. Cancel anytime, self-serve, no email-us-to-leave nonsense.

Stop finding out from production

The change has probably already shipped.

The signal is already public. The only question is whether you see it on a calendar — or in a stack trace. Paste your package.json. See what already broke. ~60 seconds, no signup.