Loading... Background job is running.

Conductor

Automatic dependency updates for Composer - tailor made for PHP. Apply security patches within minutes and never worry about being too far behind on updates again.

Conductor schedules Composer updates with full plugin & script support in your CI environment. Results arrive as easy to review pull requests.

Screenshot of a merged PR for a security updated

Keep your dependencies on track

Conductor sends you pull requests updating your Composer dependencies.

Patch security issues within minutes of advisory publication.

Review dependency changes with ease in scannable tables.

Composer updates with full plugin & script support in your CI environment.

Full transparency into updates to debug and resolve dependency conflicts.

Schedule and group updates on your own terms.

Early access for Private Packagist customers. Open Source Program available.

Join our waitlist

How does it work?

  • Conductor will discover available updates and will group and schedule them in ways that make sense for PHP projects.
  • Prioritize, reorder or modify the grouping and schedule updates with your own customized rules.
  • Conductor triggers your own pipeline to run specific Composer commands that will update selected groups of dependencies in your project.
  • If the update succeeds, Conductor sends you a pull request to your code hosting platform (GitHub, GitLab, Bitbucket) with the changed composer.lock file and, if necessary, other files modified by Composer plugins or scripts.
  • Review the pull request with easy to scan tables containing links to changelogs and diffs, as well as problematic metadata changes provided by Update Review.
  • Merge Conductor's PR to update your dependencies and deploy your application.
  • Now relax till the next PR lands, knowing you are continuously keeping your project up to date.