We know—manually searching for and watching every package you use is a drag. You have 30 / 50 / 100+ packages you’re using across three different projects; there’s no way you want spend time hunting for each one.

Today, we’re introducing Import. Watch everything in one fell swoop by simply pasting, linking, or uploading your requirements file:

We have full support for npm’s package.json, PyPI’s requirements.txt files (or any *.txt file listing PyPI requirements), and Ruby’s Gemfile and *.gemspec. Simply import and go—we’ll automatically watch every package we can find.

So with that said, why don’t you give it a try?


We love Open Source. Both Josh and I are maintainers, authors, and contributors to many Open Source projects.

BundleScout, too, is built on plenty of Open Source software. Without much of this software, building our product would not have been possible (or, at least, much more difficult).

Because of our reliance on so many great projects, we want to give a shout out and thanks to some of the tools we’ve used:

  • Django and Python power our back-end.
  • We use ElasticSearch to quickly search data in our MySQL database. With over 100,000 different packages (and growing) across three different languages, we need something powerful to back our search.
  • Memcached gives us an incredibly fast cache.
  • nginx does way more than could reasonably be asked of a web server.
  • Supervisor manages gunicorn behind nginx.
  • We keep everything in git, and pip makes deployment easy.

Thank you to all the hardworking people who make these and other Open Source projects possible! 


It’s just a few days after our public launch and we are thrilled to announce that we’ve added RubyGem support to BundleScout! With the addition of more than 50,000 gems, this means we’re now tracking over 100,000 packages, with more coming in every day.

With some of the recent security focus on major Ruby projects, there has never been a better time to start making sure all of your packages are constantly up-to-date. No more manual checking, no more worrying about missing releases.

Watch once, never worry again.

Welcome to BundleScout, Rubyists! Why not start watching some popular gems?


After being in private beta for the last couple of months, we’re finally ready to release BundleScout and let everyone track packages! We have over 50,000 packages currently tracked, with over 300 updates coming in daily—just with Python and Node.js.

With the recent Ruby on Rails security vulnerability* and hundreds (if not thousands) of updates to third-party libraries being released daily, we think BundleScout will simplify a lot of developer’s lives. No more subscribing to tens of mailing lists, remembering to run npm update and pip install -U on a regular basis, or checking individual package’s websites for updates (and hoping they remembered to update the site for the latest release).

With us, it’s watch once, remind forever. Daily updates in a single email mean you can knows what’s been changed over your morning coffee and have everything updated before lunch. 

This is just the beginning. We have plans to help you integrate BundleScout even better with your existing development and testing processes.

That all said, why don’t you give us a try? We’d love to know what you think.

* Ruby Gem tracking is coming very soon, we promise.


We love data. Whether it’s to help make a decision or just for the fun of it, we’re huge fans of data and playing with it to find interesting things.

BundleScout has some tools in place that will help us do some really interesting (to us, anyway) analysis, but for now, we wanted to talk about some fun stats on the two registries we’re currently indexing.