(no title)

They are tools that automatically check your repo for dependencies and create PRs when there are updates. It supports a wide range of package managers and other places dependencies may be specified.

Dependabot is another solution which is more „GitHub-native“ maybe.