Custosio
Sign in Join waitlist
NEW Waitlist open · Q4 2026 launch

Never miss a
dependency
update again.

Custosio watches every package your team ships on — GitHub, npm, PyPI — and tells you what shipped, what broke, and what matters. One feed for your whole stack.

Private beta · Q3 2026 No credit card required
dagster-io/dagster
released 2h ago
1.13.0
hashicorp/terraform
release candidate
v1.15.0-rc2
react · breaking
affects 2 of your projects
19.2.0
// Features

One feed for every package your team ships on.

Custosio connects to your source of truth, ingests releases as they happen, and only surfaces what matters.

Unified release feed

GitHub, npm, PyPI — one timeline, grouped by ecosystem. Patch, minor, major sorted automatically.

Noise-free notifications

Immediate, daily, or weekly per package. Silence betas. Shout about breaking changes.

• immediate • daily — muted

Semantic changelogs

We parse release notes into breaking, added, fixed, deprecated — so you skim in seconds.

+ added  new cache adapter
! breaking  renamed config.ttl
· fixed  memory leak on retry

Project impact

We auto-detect which of your projects use which package. You see blast radius before you pull the trigger.

react@19.2.0 2 projects

Auto-synced from git

Point Custosio at a branch; we scan manifests continuously and keep your package list honest.

package.json · pyproject.toml · go.mod

Webhooks & Slack

Pipe releases into the channel your team already lives in. One line of config, zero maintenance.

#releases POST /hook

AI release triage soon

LLM-summarized release notes, severity scoring, and upgrade-risk flags written in plain English.

"Safe to upgrade, 1 call-site affected."
— risk 2/10 · auto-reviewed

MCP server planned

Let Claude, Cursor, and your internal agents query Custosio directly. Ask “what broke since Friday?” right from your editor.

mcp://custosio/releases

Digest mode

One email, one Slack post, one RSS feed a day — grouped by ecosystem, ranked by blast radius.

Tue · 4 releases
2 patch · 1 minor · 1 breaking
// Integrations

Wherever your code lives.

Connect a source once. Custosio handles polling, rate limits, auth rotation, and de-duplication forever.

// Rust (crates.io) and Helm charts planned post-launch
GitHub
OAuth + webhooks
Available now
npm
Registry API + tag watch
Available now
PyPI
JSON API + XMLRPC
Available now
// FAQ

Questions, answered.

If you have something specific, email hi@custosio.dev.

When does Custosio launch?
We're shipping the private beta to the waitlist in Q4 2026. Public launch follows a few weeks later, once we're confident in the integrations and notification quality. Waitlist members get a free first year on any paid plan.
How is this different from Dependabot or Renovate?
Dependabot opens PRs. Custosio tells you which releases matter before you touch a lockfile — across every project, in one feed, with semantic diffs and project-impact mapping. The two play well together.
Which ecosystems do you support?
GitHub releases, npm, and PyPI at launch. Rust (crates.io) and Helm charts are planned for post-launch — we'll ship them in the order the waitlist asks for them.
What about private registries?
Private registries are on the roadmap but won't ship at launch. Team and Business plans will get them in a later release — tell us what you need on the waitlist form and we'll prioritize accordingly.
Will you read my source code?
We scan manifests (package.json, pyproject.toml, go.mod, etc.) to map packages to projects. We never read, store, or index application source. Read-only scopes, minimum permissions, and audit logs for every sync.
What's the MCP server for?
Custosio exposes an MCP endpoint so any compatible AI agent — Claude Desktop, Cursor, your internal tooling — can query your release feed and project impact directly. Ship in your editor with context about what changed and what it affects, without copy-pasting changelogs.
How does the AI triage work?
We summarize release notes into a one-line plain-English verdict, tag severity (safe / review / breaking), and cross-reference your code to estimate blast radius. You stay in control — nothing auto-merges. Available in private beta; rolls out to all waitlist members over Q4.
How do you price it?
Free forever for personal workspaces. Team plans scale by number of tracked packages, not seats — we think unlimited seats is the right default. Pricing goes live alongside the public launch.

Get on the waitlist.

No credit card. No marketing emails. One message when it's your turn.