Your infrastructure can't wait for upstream maintainers to catch up. DepKeep delivers security patches, critical bug fixes, and hardened builds for end-of-life open source projects — so you can modernise on your timeline, not theirs.
DepKeep's LTS service goes beyond simple patch delivery. We maintain a fully supported, tested, and documented build track for each covered project — giving your operations team the safety net to keep moving forward.
CVE patches and critical security fixes are backported to your exact version — no forced upgrades, no breaking changes, no surprises in production.
Every patch ships with a detailed security advisory, CVSS scores, fix description, and audit-trail documentation accepted by SOC 2, PCI-DSS, and ISO 27001 auditors.
Pre-built, regression-tested binaries ready to drop into your CI/CD pipeline — GPG-signed and reproducible for supply-chain confidence and SBOM generation.
LTS contracts span one to five years, giving your team the runway to plan and execute migrations without operational urgency or compliance exposure.
Need a specific patch applied, a dependency pinned, or a compilation flag changed? We maintain customer-specific build configurations and test them against your workload profiles.
A named DepKeep engineer owns your LTS track, understands your configuration history, and is reachable directly — no ticket queues or tier-based escalation paths.
We review your deployed versions, dependency tree, and current CVE exposure to produce a risk-prioritised coverage plan with clear SLA targets.
We fork and harden your target version, establish a private patch channel, and run a full regression suite against your environment's configuration.
New CVEs are triaged within hours of disclosure. Patches are backported, tested, and delivered to your artifact repository with full change documentation.
While LTS keeps you safe today, we jointly plan a controlled migration to a supported upstream release at a pace that suits your product roadmap.
Financial services, healthcare, and government teams that cannot upgrade on upstream's schedule due to compliance validation cycles, change-freeze windows, or audit requirements.
Production apps tightly coupled to a specific major version of a database, runtime, or framework that can't be changed without a major re-architecture effort.
CentOS 7, OpenJDK 8, Python 2 — running EOL infrastructure is a reality for large organisations. LTS gives you a safe bridge while you plan the controlled replacement.
Hardware with fixed software stacks where upgrading the OS or runtime would require costly recertification, regulatory re-approval, or a full firmware release cycle.
Browse individual project health pages for CVE history, release cadence, and support options.
LTS works best alongside our security and migration offerings — keeping you protected today while planning tomorrow.
Tell us which projects you need LTS coverage for. We'll come back with a scoped proposal within one business day.