For teams running Renovate or Dependabot on Terraform

Auto-merge the Terraform PRs
that are safe.
Flag the ones that aren't.

QuietMerge reviews your provider & module version-bump PRs automatically — runs terraform plan in your own CI, reads the changelog, then merges the no-ops and posts a verdict on anything that could break.

Dependabot opens them. QuietMerge closes them.

Get it on GitHub → See how it works
Today
A human reviews every bot PR — and ~95% change nothing. Providers rot. Breakages slip through.
With QuietMerge
No-ops merge themselves. Risky upgrades get a clear verdict before anyone touches them.
How it works

Three steps, zero babysitting

When your bot opens a Terraform bump PR, QuietMerge takes it from there.

1

Verifies

Runs terraform plan in your own CI. Your cloud credentials never leave your account — QuietMerge only ever sees a redacted result.

2

Reads the changelog

Pulls the provider/module release notes and scans for breaking changes, deprecations, and required migrations.

3

Decides

✅ Auto-merges PRs that provably change nothing. ⚠️ Posts a verdict on anything that could break — what changes, what might break, what to do.

Real verdicts

Straight from a live repo

Two actual Dependabot PRs, two verdicts — one settled by proof alone, one reasoned through by Claude.

QuietMerge verdict: Safe — no changes. Provider random 3.5.1 to 3.9.0, plan exit code 0, empty change set, changelog has no breaking markers.

Routine bump → proven safe, instantly Plan came back a clean no-op and the changelog had no breaking markers, so the verdict is deterministic — no AI involved, verified in seconds.

QuietMerge verdict on a major AWS provider upgrade from 5.31.0 to 6.50.0: safe, with a 'what could break' list cross-checked against the plan.

Major upgrade → reasoned verdict AWS provider 5 → 6. The plan was clean, but a major bump earns a closer look: QuietMerge reads the changelog and cross-checks every breaking change against your actual plan — then tells you exactly what to watch.

🔒 Zero credential custody

The plan runs entirely inside your CI runners, using the cloud auth you already configured. QuietMerge never receives, stores, or proxies your credentials — and full plan output never leaves your workflow. It reads only the redacted summary it needs to make a call.

Pricing

Start free. Pay per repo.

Try it on one repo for free. Scale up when it's saving you time.

Free
£0 / forever
  • 1 repository
  • Plan-verified verdicts
  • Clear breaking-change reports
Team
£8 / repo / month
  • Unlimited repositories
  • Auto-merge of safe upgrades
  • Audit log of every decision
  • Priority support

Billed monthly per active repository. The free tier needs no payment details.