Discovering Dependabot many years ago was one of those moments of incredible excitement. It was not the same kind of excitement as when you finished creating and publishing that new feature to production, or even the same as when you...
Read MoreDependabot native has been around for a couple years now after GitHub officially acquired it in 2019. But if I google "Dependabot" I still generally find myself at the "Dependabot.com" home-page, and up until last week found myself still using...
Read MoreProblem No matter what language or package manager, dependency management in most projects suffer from many of the same problems: Evaluating incoming security risks associated with packages in your project never really happens.Latest dependencies are added when a project starts,...
Read More
Recent Comments- Is GitHub Dependabot Now Enterprise Ready with Grouped Updates? | Travis J. Gosselin on Dependency Management with Dependabot
- Bruno on TLS 1.0 & 1.1 Docker Container Support
- travis on Top 5 Tips I Learned My First Year Speaking at Conferences
- Alex Drokin on Top 5 Tips I Learned My First Year Speaking at Conferences
- Daniel on TLS 1.0 & 1.1 Docker Container Support