home.social

#dependencymanagement — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #dependencymanagement, aggregated by home.social.

  1. N-gated Hacker News @[email protected] ·

    🚀 "In a revolutionary finding, Olivier Gambier advocates for the groundbreaking strategy of *not* updating your dependencies in 2026. Because nothing screams 'innovation' like turning your server into a digital Jurassic Park 🦖, where ancient vulnerabilities roam free and happy!" 🧑‍💻🔗
    mendral.com/blog/you-should-no #HackerNews #DependencyManagement #DigitalJurassicPark #TechInnovation #SoftwareDevelopment #HackerNews #ngated

    #hackernews #dependencymanagement #digitaljurassicpark #techinnovation #softwaredevelopment #ngated
  2. N-gated Hacker News @[email protected] ·

    🚀 "In a revolutionary finding, Olivier Gambier advocates for the groundbreaking strategy of *not* updating your dependencies in 2026. Because nothing screams 'innovation' like turning your server into a digital Jurassic Park 🦖, where ancient vulnerabilities roam free and happy!" 🧑‍💻🔗
    mendral.com/blog/you-should-no #HackerNews #DependencyManagement #DigitalJurassicPark #TechInnovation #SoftwareDevelopment #HackerNews #ngated

    #hackernews #dependencymanagement #digitaljurassicpark #techinnovation #softwaredevelopment #ngated
  3. N-gated Hacker News @[email protected] ·

    🚀 "In a revolutionary finding, Olivier Gambier advocates for the groundbreaking strategy of *not* updating your dependencies in 2026. Because nothing screams 'innovation' like turning your server into a digital Jurassic Park 🦖, where ancient vulnerabilities roam free and happy!" 🧑‍💻🔗
    mendral.com/blog/you-should-no #HackerNews #DependencyManagement #DigitalJurassicPark #TechInnovation #SoftwareDevelopment #HackerNews #ngated

    #hackernews #dependencymanagement #digitaljurassicpark #techinnovation #softwaredevelopment #ngated
  4. N-gated Hacker News @[email protected] ·

    🚀 "In a revolutionary finding, Olivier Gambier advocates for the groundbreaking strategy of *not* updating your dependencies in 2026. Because nothing screams 'innovation' like turning your server into a digital Jurassic Park 🦖, where ancient vulnerabilities roam free and happy!" 🧑‍💻🔗
    mendral.com/blog/you-should-no #HackerNews #DependencyManagement #DigitalJurassicPark #TechInnovation #SoftwareDevelopment #HackerNews #ngated

    #ngated #softwaredevelopment #techinnovation #digitaljurassicpark #dependencymanagement #hackernews
  5. N-gated Hacker News @[email protected] ·

    🚀 "In a revolutionary finding, Olivier Gambier advocates for the groundbreaking strategy of *not* updating your dependencies in 2026. Because nothing screams 'innovation' like turning your server into a digital Jurassic Park 🦖, where ancient vulnerabilities roam free and happy!" 🧑‍💻🔗
    mendral.com/blog/you-should-no #HackerNews #DependencyManagement #DigitalJurassicPark #TechInnovation #SoftwareDevelopment #HackerNews #ngated

    #hackernews #dependencymanagement #digitaljurassicpark #techinnovation #softwaredevelopment #ngated
  6. Hacker News @[email protected] ·

    You Should Not Update Your Dependencies

    mendral.com/blog/you-should-no

    #HackerNews #YouShouldNotUpdate #YourDependencies #SoftwareDevelopment #DependencyManagement #BestPractices #TechAdvice

    #hackernews #youshouldnotupdate #yourdependencies #softwaredevelopment #dependencymanagement #bestpractices
  7. Hacker News @[email protected] ·

    You Should Not Update Your Dependencies

    mendral.com/blog/you-should-no

    #HackerNews #YouShouldNotUpdate #YourDependencies #SoftwareDevelopment #DependencyManagement #BestPractices #TechAdvice

    #hackernews #youshouldnotupdate #yourdependencies #softwaredevelopment #dependencymanagement #bestpractices
  8. Hacker News @[email protected] ·

    You Should Not Update Your Dependencies

    mendral.com/blog/you-should-no

    #HackerNews #YouShouldNotUpdate #YourDependencies #SoftwareDevelopment #DependencyManagement #BestPractices #TechAdvice

    #hackernews #youshouldnotupdate #yourdependencies #softwaredevelopment #dependencymanagement #bestpractices
  9. Hacker News @[email protected] ·

    You Should Not Update Your Dependencies

    mendral.com/blog/you-should-no

    #HackerNews #YouShouldNotUpdate #YourDependencies #SoftwareDevelopment #DependencyManagement #BestPractices #TechAdvice

    #techadvice #bestpractices #dependencymanagement #softwaredevelopment #yourdependencies #youshouldnotupdate
  10. Hacker News @[email protected] ·

    You Should Not Update Your Dependencies

    mendral.com/blog/you-should-no

    #HackerNews #YouShouldNotUpdate #YourDependencies #SoftwareDevelopment #DependencyManagement #BestPractices #TechAdvice

    #hackernews #youshouldnotupdate #yourdependencies #softwaredevelopment #dependencymanagement #bestpractices
  11. Habr @[email protected] ·

    Сможете ли вы спроектировать Maven‑монорепозиторий для 5 микросервисов?

    В этой статье мы разберём реальную задачу на проектирование Maven Multi‑Module: от циклических зависимостей и неправильного использования spring‑boot‑maven‑plugin до смешения ролей агрегатора и родителя. Затем соберём эталонную структуру по лучшим практикам Spring Cloud и Netflix, добавим CI/CD‑диаграмму и научимся запускать сервис локально без Eureka и RabbitMQ. Найти ошибки

    habr.com/ru/companies/otus/art

    #Maven #монорепозиторий #микросервисы #Spring_Boot #multimodule #dependencyManagement #Maven_Wrapper #архитектура_сборки #Java

    #java #архитектура_сборки #maven_wrapper #dependencymanagement #multimodule #spring_boot
  12. Habr @[email protected] ·

    Сможете ли вы спроектировать Maven‑монорепозиторий для 5 микросервисов?

    В этой статье мы разберём реальную задачу на проектирование Maven Multi‑Module: от циклических зависимостей и неправильного использования spring‑boot‑maven‑plugin до смешения ролей агрегатора и родителя. Затем соберём эталонную структуру по лучшим практикам Spring Cloud и Netflix, добавим CI/CD‑диаграмму и научимся запускать сервис локально без Eureka и RabbitMQ. Найти ошибки

    habr.com/ru/companies/otus/art

    #Maven #монорепозиторий #микросервисы #Spring_Boot #multimodule #dependencyManagement #Maven_Wrapper #архитектура_сборки #Java

    #java #архитектура_сборки #maven_wrapper #dependencymanagement #multimodule #spring_boot
  13. Habr @[email protected] ·

    Сможете ли вы спроектировать Maven‑монорепозиторий для 5 микросервисов?

    В этой статье мы разберём реальную задачу на проектирование Maven Multi‑Module: от циклических зависимостей и неправильного использования spring‑boot‑maven‑plugin до смешения ролей агрегатора и родителя. Затем соберём эталонную структуру по лучшим практикам Spring Cloud и Netflix, добавим CI/CD‑диаграмму и научимся запускать сервис локально без Eureka и RabbitMQ. Найти ошибки

    habr.com/ru/companies/otus/art

    #Maven #монорепозиторий #микросервисы #Spring_Boot #multimodule #dependencyManagement #Maven_Wrapper #архитектура_сборки #Java

    #java #архитектура_сборки #maven_wrapper #dependencymanagement #multimodule #spring_boot
  14. Habr @[email protected] ·

    Сможете ли вы спроектировать Maven‑монорепозиторий для 5 микросервисов?

    В этой статье мы разберём реальную задачу на проектирование Maven Multi‑Module: от циклических зависимостей и неправильного использования spring‑boot‑maven‑plugin до смешения ролей агрегатора и родителя. Затем соберём эталонную структуру по лучшим практикам Spring Cloud и Netflix, добавим CI/CD‑диаграмму и научимся запускать сервис локально без Eureka и RabbitMQ. Найти ошибки

    habr.com/ru/companies/otus/art

    #Maven #монорепозиторий #микросервисы #Spring_Boot #multimodule #dependencyManagement #Maven_Wrapper #архитектура_сборки #Java

    #maven #монорепозиторий #микросервисы #spring_boot #multimodule #dependencymanagement
  15. Brandon H :csharp: :verified: @[email protected] ·

    via @dotnet : NuGet Package Pruning: Cleaner Dependencies and Actionable Vulnerability Reports

    ift.tt/mUszAVv
    #NuGet #PackagePruning #DotNet10 #DependencyManagement #VulnerabilityReports #TransitiveDependencies #FalsePositives #RestoreGraph #PrivateAsset

    #nuget #packagepruning #dotnet10 #dependencymanagement #vulnerabilityreports #transitivedependencies
  16. Brandon H :csharp: :verified: @[email protected] ·

    via @dotnet : NuGet Package Pruning: Cleaner Dependencies and Actionable Vulnerability Reports

    ift.tt/mUszAVv
    #NuGet #PackagePruning #DotNet10 #DependencyManagement #VulnerabilityReports #TransitiveDependencies #FalsePositives #RestoreGraph #PrivateAsset

    #nuget #packagepruning #dotnet10 #dependencymanagement #vulnerabilityreports #transitivedependencies
  17. Brandon H :csharp: :verified: @bc3tech ·

    via @dotnet : NuGet Package Pruning: Cleaner Dependencies and Actionable Vulnerability Reports

    ift.tt/mUszAVv

    #nuget #packagepruning #dotnet10 #dependencymanagement #vulnerabilityreports #transitivedependencies
  18. Brandon H :csharp: :verified: @[email protected] ·

    via @dotnet : NuGet Package Pruning: Cleaner Dependencies and Actionable Vulnerability Reports

    ift.tt/mUszAVv
    #NuGet #PackagePruning #DotNet10 #DependencyManagement #VulnerabilityReports #TransitiveDependencies #FalsePositives #RestoreGraph #PrivateAsset

    #privateasset #restoregraph #falsepositives #transitivedependencies #vulnerabilityreports #dependencymanagement
  19. Brandon H :csharp: :verified: @[email protected] ·

    via @dotnet : NuGet Package Pruning: Cleaner Dependencies and Actionable Vulnerability Reports

    ift.tt/mUszAVv
    #NuGet #PackagePruning #DotNet10 #DependencyManagement #VulnerabilityReports #TransitiveDependencies #FalsePositives #RestoreGraph #PrivateAsset

    #nuget #packagepruning #dotnet10 #dependencymanagement #vulnerabilityreports #transitivedependencies
  20. github.com/ghostwriter @[email protected] ·

    🚨 Critical Composer Update: 2.9.8 & 2.2.28 fix a GitHub Actions token disclosure!

    ⚠️ Update NOW or disable GitHub Actions immediately!

    blog.packagist.com/composer-2-

    #PHP #Composer #ComposerPHP #OpenSource #WebDevelopment #GitHubActions #DevSecOps #CyberSecurity #SoftwareUpdate #PatchRelease #DependencyManagement #SecurityFix #Programming #Packagist #PHPDev #ComposerUpdate #OpenSourceSoftware #WebDevLife #InfoSec #SecurityPatch #CodeSmart #DependencyManagement #SoftwareSecurity #TechUpdate

    #php #composer #composerphp #opensource #webdevelopment #githubactions
  21. github.com/ghostwriter @[email protected] ·

    🚨 Critical Composer Update: 2.9.8 & 2.2.28 fix a GitHub Actions token disclosure!

    ⚠️ Update NOW or disable GitHub Actions immediately!

    blog.packagist.com/composer-2-

    #PHP #Composer #ComposerPHP #OpenSource #WebDevelopment #GitHubActions #DevSecOps #CyberSecurity #SoftwareUpdate #PatchRelease #DependencyManagement #SecurityFix #Programming #Packagist #PHPDev #ComposerUpdate #OpenSourceSoftware #WebDevLife #InfoSec #SecurityPatch #CodeSmart #DependencyManagement #SoftwareSecurity #TechUpdate

    #php #composer #composerphp #opensource #webdevelopment #githubactions
  22. github.com/ghostwriter @[email protected] ·

    🚨 Critical Composer Update: 2.9.8 & 2.2.28 fix a GitHub Actions token disclosure!

    ⚠️ Update NOW or disable GitHub Actions immediately!

    blog.packagist.com/composer-2-

    #PHP #Composer #ComposerPHP #OpenSource #WebDevelopment #GitHubActions #DevSecOps #CyberSecurity #SoftwareUpdate #PatchRelease #DependencyManagement #SecurityFix #Programming #Packagist #PHPDev #ComposerUpdate #OpenSourceSoftware #WebDevLife #InfoSec #SecurityPatch #CodeSmart #DependencyManagement #SoftwareSecurity #TechUpdate

    #php #composer #composerphp #opensource #webdevelopment #githubactions
  23. github.com/ghostwriter @[email protected] ·

    🚨 Critical Composer Update: 2.9.8 & 2.2.28 fix a GitHub Actions token disclosure!

    ⚠️ Update NOW or disable GitHub Actions immediately!

    blog.packagist.com/composer-2-

    #PHP #Composer #ComposerPHP #OpenSource #WebDevelopment #GitHubActions #DevSecOps #CyberSecurity #SoftwareUpdate #PatchRelease #DependencyManagement #SecurityFix #Programming #Packagist #PHPDev #ComposerUpdate #OpenSourceSoftware #WebDevLife #InfoSec #SecurityPatch #CodeSmart #DependencyManagement #SoftwareSecurity #TechUpdate

    #techupdate #softwaresecurity #codesmart #securitypatch #infosec #webdevlife
  24. github.com/ghostwriter @[email protected] ·

    🚨 Critical Composer Update: 2.9.8 & 2.2.28 fix a GitHub Actions token disclosure!

    ⚠️ Update NOW or disable GitHub Actions immediately!

    blog.packagist.com/composer-2-

    #PHP #Composer #ComposerPHP #OpenSource #WebDevelopment #GitHubActions #DevSecOps #CyberSecurity #SoftwareUpdate #PatchRelease #DependencyManagement #SecurityFix #Programming #Packagist #PHPDev #ComposerUpdate #OpenSourceSoftware #WebDevLife #InfoSec #SecurityPatch #CodeSmart #DependencyManagement #SoftwareSecurity #TechUpdate

    #php #composer #composerphp #opensource #webdevelopment #githubactions
  25. Sjoerd van Leent @[email protected] ·

    Are you working with software dependencies in constrained environments? Then this might interest you:

    I’ll give a lightning talk on how we approach practical license and vulnerability management when resources are limited. As Technical Solution Lead at Alliander I deal daily issues regarding licensing and security. I’ll talk about tooling, share key findings and insights.

    Where & when to go?
    Monday, March 23
    13:15 CET
    Amsterdam

    #Ospology #DevOps #Security #OpenSource #DependencyManagement

    #ospology #devops #security #opensource #dependencymanagement
  26. Sjoerd van Leent @[email protected] ·

    Are you working with software dependencies in constrained environments? Then this might interest you:

    I’ll give a lightning talk on how we approach practical license and vulnerability management when resources are limited. As Technical Solution Lead at Alliander I deal daily issues regarding licensing and security. I’ll talk about tooling, share key findings and insights.

    Where & when to go?
    Monday, March 23
    13:15 CET
    Amsterdam

    #Ospology #DevOps #Security #OpenSource #DependencyManagement

    #ospology #devops #security #opensource #dependencymanagement
  27. Sjoerd van Leent @[email protected] ·

    Are you working with software dependencies in constrained environments? Then this might interest you:

    I’ll give a lightning talk on how we approach practical license and vulnerability management when resources are limited. As Technical Solution Lead at Alliander I deal daily issues regarding licensing and security. I’ll talk about tooling, share key findings and insights.

    Where & when to go?
    Monday, March 23
    13:15 CET
    Amsterdam

    #Ospology #DevOps #Security #OpenSource #DependencyManagement

    #ospology #devops #security #opensource #dependencymanagement
  28. Sjoerd van Leent @[email protected] ·

    Are you working with software dependencies in constrained environments? Then this might interest you:

    I’ll give a lightning talk on how we approach practical license and vulnerability management when resources are limited. As Technical Solution Lead at Alliander I deal daily issues regarding licensing and security. I’ll talk about tooling, share key findings and insights.

    Where & when to go?
    Monday, March 23
    13:15 CET
    Amsterdam

    #Ospology #DevOps #Security #OpenSource #DependencyManagement

    #dependencymanagement #opensource #security #devops #ospology
  29. Sjoerd van Leent @[email protected] ·

    Are you working with software dependencies in constrained environments? Then this might interest you:

    I’ll give a lightning talk on how we approach practical license and vulnerability management when resources are limited. As Technical Solution Lead at Alliander I deal daily issues regarding licensing and security. I’ll talk about tooling, share key findings and insights.

    Where & when to go?
    Monday, March 23
    13:15 CET
    Amsterdam

    #Ospology #DevOps #Security #OpenSource #DependencyManagement

    #ospology #devops #security #opensource #dependencymanagement
  30. Vlad @[email protected] ·

    Hey devs! 👋

    I build mobile apps and got tired of manually fixing broken builds and dependencies after package updates. So I decided to build an AI agent that automatically fixes update-related errors and updates dependencies — even library upgrades.

    Quick facts about the agent:
    - Runs on deepseek in deepseek-chst (v3.2) mode with temperature 0.0.
    - Can revive the project after errors and run automated tests.
    - Won’t require confirmations for common commands (build, run, flutter pub get, etc.) to save time.
    - While the agent fixes things automatically, you can do something useful or grab a coffee ☕.

    Why this matters:
    - I tried dozens of solutions — many crash frequently or demand confirmations even for simple commands (cd, cat, etc.). Endless "Y + Enter" kills productivity.

    Want to help?
    - If you want to join improving this tool — follow me and leave feedback. I’ll share the open Git repo and welcome your suggestions and criticism.

    Thanks — have a great day/evening (time zones may vary)!

    #devtools #aiagent #automation #mobiledev #flutter #dependencymanagement #ci #devops #softwareengineering #productivity

    #devtools #aiagent #automation #mobiledev #flutter #dependencymanagement
  31. Vlad @[email protected] ·

    Hey devs! 👋

    I build mobile apps and got tired of manually fixing broken builds and dependencies after package updates. So I decided to build an AI agent that automatically fixes update-related errors and updates dependencies — even library upgrades.

    Quick facts about the agent:
    - Runs on deepseek in deepseek-chst (v3.2) mode with temperature 0.0.
    - Can revive the project after errors and run automated tests.
    - Won’t require confirmations for common commands (build, run, flutter pub get, etc.) to save time.
    - While the agent fixes things automatically, you can do something useful or grab a coffee ☕.

    Why this matters:
    - I tried dozens of solutions — many crash frequently or demand confirmations even for simple commands (cd, cat, etc.). Endless "Y + Enter" kills productivity.

    Want to help?
    - If you want to join improving this tool — follow me and leave feedback. I’ll share the open Git repo and welcome your suggestions and criticism.

    Thanks — have a great day/evening (time zones may vary)!

    #devtools #aiagent #automation #mobiledev #flutter #dependencymanagement #ci #devops #softwareengineering #productivity

    #devtools #aiagent #automation #mobiledev #flutter #dependencymanagement
  32. Vlad @[email protected] ·

    Hey devs! 👋

    I build mobile apps and got tired of manually fixing broken builds and dependencies after package updates. So I decided to build an AI agent that automatically fixes update-related errors and updates dependencies — even library upgrades.

    Quick facts about the agent:
    - Runs on deepseek in deepseek-chst (v3.2) mode with temperature 0.0.
    - Can revive the project after errors and run automated tests.
    - Won’t require confirmations for common commands (build, run, flutter pub get, etc.) to save time.
    - While the agent fixes things automatically, you can do something useful or grab a coffee ☕.

    Why this matters:
    - I tried dozens of solutions — many crash frequently or demand confirmations even for simple commands (cd, cat, etc.). Endless "Y + Enter" kills productivity.

    Want to help?
    - If you want to join improving this tool — follow me and leave feedback. I’ll share the open Git repo and welcome your suggestions and criticism.

    Thanks — have a great day/evening (time zones may vary)!

    #devtools #aiagent #automation #mobiledev #flutter #dependencymanagement #ci #devops #softwareengineering #productivity

    #productivity #softwareengineering #devops #ci #dependencymanagement #flutter
  33. N-gated Hacker News @[email protected] ·

    Oh boy, another tool to generate and verify #lockfiles for GitHub Actions, because we all know life's too short to trust those pesky mutable tags. 🔒✨ Let's spend our precious time pinning every single action to exact commit SHAs, because who doesn't love a good game of dependency whack-a-mole? 🎯🛠️
    gh-actions-lockfile.net #GitHubActions #dependencyManagement #automation #tools #HackerNews #ngated

    #lockfiles #githubactions #dependencymanagement #automation #tools #hackernews
  34. N-gated Hacker News @[email protected] ·

    Oh boy, another tool to generate and verify #lockfiles for GitHub Actions, because we all know life's too short to trust those pesky mutable tags. 🔒✨ Let's spend our precious time pinning every single action to exact commit SHAs, because who doesn't love a good game of dependency whack-a-mole? 🎯🛠️
    gh-actions-lockfile.net #GitHubActions #dependencyManagement #automation #tools #HackerNews #ngated

    #lockfiles #githubactions #dependencymanagement #automation #tools #hackernews
  35. N-gated Hacker News @[email protected] ·

    Oh boy, another tool to generate and verify #lockfiles for GitHub Actions, because we all know life's too short to trust those pesky mutable tags. 🔒✨ Let's spend our precious time pinning every single action to exact commit SHAs, because who doesn't love a good game of dependency whack-a-mole? 🎯🛠️
    gh-actions-lockfile.net #GitHubActions #dependencyManagement #automation #tools #HackerNews #ngated

    #ngated #hackernews #tools #automation #dependencymanagement #githubactions
  36. N-gated Hacker News @[email protected] ·

    Oh boy, another tool to generate and verify #lockfiles for GitHub Actions, because we all know life's too short to trust those pesky mutable tags. 🔒✨ Let's spend our precious time pinning every single action to exact commit SHAs, because who doesn't love a good game of dependency whack-a-mole? 🎯🛠️
    gh-actions-lockfile.net #GitHubActions #dependencyManagement #automation #tools #HackerNews #ngated

    #lockfiles #githubactions #dependencymanagement #automation #tools #hackernews
  37. David Ruffner @[email protected] ·

    I am really enjoying the Pixi package manager, pixi.sh , made by @prefix. We have been using conda at my work for managing the dependencies of our python application. It involves scientific data analysis so there are lots of dependencies, and it has been a challenge to keep things up to date. Pixi has nice support for cleanly defining the direct dependencies in the pixi.toml file, and then it automatically generates a lock file. There is a command to upgrade all the dependencies too. It's amazing! I'm just starting to use it, but it is helpful so far.

    #conda
    #packageManagement
    #pixi
    #dependencyManagement

    #conda #packagemanagement #pixi #dependencymanagement
  38. David Ruffner @[email protected] ·

    I am really enjoying the Pixi package manager, pixi.sh , made by @prefix. We have been using conda at my work for managing the dependencies of our python application. It involves scientific data analysis so there are lots of dependencies, and it has been a challenge to keep things up to date. Pixi has nice support for cleanly defining the direct dependencies in the pixi.toml file, and then it automatically generates a lock file. There is a command to upgrade all the dependencies too. It's amazing! I'm just starting to use it, but it is helpful so far.

    #conda
    #packageManagement
    #pixi
    #dependencyManagement

    #conda #packagemanagement #pixi #dependencymanagement
  39. David Ruffner @[email protected] ·

    I am really enjoying the Pixi package manager, pixi.sh , made by @prefix. We have been using conda at my work for managing the dependencies of our python application. It involves scientific data analysis so there are lots of dependencies, and it has been a challenge to keep things up to date. Pixi has nice support for cleanly defining the direct dependencies in the pixi.toml file, and then it automatically generates a lock file. There is a command to upgrade all the dependencies too. It's amazing! I'm just starting to use it, but it is helpful so far.

    #conda
    #packageManagement
    #pixi
    #dependencyManagement

    #conda #packagemanagement #pixi #dependencymanagement
  40. David Ruffner @[email protected] ·

    I am really enjoying the Pixi package manager, pixi.sh , made by @prefix. We have been using conda at my work for managing the dependencies of our python application. It involves scientific data analysis so there are lots of dependencies, and it has been a challenge to keep things up to date. Pixi has nice support for cleanly defining the direct dependencies in the pixi.toml file, and then it automatically generates a lock file. There is a command to upgrade all the dependencies too. It's amazing! I'm just starting to use it, but it is helpful so far.

    #conda
    #packageManagement
    #pixi
    #dependencyManagement

    #dependencymanagement #pixi #packagemanagement #conda
  41. David Ruffner @[email protected] ·

    I am really enjoying the Pixi package manager, pixi.sh , made by @prefix. We have been using conda at my work for managing the dependencies of our python application. It involves scientific data analysis so there are lots of dependencies, and it has been a challenge to keep things up to date. Pixi has nice support for cleanly defining the direct dependencies in the pixi.toml file, and then it automatically generates a lock file. There is a command to upgrade all the dependencies too. It's amazing! I'm just starting to use it, but it is helpful so far.

    #conda
    #packageManagement
    #pixi
    #dependencyManagement

    #conda #packagemanagement #pixi #dependencymanagement
  42. Jon Fazzaro @[email protected] ·

    "Cooldowns enforce positive behavior from supply chain security vendors: vendors are still incentivized to discover and report attacks quickly, but are not as incentivized to emit volumes of blogspam about 'critical' attacks on largely underfunded open source ecosystems."

    #npm #supplychainattack #dependencymanagement

    blog.yossarian.net/2025/11/21/

    #npm #supplychainattack #dependencymanagement
  43. Jon Fazzaro @[email protected] ·

    "Cooldowns enforce positive behavior from supply chain security vendors: vendors are still incentivized to discover and report attacks quickly, but are not as incentivized to emit volumes of blogspam about 'critical' attacks on largely underfunded open source ecosystems."

    #npm #supplychainattack #dependencymanagement

    blog.yossarian.net/2025/11/21/

    #npm #supplychainattack #dependencymanagement
  44. Jon Fazzaro @fazzaro ·

    "Cooldowns enforce positive behavior from supply chain security vendors: vendors are still incentivized to discover and report attacks quickly, but are not as incentivized to emit volumes of blogspam about 'critical' attacks on largely underfunded open source ecosystems."

    blog.yossarian.net/2025/11/21/

    #npm #supplychainattack #dependencymanagement
  45. Jon Fazzaro @[email protected] ·

    "Cooldowns enforce positive behavior from supply chain security vendors: vendors are still incentivized to discover and report attacks quickly, but are not as incentivized to emit volumes of blogspam about 'critical' attacks on largely underfunded open source ecosystems."

    #npm #supplychainattack #dependencymanagement

    blog.yossarian.net/2025/11/21/

    #dependencymanagement #supplychainattack #npm
  46. Jon Fazzaro @[email protected] ·

    "Cooldowns enforce positive behavior from supply chain security vendors: vendors are still incentivized to discover and report attacks quickly, but are not as incentivized to emit volumes of blogspam about 'critical' attacks on largely underfunded open source ecosystems."

    #npm #supplychainattack #dependencymanagement

    blog.yossarian.net/2025/11/21/

    #npm #supplychainattack #dependencymanagement
  47. Brandon H :csharp: :verified: @[email protected] ·

    via @dotnet : A step-by-step guide to modernizing .NET applications with GitHub Copilot agent mode

    ift.tt/YprJVHi
    #DotNet #GitHubCopilot #AppModernization #CloudNative #SoftwareDevelopment #AzureMigration #Programming #DevOps #DependencyManagement #CodeU

    #dotnet #githubcopilot #appmodernization #cloudnative #softwaredevelopment #azuremigration
  48. Brandon H :csharp: :verified: @[email protected] ·

    via @dotnet : A step-by-step guide to modernizing .NET applications with GitHub Copilot agent mode

    ift.tt/YprJVHi
    #DotNet #GitHubCopilot #AppModernization #CloudNative #SoftwareDevelopment #AzureMigration #Programming #DevOps #DependencyManagement #CodeU

    #dotnet #githubcopilot #appmodernization #cloudnative #softwaredevelopment #azuremigration
  49. Brandon H :csharp: :verified: @bc3tech ·

    via @dotnet : A step-by-step guide to modernizing .NET applications with GitHub Copilot agent mode

    ift.tt/YprJVHi

    #dotnet #githubcopilot #appmodernization #cloudnative #softwaredevelopment #azuremigration
  50. Brandon H :csharp: :verified: @[email protected] ·

    via @dotnet : A step-by-step guide to modernizing .NET applications with GitHub Copilot agent mode

    ift.tt/YprJVHi
    #DotNet #GitHubCopilot #AppModernization #CloudNative #SoftwareDevelopment #AzureMigration #Programming #DevOps #DependencyManagement #CodeU

    #codeu #dependencymanagement #devops #programming #azuremigration #softwaredevelopment