-
Currently, one advantage of using NixOS containers over DockerHub (or other image repository) is that NixOS containers can be more easily rolled back to a previous state (especially when using flakes)…
-
### Current Behavior
`GeneratePackageJson` will not copy and trim `overrides` / `patchedDependencies` to the generated lockfile (or `package.json`)
### Expected Behavior
The expectation is that the…
-
I'm not sure if this is expected behavior, a pdm problem, a sign we're holding pdm wrong, or a sign I'm holding dream2nix wrong--but I noticed that new/removed/renamed groups added to my `pyproject.to…
-
This could improve reproducibility of builds by pinning specific versions of dependencies, instead of relying on Conan's dependency selection mechanism. Right now, I'm not sure how much work implement…
-
Hi, I had this idea for a few years by now, and I think its about time to put it out there :sweat_smile:
I am curious if dream2nix would be interested in adopting something like this. Proposed new…
-
### What happened?
When running detox tests in CI, sometimes we get the following error around locking:
```
/Users/vagrant/git/node_modules/proper-lockfile/lib/lockfile.js:181
onCompro…
-
See this [comment](https://github.com/dotnet/sdk/blob/6a260a0e24ac29a5c9e96208eea35a1ee67d244e/src/Tasks/Microsoft.NET.Build.Tasks/LockFileCache.cs#L59-L71) going in to SDK:
``` C#
// LockFileUtil…
-
### Verify latest release
- [x] I verified that the issue exists in the latest pnpm release
### pnpm version
8.15.4, 8.15.5
### Which area(s) of pnpm are affected? (leave empty if unsure)
…
-
A lockfile pins a potentially-huge universe of dependencies, and there's several use-cases where _efficiently_ cutting that down to only a smaller applicable set would be handy:
1. debugging/reduci…
huonw updated
1 month ago
-
It:
- Helps ensure that developer environments don't vary in downloaded packages
- Prevents against malicious attacks against the NPM registry during Harvey's uptime