-
You _should_ be able to install from the lock file? I think?
But it didn't work when I installed using the lock file that is in the repo in the codespace. All is well when I deleted the lock file …
-
At the moment we use tox to:
- Run specific tox envs in CI and locally, like `tox -e docs` to invoke `sphinx` with the right args including for `autobuild`
- Run `tox -p` to do the tasks that CI wil…
-
### Discussed in https://github.com/renovatebot/renovate/discussions/25532
Originally posted by **cgrindel** November 1, 2023
### Tell us more.
### Requirements
- Read the `.bazelversio…
-
- [x] I'd be willing to implement this feature
- [ ] This feature can already be implemented through a plugin
**Describe the user story**
I believe the best user story are the comments in this …
-
Document Pipfile and lockfile sections; There are some custom sections that cannot be used for package categories, such as `pipenv`. We should document the usage of what these are so its clear to co…
-
Since gradle 4.9, or 4.10, Gradle has been supporting dependency locking through lock files.
It would be nice if the dependabot supported those lockfiles instead of updating the build.gradle.
-
### Current Behavior
Invalid lock file is generated when optional peer dependency is available at the root level when using yarn 4.
### Expected Behavior
Valid `yarn.lock` is generated.
##…
-
## Summary
We are trying to migrate the repository to rush. The bad thing is that pnpm lockfile is more likely to conflict than yarn lockfile. Our repo has been suffering from conflict problem …
-
snyk-nodejs-lockfile-parser cannot parse pnpm lockfiles
workaround from [github-actions-pnpm-snyk](https://github.com/snyk-tech-services/github-actions-pnpm-snyk)
```js
// src/lib/compass/write…
-
[lockTree](https://github.com/npm/logical-tree/blob/675632c9ad38b47ccd495df3baad19b6f6ab5f74/index.js#L100) wasnt that bad
for yarn.lock, we just need to parse the result of [@yarnpkg/lockfile](htt…