-
Merge PRs related to high security vulnerabilities found by dependabot and snyk:
- [x] #14875
- [x] #13821
- [x] #13688
- [x] #15048
- [x] #16100
For specific dependencies that are difficult…
-
It's just typo. FOSSID is a product of snyk, not synk.
1. go to https://spdx.dev/tools-commercial/
2. search snyk in that page.
see https://snyk.io/
-
Due to recent updates, upower.service no longer works if the kernel does not support CONFIG_USER_NS.
From a security point of view - this option is dangerous and should be disabled, but the upower ma…
-
**Description**
Docker-Compose does not support unit sufix on `mem_limit` on macOS.
**Steps to reproduce the issue:**
Consider the `docker-compose.yml` file with a `mem_limit`.
``…
-
In [mergify.yml](https://github.com/opengovsg/ts-template/blob/develop/.github/mergify.yml), currently non-major dependabot upgrades areautomatically merged into `develop`
I discussed with @timoth…
-
As the industry attempts to move security futher to the left, it becomes increasingly important to link built and pushed container images to their origin; ideally via Git metadata. This enables numero…
-
Create an initial CI environment where TBD tests are executed for PRs.
-
I think zx has a very sexy syntax:
```
await $`echo ${things}`
```
However, lots of little things about it I find confusing. (quoting behavior, weird dollar signs added into final commands: `git a…
-
# Description
Here are some tasks to go through that should help you get to know the team and product better to be able collaborate with the team.
Present checklist is here to help us track progres…
-
Here are the badges on VSCodium
![image](https://user-images.githubusercontent.com/13321697/56111655-29bf1100-5f2f-11e9-8605-cdf206c05053.png)
While here are the same badges on VSCode
![image](…