-
I modified the Debian cargo buildsystem to use auditable (finally) But ran into an issue that is maybe a bit philosophical in how it should be solved.
This is the error message from a test run tryi…
-
Minimizing dependencies is highly desirable, as it reduces the trusted computing base and the risk of supply chain attacks. This is especially important for Qubes OS, as security is Qubes OS’s entire…
-
Proceed to reproduce:
1. Setting up a new VM with ros 2 rolling
2. Pull from dev branch
3. Create a new Workspace and execute `sudo resdep install -i -r --rosdistro=rolling --from-paths src`
4. Co…
-
Currently `cargo doc` will build documentation for the crate and its dependencies, which is useful as (outside of the core Rust distribution) you get a one stop shop of documentation while working on …
-
Sort all of the dependencies in alphabetical order and after all of the development dependencies in alphabetical order.
tscpp updated
3 years ago
-
Currently snyk workflows only cover what's listed under the `dependencies` field - do we want to add coverage for peer and dev dependencies as well?
-
When installing dependencies for use in production, you might wish to exclude `dev_dependencies`.
**use-cases**
* Installing an application when building a docker image for use in the cloud.
* …
-
Installing on an empty Linux box (Docker container), I get the following deprecation warnings:
```
npm WARN deprecated minimatch@1.0.0: Please update to minimatch 3.0.2 or higher to avoid a RegExp Do…
nuest updated
8 years ago
-
I think `dev-dependencies` are ignored in the released version on crates.io , but installing from git fixes that.
-
NPM warns about this, but it can be reasonably considered a quality-worthy consideration. Also, this module fails it.