Open JamesTheAwesomeDude opened 5 months ago
While we are on Github, we may as well enjoy benefits like https://docs.github.com/en/code-security/dependabot/dependabot-version-updates/configuring-dependabot-version-updates to pester us about vendored dependencies
*Currently, only 1 dependency, "the" vendored dependency, but still. The most recent update was a security update...
**I don't know how good dependabot's support is for git subtree, which is what we're currently using.
git subtree
https://github.com/dependabot/dependabot-core/discussions/9327
JamesTheAwesomeDude
commented
2 months ago JamesTheAwesomeDude
commented
2 months ago
While we are on Github, we may as well enjoy benefits like https://docs.github.com/en/code-security/dependabot/dependabot-version-updates/configuring-dependabot-version-updates to pester us about vendored dependencies
*Currently, only 1 dependency, "the" vendored dependency, but still. The most recent update was a security update...
**I don't know how good dependabot's support is for
git subtree, which is what we're currently using.