Widen dependency ranges (2.x backpatch)

Workiva / dependency_validator

A tool to help you find missing, under-promoted, over-promoted, and unused dependencies.

Other

56 stars 18 forks source link

Widen dependency ranges (2.x backpatch) #80

Closed evanweible-wf closed 2 years ago

evanweible-wf commented 2 years ago

To ensure a smooth transition, we want exsiting consumers of dependency_validator 2.x to be able to upgrade other common dependencies without also needing to upgrade to v3. This works just fine because v2 is already compatible with the next major of all of its dependencies (except json_annotation).

aviary3-wk commented 2 years ago

Security Insights

No security relevant content was detected by automated scans.

Action Items

Review PR for security impact; comment "security review required" if needed or unsure
Verify aviary.yaml coverage of security relevant code

Questions or Comments? Reach out on Slack: #support-infosec.

evanweible-wf commented 2 years ago

QA +1 CI passes @Workiva/release-management-p

Workiva / dependency_validator

Widen dependency ranges (2.x backpatch) #80

Security Insights

Action Items

Verify aviary.yaml coverage of security relevant code

Verify `aviary.yaml` coverage of security relevant code