Closed Cyberczy closed 4 months ago
Perhaps we should use dependabot to update deps versions. This way we can avoid forgetting to update these deps versions. see https://docs.github.com/en/code-security/dependabot/dependabot-security-updates/configuring-dependabot-security-updates How do you think? @ayamir
i dont think using a dependabot is a good idea. we might have supply chain attack issue. it's very own security news.
Happy lunar new year 🎉