Closed Cyberczy closed 7 months ago
i dont think using a dependabot is a good idea. we might have supply chain attack issue. it's very own security news.
Aha, it's indeed a potential risk. Maybe we can revert this commit.
agree
i dont think using a dependabot is a good idea. we might have supply chain attack issue. it's very own security news.