search

guardian / dotcom-rendering

The Guardian web rendering service (aka DCR/DCAR)
https://www.theguardian.com
Apache License 2.0
250 stars 28 forks source link

Investigate adding peer/dev dependencies to snyk workflows #6718

Open Georges-GNM opened 1 year ago

Georges-GNM commented 1 year ago

Currently snyk workflows only cover what's listed under the dependencies field - do we want to add coverage for peer and dev dependencies as well?

rhiannareechaye commented 1 year ago

As per our triaging, this is a high impact issue so ideally we should look at it