Use clj-kondo (since eastwood linting eastwood has some intrinsic risk of false negatives) and lein-nvd (especially for ensuring that eastwood is able to use a classpath that complies with lein-nvd. The security warnings themselves only have a relative value for dev tooling).
Also, use lein-ancient, for ensuring var-info.edn remains valid (since a unit test for it will be added).
Finally, create a "cron" CI job so that lein-nvd and lein-ancient perform their task regularly.
Use clj-kondo (since eastwood linting eastwood has some intrinsic risk of false negatives) and lein-nvd (especially for ensuring that eastwood is able to use a classpath that complies with lein-nvd. The security warnings themselves only have a relative value for dev tooling).
Also, use lein-ancient, for ensuring var-info.edn remains valid (since a unit test for it will be added).
Finally, create a "cron" CI job so that lein-nvd and lein-ancient perform their task regularly.