Open gigamorph opened 8 months ago
@kamerynB Do these questions need to be brought up at an IT meeting?
@roamye No they are more for me. I've been part of dev teams that have had processes in place for updating packages so that was me asking questions to myself on how I can use previous knowledge for this task. 😄
dev mtg 10/21:
Yarn has a tool to help upgrade packages: https://classic.yarnpkg.com/lang/en/docs/cli/upgrade-interactive/
Problem Description: The frontend does not have a process for updating packages based on vulnerabilities or on latest releases.
Expected Behavior/Solution: A process for updating packages should be created.
Requirements:
yarn audit
and yarn-audit-fix package to check for vulnerabilities and updatesyarn update
oryarn update-interactive
commands should be used to update the packagesNeeded for promotion: If an item on the list is not needed, it should be crossed off but not removed.
UAT/LUX Examples: N/A
Dependencies/Blocks: N/A
Related Github Issues:
412
Related links: N/A
Wireframe/Mockup: N/A