Ruby Dependency Projects
🤖 The core logic behind Dependabot's update PR creation, and the public issue tracker for all things DependabotProject mention: Yarn.lock: how it works and what you risk without maintaining yarn dependencies — deep dive | dev.to | 2021-09-03
Unfortunately, it misses (at least at the time of writing this article) the ability to have duplicate updates for different allow types. That means you can't have e.g. daily updates for dependencies and weekly updates for devDependencies in the same project. In our case, it was about not being able to daily update to versions that include security-related changes and all of the other changes (features, fixes, major updates) on a weekly basis using the same tool.
A Ruby gem to cache and verify the licenses of dependencies (by github)Project mention: Licensed | news.ycombinator.com | 2021-05-12
Scout APM: A developer's best friend. Try free for 14-days. Scout APM uses tracing logic that ties bottlenecks to source code so you know the exact line of code causing performance issues and can get back to building a great product faster.
Are you hiring? Post a new remote job listing for free.