Y
Hacker News
new
|
ask
|
show
|
jobs
by
greysteil
3011 days ago
That’s normally an option for your manifest file (e.g., a Gemfile or package.json), but most production applications also (sensibly) use a lockfile. Updating the versions in that lockfile is what Dependabot is great for.