|
|
|
|
|
|
by precommunicator
1230 days ago
|
|
|
Context: happy monorepo user. 1, 2 and 3: Use separate dependencies for each package, so this doesn't happen. Use e.g. GitHub Actions or another CI/CD file filtering wisely: if a file is needed by two packages, tests for both packages needs to run whenever it's changed, before merging, in addition to usual end-to-end tests. Have vulnerable dependencies alerting and make sure to upgrade it everywhere it occurs. 2: Also have some guidelines on that and enforce it either automatically or manually in PRs. |
|
|