|
|
|
|
|
|
by WorldMaker
777 days ago
|
|
|
People already do that with vendorizing, too. It was noted the other week on HN of someone "collateralizing" their tech debt by vendorizing a dependency to remove CVE/deprecation/obsolescence warnings for a Rust dependency with no update path: https://news.ycombinator.com/item?id=39827645 A metric like this can't keep you honest (just about no matter how you design it, people will find loopholes), but it can help honest people document their needs. |
|
|