Y
Hacker News
new
|
ask
|
show
|
jobs
by
m4rtink
17 days ago
Won't pinning a version lead to dependency hell, not to mention potentially using vulnerable versions if you don't a new version after it has some CVE fixes ?