Okay, I'm really impressed by how good @dependabot is. Auto-merging of PRs definitely makes it worthwhile!
It's now happily updating Hypercore's dependencies :D
https://github.com/datrs/hypercore/pulls?utf8=%E2%9C%93&q=is%3Apr …
-
-
For me it's a trade-off between not updating dependencies regularly at all, and taking a chance a small percentage of upgrades might not be caught by CI. I'd rather spend more time adding tests for newly-found edge cases than spending lots of effort on manually upgrading.
-
Yep same here. Though right now i prefer to depend on them for minor updates and do the major ones manually. Might change later on.
End of conversation
New conversation -
-
-
Agreed. The thing is sometimes you can have breaking changes without breaking your tests (for example, if say a crate changes one of its dependencies from public to private) and for a bin its fine but for a crate they might be issues.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.