Skip to content
Better HN
Top
New
Best
Ask
Show
Jobs
Search
⌘K
undefined | Better HN
story
0 points
shortrounddev2
5mo ago
0 comments
Share
it's interesting that staying up to date with your dependencies is considered a vulnerability in Node
0 comments
default
newest
oldest
bichiliad
5mo ago
Having a cooldown is different from never updating. I don’t think waiting a few days is a bad security practice in any environment, node or otherwise.
vrighter
5mo ago
But only if most of everyone else doesn't do so.
skwee357
5mo ago
People who live on the edge of updates always risk vulnerabilities and incompatibility issues. It’s not about node, but anything software related.
j
/
k
navigate · click thread line to collapse
