Andrey Sitnik

> For big companies an allow list is fine because in big companies each new package that is added to a project should be approved You need to give a...

Fair point 😞 Another way: add extra option `--validate-lockfile` and use it in CI for pull request. But will it be easy to write these configs? Maybe we can convince...

Can I ask you to send PR? I agree that we could improve it, but I personally does not see a use case and prefer focusing on another task. But...

Sure! Send PR.

We still have this method https://github.com/postcss/postcss/blob/main/lib/node.js#L260 You need to ask your linter developers.

It is related to different PostCSS versions in `node_modules`. Run any tools to dedupe dependencies. We had a protection against broken AST, but I have no idea why it is...

I didn’t find a why it happens and how to fix it. If you help me, it will be very nice.

In PostCSS 8 ;). PostCSS 7 will be a quick release without Node.js 4. The only thing blocking us from PostCSS 7 is cssnano 4 release by @evilebottnawi

Technically we don’t need a major release for it. We can release it in 7.1. I suggest starting with selectors. And add values parser only in 7.2.

How you can help: * I need a list of AST nodes for selectors. * I need a token list to parse those AST nodes. * I need ideas of...