Jesse Johnson

icon company @Shopify

Results 7 comments of Jesse Johnson

Very slow dependency resolving

I'm using Bundler 2.3.4 until #5385 is resolved, in apps where there are private gems with many versions.

Dependabot does not check multiple instances of a package in Cargo.lock

My experience with this is that when there are multiple versions of a crate, dependabot is effectively disabled for that crate. The reason is that the lower version is checked,...

When multiple of the same cargo package are used, dependabot doesn't try to update all of them

Here's an example from March 2024: ```toml [[package]] name = "regex-syntax" version = "0.6.29" source = "registry+https://github.com/rust-lang/crates.io-index" checksum = "f162c6dd7b008981e4d40210aca20b4bd0f9b60ca9271061b07f78537722f2e1" [[package]] name = "regex-syntax" version = "0.8.2" source = "registry+https://github.com/rust-lang/crates.io-index"...

Duplicate default attributes when they are mutable non-procs

I don't think anyone can go wrong with a documentation update. However, the existing documentation already seems at odds with the existing behavior. There is no documentation that changing an...

Duplicate default attributes when they are mutable non-procs

> @matthewd good point on the `frozen?` branching. This would just push inconsistencies down a layer. > > > This assumes that the supplied object supports deep_dup > > I...

Bump actions/checkout from 6.0.0 to 6.0.1

@dependabot rebase

Bump actions/checkout from 6.0.0 to 6.0.1

@dependabot rebase