#tooling
Stop Using Yarn Classic
5 min readYarn Classic is frozen, and its lack of recursive transitive updates is becoming a real liability in an era where CVEs land weekly. It's time to move on.
Protecting Against Compromised Packages with Minimum Release Age
6 min readLeverage your package manager's minimum release age setting to delay the installation of freshly published versions and reduce the risk of pulling in a compromised package.
Minimizing Risk: Properly and Safely Resolving CVEs in Your Dependencies
10 min readHow to properly and safely update dependencies to resolve CVEs, while also gathering an understanding of how package managers handle dependencies.
Speeding up ESLint—Even on CI
5 min readGotta Cache 'Em All: Leverage ESLint's cache to speed it up.
Graphite: The End of Mammoth Pull Requests? My Experience
6 min readEver felt trapped by colossal pull requests or tangled in merge conflicts? Dive into my experience with Graphite, the game-changer in code reviews. Discover the power of stacking, stay unblocked, and embrace a smoother Git journey. 🚀
Use Custom Merge Driver to Simplify Git Conflicts
3 min readTired of solving merge conflicts manually when it could be automated? Let's leverage Git's custom merge driver to simplify the process.
Enforce Best Practices Incrementally With Betterer
3 min readUsing Betterer to adopt, enforce, and teach best practices incrementally without having to refactor the whole codebase.
Setting up an Example App for Your React Native Library
5 min readHaving a hard time with a React Native example app? Here’s how you can simplify this with Metro bundler.