Tag

Notes tagged “dependencies”

Every note filed under dependencies, newest first.

A filtered view of the notes.

2026

  1. Can I Use This Library?

    A strict CSP quietly turns every dependency into a security decision. Here is the tree I walk to make it — per library, and across a whole app.

  2. You Don't Want Separate Repos

    A repository is a database; splitting a subproject out trades a content hash for a version string — and there's only one case where that trade is actually forced.

Type to search · ↑↓ to move · ↵ to open · Esc to close