/images/avatar.png

Richard "Rick" Roché

Software Engineer, Solutions Architect, Hiking Enthusiast

Azure Pipelines and Dependabot

Keeping your dependencies up to date in a project is a really easy way to try and keep the software secure. New releases of a dependency often include

  • Patches for security vulnerabilities!
  • Performance improvements!
  • Awesome new features!
  • Bug fixes!

It can also be quite a boring activity and can be time-consuming for a team maintaining the project to run updates regularly into production. Fortunately tools like Dependabot exist!