Dependabot Reviews

FreedomBox Reviews

Dependabot mentions (13)

• Be Secure and Compliant with GitHub

  GitHub integrated security scanning for vulnerabilities in their repositories. When they find a vulnerability that is solved in a newer version, they file a Pull Request with the suggested fix. This is done by a tool called Dependabot. - Source: dev.to / almost 2 years ago

• How to configure Dependabot with Gradle

  Dependabot provides a way to keep your dependencies up to date. Depending on the configuration, it checks your dependency files for outdated dependencies and opens PRs individually. Then based on requirement PRs can be reviewed and merged. - Source: dev.to / over 2 years ago

• Yarn.lock: how it works and what you risk without maintaining yarn dependencies — deep dive

  The first approach we looked at was Dependabot - a well-known tool for bumping dependencies. It checks for possible updates, opens Pull Requests with them, and allow users to review and merge (if you're confident enough with your test suite you can even set auto-merge). - Source: dev.to / almost 3 years ago

• 5 tools to automate your development

  Dependabot is dead simple and their punchline clearly states what it does. We started using it a couple of years back, a bit before Github acquired it. - Source: dev.to / about 3 years ago

• Keeping dependencies up-to-date in Composer

  The most known tool for this is Dependabot. Dependabot integrates seemlessly into Github and is able to create pull requests for outdated dependencies. If you have set up automated tests on your codebase all you have to do is merge the pull request created by Dependabot. It does not get any easier. - Source: dev.to / almost 3 years ago

FreedomBox mentions (22)

• Dual system case, cooling 4-port 10G ethernet

  I'm trying to plan a server build & want two systems, preferably in one box, a firewall & a server with enough oomph for freedombox, a personal git repository, mastodon, & a few other things. Https://freedombox.org/ Https://joinmastodon.org/. Source: over 1 year ago

• Railroad: Single-user, selfhosted blog for I2P for Linux and Windows

  Is it possible to use this with Freedombox? I use a Raspberry Pi as my i2p router, the Pi Runs Freedombox but it doesn't have a GUI installed, I just connect to it from other devices. How would I use the editor for example? Source: over 1 year ago

• What are some common things that are overlooked when it comes to privacy?

  Instead of commercial cloud-services, try something like Tailscale or ZeroTier for VPN across your devices, and run a https://freedombox.org/ on that network. The lesser but still decent option is to use client-side encrypted services like Proton Calendar and SpiderOak cloud backups. Source: over 1 year ago

• My Health Record: after 12 years and more than $2bn, hardly anyone is using digital service

  Yeah, if I still lived in Oz I’d be running a [freedom box)(https://freedombox.org/). It galls me that we have to treat the government as an Orwellian malevolent stalker. Source: about 2 years ago

• Do you think large companies like google, Facebook, or Twitter should be allowed to “police” content posted to them? Why?

  I would like to see a federated system, such as ActivityPub where everyone hosted their own instances on their FreedomBoxes. Moderation would be something you opt into, where competing services would scrape the web and do their own categorizations, and you can choose what you want to see and what you don't. Even without the moderation system, ActivityPub allows you to choose which servers your instance... Source: about 2 years ago