Depfu VS Keygen

For everyone that has read my article about the demonstration of security flaws already knows how bad things can turn out, because a library has issues. If I would need to summarize this topic into one word: Log4Shell. The problem with 3rd party software is: When they mess up (security wise), your software can be affected. Luckily, often times libraries give their best to fix those exploits as quickly as... - Source: dev.to / over 1 year ago

Compounding factor #4: Dependency greening tools, like GitHub's dependabot, or the excellent alternatives depfu, and renovate will all send a PR whenever a new version of rubocop comes out, asking to upgrade from ancient to hot-right-now. While this is often a non-starter for a library, the repeated invalid PRs can be a time sink, and a distraction. - Source: dev.to / about 2 years ago

In terms of triggering upgrades, we have depfu/dependabot monitoring our dependencies for us. (Adopted depfu first, but dependabot is now baked into Github.) Its then a case of:. Source: about 2 years ago

For some time, I have updated the projects manually, however this became way too time consuming. Enter depfu, a free (for open source projects) service that keeps your project's dependencies up-to-date by proposing pull requests (PRs) whenever there's a new dependency version. Renovate is a similar service, and would work the same for the purpose of this tutorial. Depfu has made my life much easier – it... - Source: dev.to / about 3 years ago

I run a business called Keygen [^0], and own the @keygen namespace on npm. We’re working on a Node SDK, so this isn’t good to hear. I’ll open up a discussion with them and see what we can do. [^0]: https://keygen.sh. - Source: Hacker News / 11 months ago

I run https://keygen.sh by myself. I built it about 7 years ago and started running it on the side. I went full-time on it in 2020 when it got too big to run on the side. As for trends -- the market is a bit slower these days due to the current economic environment. I've noticed smaller businesses have had a tougher time buying (and staying on), while enterprises have had an uptick. - Source: Hacker News / about 1 year ago

Working on adding “environments” to my business’ API (https://keygen.sh). I’ve gone over 6 years without offering a “sandbox” environment to customers, so I’m excited to finally be working on this one. It’s been quite complex implementatiom-wise, and has touched a lot of surface area, since I want it to support multiple named environments (e.g. staging, dev, one-offs isolated test envs for CI/CD). But it’ll be... - Source: Hacker News / about 1 year ago

I’m currently developing a commercial product with Rust and I was wondering what the best way to distribute and sell licenses for it is. Should I use a third party like keygen or is there an easy way I could get started on implementing my own. I’m out of my depth when it comes to software licensing so I figure I should ask before assuming it’s a task I can take on myself. Source: over 1 year ago

Have you checked https://keygen.sh/, yoyll get ideas there. - Source: Hacker News / over 1 year ago