I’m trying to see how active a project is, but dependabot spam makes it annoying to find actual commits and to know if those commits are relevant.

There’s no need for me to know chai was updated from 5.1.1 to 5.1.2, I want to see what were the most recent actual features implemented.

  • Kissaki@programming.dev
    link
    fedilink
    English
    arrow-up
    4
    ·
    edit-2
    29 days ago

    Release must be documented

    It’s not a must [unless you put it into a contract], it’s a should or would be nice

    Many, if not most, projects don’t follow a good, obvious, transparent, documented release or change management.

    I wish for it, too, but it’s not the reality of projects. Most people don’t seem to care about it as much as I do.

    I agree blind acceptance/merging is problematic. But for some projects (small scope/size/personal-FOSS, trustworthy upstream) I see it as pragmatic rather than problematic.