The "user-friendly" part is always tricky. Maybe you could give bubblewrap a go. I think that it strikes the correct balance between inconvenience and security. I use it to wrap different package managers like npm.…
This is just the case. It is very difficult to know up-front if added complexity will actually save you anything in the end. New concepts, frameworks or whatever are created for a reason. If you willingly adapt any new…
A valid point, but from my view there are two scenarios: 1. You have a known security bug in one of your dependencies that is discovered. If it is a serious bug you need to check if you are affected and make sure to use…
The "user-friendly" part is always tricky. Maybe you could give bubblewrap a go. I think that it strikes the correct balance between inconvenience and security. I use it to wrap different package managers like npm.…
This is just the case. It is very difficult to know up-front if added complexity will actually save you anything in the end. New concepts, frameworks or whatever are created for a reason. If you willingly adapt any new…
A valid point, but from my view there are two scenarios: 1. You have a known security bug in one of your dependencies that is discovered. If it is a serious bug you need to check if you are affected and make sure to use…