On 3/6/18 5:36 PM, Nicholas Alexander wrote:
We (folks behind the Node proposal) are actively working with the folks behind this sibling proposal to ensure that we have a workable solution to upgrading Node dependencies across the tree in a timely manner in the face of security updates.

Note that it's not just about making sure we take security updates as they become available. It's also about _not_ taking updates to packages in situations where the package ownership (for the same name) changes, etc....

dev-builds mailing list

Reply via email to