Technology Radar
Published : Apr 26, 2023
NOT ON THE CURRENT EDITION
This blip is not on the current edition of the Radar. If it was on one of the last few editions, it is likely that it is still relevant. If the blip is older, it might no longer be relevant and our assessment might be different today. Unfortunately, we simply don't have the bandwidth to continuously review blips from previous editions of the Radar.
Understand more
Apr 2023
Adopt
初始工具包和模板被广泛用于软件项目以加快初始设置,但它们可能会为项目引入许多不必要的依赖项。实践 依赖裁剪 很重要——定期仔细检查这些依赖并剔除未使用的依赖,这有助于减少构建和部署时间,并且可以通过移除潜在漏洞来降低项目受攻击的风险。尽管这不是一项新技术,但鉴于对软件上下游的攻击频率越来越高,我们提倡重新关注它。
