Andrew NesbittRecently every time I get a dependabot security alert, rather than try and fix/update it, I just spend the same amount of time trying to remove the dependency instead.
hacktopus@andrewnez it definitely makes me think about how complex some dependencies are - like sometimes I’m like “wait, why would it even need to do that?”