Tag
dependency-health
Safeguard articles tagged "dependency-health" — guides, analysis, and best practices for software supply chain and application security.
3 articles
Open Source
rrule npm Package: Recurrence Rules, Health, and Pitfalls
The rrule npm package is the standard way to handle iCalendar recurrence rules in JavaScript — but it carries timezone traps, unbounded-expansion hazards, and a slow maintenance pulse worth knowing before you depend on it.
Feb 11, 20257 min read
Product
Safeguard Open Source Manager: Understanding the Health of Your Dependencies
Vulnerability counts do not tell the full story. Open Source Manager evaluates the health, maintainability, and trustworthiness of the open-source projects your software depends on.
May 1, 20247 min read
Open Source Security
Open Source Dependency Health Metrics That Actually Matter
Star counts and download numbers tell you popularity, not health. The metrics that predict dependency risk are harder to measure and more important to track.
Dec 5, 20236 min read