Mend & Defend Community
Mend's developer community is a place to share insights and ask questions about dependencies, security risks, and AppSec solutions.
Recent Questions
What is the standard way to embed a version into a Python package?
I'm trying to make sure that my project follows convention. Help. Thanks in advance.Asked 10 months ago
1
Answers
801
Views
Where is my Python site-packages directory located?
I'm new to Python and don't know where it is. Can someone help please.Asked a year ago
1
Answers
1.2k
Views
What are the differences between distribute, distutils, setuptools, and distutils2?
I'm trying to get my head around the differences. Can someone explain it to me please. Asked a year ago
1
Answers
962
Views
Is moving from JQuery to Angular.js a massive shift?
I'm going to switch from jQuery to Angular.js next week. I have a lot of experience with jQuery but not Angular.js. Is it a drastic shift? A bit stressed. Thanks in advance for any advice. Asked a year ago
1
Answers
819
Views
How do I add a module as a dependency in my POM file?
I need help adding a module as a dependency in a POM xml file. I have tried adding it in the dependencies section, but it doesn't seem to work. Any help would be appreciated.Asked a year ago
1
Answers
1.8k
Views
Why do I need to split between dev and prod dependencies?
I'm trying to understand the difference between dev and peerdependencies in a npm package.json file. Can someone explain what the difference is and when you would use each one?Asked a year ago
1
Answers
2.1k
Views
Can I overwrite a dependency without doing repo a fork?
I have a rake task that calls another rake task as a dependency. I want to overwrite what the dependency task does without having to fork the original repository and change the dependency task. Is this possible?Asked a year ago
1
Answers
1.4k
Views
Why do devs object to using unsupported open source in production?
I'm looking for the best practice for dealing with unsupported open-source dependencies. I've seen a few options, but I'm not sure which is the best. For example, should I fork the project and continue development? Or should I just use a different project?Asked a year ago
1
Answers
1.1k
Views
How does SDLC work when used in real projects?
I saw that using SDLC to develop an operational project has been mentioned a few times, but I am not sure how it would work in practice. Asked a year ago
1
Answers
959
Views
What is the difference between an X-CSRF-TOKEN and X-XSRF-TOKEN?
I was wondering what the main difference is between an X-CSRF-TOKEN and X-XSRF-TOKEN? From what I can tell, both of them are used to help protect against CSRF attacks, but I'm not sure how they differ.Asked a year ago
1
Answers
3.3k
Views