**Rules: **Don't pin to "*"! You will get broken builds, production outages and...
**Rules: **Don't pin to "*"! You will get broken builds, production outages and you'll be 1st do discover if a new lib is broken.
**Also Rules**: Upgrade all dependencies every 24 hours (speed of fastest updating library), build, dev and prod dependencies, assume that all libraries are fixing CVEs that will be exploited on all machines NOW!
Including the one line `FROM alpine:v123` dockerfile! No tag means secure, tag means it has a CVE NOW and probably is running in production!
Self-replies
**Also Rules**: Please don't knock over the build server with excessive builds, it literally can halt work for multiple teams.
**Also Rules**: Let's let dependabot/renovatebot rebuild everything, once per dependency, per merge, request per merge. The build servers have disappeared into a blackhole? Well, you gotta take your medicine.