Episode

Dependencies are dangerous

Podcast

Go Time: Golang, Software Engineering

Published

Jul 3, 2024

Duration seconds

3817

Processing state

not_requested

Canonical source

https://changelog.com/gotime/321

Audio

https://op3.dev/e/https://cdn.changelog.com/uploads/gotime/321/go-time-321.mp3

JSON

/v1/public/podcasts/go-time-golang-software-engineering/episodes/dependencies-are-dangerous

Markdown

/podcast/go-time-golang-software-engineering/dependencies-are-dangerous.md

Actions

• POST https://stenobird.com/v1/public/podcasts/go-time-golang-software-engineering/episodes/dependencies-are-dangerous/transcription-requests
  Idempotently request low-priority transcript generation for this episode.
• GET https://stenobird.com/podcast/go-time-golang-software-engineering/dependencies-are-dangerous.md
  Read the agent-friendly Markdown representation of this episode resource.

Summary

Dependencies! We need them, but how do we use them effectively and safely? In this week's episode Kris is joined by Ian and Johnny to discuss the polyfill.io supply chain attack, the history of dependency management and usage in Go, and the Go Proverb that "a little copying is better than a little dependency". Of course, we wrap up the episode with some Unpopular Opinions!