Code Inspector detects and analyzes your software dependencies. It reports what dependency should be updated by keeping an history of all dependencies available online.
Note: this feature is available only to paying users.
Why you should specify a dependency version
Some languages or package managers do not require to specify a version. Code Inspector recommends to specify a version number, which avoids headaches in the future. In particular, when not specifying a version, you do not have any guarantee on what version will be used. When installing your software, you might pull a new version that break your code.
For more details, we recommend you have a look at this Stackoverflow post about this topic.
How do you consider a version old?
Current thresholds are configured as follow:
- The analysis engine considers a warning if there are five (5) new versions of a library.
- The analysis engine considers a critical issue if there are ten (10) new versions of a given library.
What language are considered for dependency management?
The engine is configured to handle the following languages:
- Python (via a
- Java (via a
- Ruby (via a
My dependencies are specified in a custom file, how can I configure the engine?
You can change the path to the file that contains your dependencies. For each language, the preferences panel contain an entry to change the path to the dependency file.
Note: the path of the dependency file is relative to your repository.
I do not have access to this feature!
This feature is for Silver and Gold members only. Upgrade to get access to this feature.