If you’re like me, and you’ve built several Github repositories over time as part of developer learning fun projects, there’s probably a good chance these same repositories will not get maintained on some form of regular basis.
The reasons for this to happen can be wide-ranging - everything from being too busy at work, changing interests for different software frameworks, lifestyle priorities changes, changing career responsibilities etc, etc - there’s too many to list here.
They took the best of our coding life as months or years go by.
As a consequence, your Github repositories do become quickly stale over time.
This ‘staleness’ - come with old dependencies that do not get updated, which at worse, could be leaking software security issues over time.
I have over 50 repositories in my Github profile and there’s no way that I could keep track of knowing which repos have more security holes to address after another, let alone have to fix up security vulnerabilities dependencies one PR at a time on my own… 😨
Thus I need to find a way to auto-manage all these repositories without lifting a finger (much)
Without further ado, I found this useful toolchain from Github marketplace - Snyk.