Managing Dependencies Is More Than "Composer Update"

Nils Adermann (31.May.2018 at 15:45, 1 hr )
Talk at php[tek] 2018 (English - US)

Rating: 5 of 5

We build our projects on the shoulders of giants---using third-party dependencies. But how well do we know them; what risks do they pose? Learn how to assess and minimize these risks and how to manage dependencies effectively. This talk covers a broad range of dependency management subjects, from assessing and minimizing risk to your business from BC breaks or failing external APIs, all the way to hands-on tips for working with Composer in the real world---e.g., how to solve composer.lock merge conflicts when other team members modified the file.

Who are you?

Claim talk

Talk claims have been moved to the new site.

Please login to the new site to claim your talk

Comments closed.


Rating: 5 of 5

31.May.2018 at 16:35 by Chuck Burgess (75 comments) via Web2 LIVE

Good points to consider, especially around risks.

Rating: 4 of 5

31.May.2018 at 16:39 by tarsusc81 (11 comments) via Web2 LIVE

Very informative, thanks

Rating: 5 of 5

31.May.2018 at 16:47 by Sal Ferrarello (8 comments) via Web2 LIVE

Framing dependency management in the context of risk analysis is not how I traditionally think about Composer. Thank you for this perspective and the tips you provided.

Rating: 5 of 5

31.May.2018 at 17:04 by Steve Grunwell (135 comments) via Web2 LIVE

Some excellent insights into both technical and business risks, and good advice on how to mitigate. It's almost as if Composer + Packagist are Nils' bread & butter or something!

Rating: 5 of 5

04.Jun.2018 at 17:31 by Dave Liddament (72 comments) via Web2 LIVE

Lots of useful little tips; we'll be changing how we comment composer updates off the back of this talk.

© 2019