스킬 파일

Dependency Management

Name: Dependency Management
Author: ruby-git

Updates gem dependencies, handles CVEs, and manages gemspec rules. Use when updating dependencies, checking for outdated gems, or fixing security vulnerabilities.

ruby-git1,795 스타2026. 3. 4.

직업
카테고리: Web3 도구

스킬 내용

Dependency Management Workflow

Dependency Management

Updates gem dependencies, handles CVEs, and manages gemspec rules. Use when updating dependencies, checking for outdated gems, or fixing security vulnerabilities.

ruby-git1,795 스타2026. 3. 4.

직업
카테고리: Web3 도구

스킬 내용

Dependency Management Workflow

How to use this skill

Attach this file to your Copilot Chat context, then invoke it with the specific dependency update or CVE remediation scope. Apply this workflow before changing version constraints so updates remain consistent with gem project rules.

CI/CD Troubleshooting — diagnose failures introduced by dependency updates
Development Workflow — drive any required code changes via TDD
Release Management — understand how dependency changes flow into automated releases

Project-Specific Rules

All dependencies go in git.gemspec (both runtime and development) - enforced by Rubocop
Gemfile should remain minimal/empty - do not add dependencies here
Gemfile.lock is NOT committed - this is a gem/library project

Update Process

Assess: Run bundle outdated and bundle audit check --update (if available)
Update: Edit git.gemspec if constraints need changing, then run bundle update
Test: Run bundle exec rake default - must pass on all supported Ruby versions (see CI matrix in .github/workflows/ and minimum version in git.gemspec)
Commit: Use conventional commit format:
- Security: fix(deps): update <gem> to fix CVE-XXXX-XXXX
- Regular: chore(deps): update dependencies
- Breaking: chore(deps)!: update <gem> with BREAKING CHANGE: footer

Key Considerations

Security vulnerabilities are highest priority - address immediately
For gem projects, version constraints in gemspec must be carefully chosen since users resolve dependencies independently
Breaking changes in dependencies may require code changes (use TDD workflow)
Test with both minimum supported versions and latest versions when possible
If tests fail, isolate by updating gems one at a time or use binary search

Commit Guidelines

This project uses Conventional Commits. A commit hook enforces the format. See the "Commit message guidelines" section in CONTRIBUTING.md for the full format and allowed types.

Issue and PR references in the body: Do not use #<number> in the commit body — write issue 1000 not issue #1000. A commitlint parser flaw treats any line containing #<number> as a footer token, breaking the body/footer split. To close an issue/PR, use Closes/Fixes/Resolves #<number> in the footer. To merely mention one for context, omit the # and no footer line is needed.

To validate a commit message file before committing:

npx commitlint --format @commitlint/format < commit_msg.txt

02

Contents

03How to use this skill

04Related skills

05Project-Specific Rules

Mine

Mine a project or conversation into your MemPalace — extract and store memories for later retrieval.

MemPalace47.8k

Web3 도구

Ccxt Python

CCXT cryptocurrency exchange library for Python developers. Covers both REST API (standard) and WebSocket API (real-time). Helps install CCXT, connect to exchanges, fetch market data, place orders, stream live tickers/orderbooks, handle authentication, and manage errors in Python. Use when working with crypto exchanges in Python projects, trading bots, data analysis, or portfolio management. Supports both sync and async (asyncio) usage.

ccxt42.0k

Web3 도구

Ccxt Csharp

CCXT cryptocurrency exchange library for C# and .NET developers. Covers both REST API (standard) and WebSocket API (real-time). Helps install CCXT, connect to exchanges, fetch market data, place orders, stream live tickers/orderbooks, handle authentication, and manage errors in .NET projects. Use when working with crypto exchanges in C# applications, trading systems, or financial software. Supports .NET Standard 2.0+.

ccxt42.0k

Web3 도구

CCXT for TypeScript/JavaScript

CCXT cryptocurrency exchange library for TypeScript and JavaScript developers (Node.js and browser). Covers both REST API (standard) and WebSocket API (real-time). Helps install CCXT, connect to exchanges, fetch market data, place orders, stream live tickers/orderbooks, handle authentication, and manage errors. Use when working with crypto exchanges in TypeScript/JavaScript projects, trading bots, arbitrage systems, or portfolio management tools. Includes both REST and WebSocket examples.

ccxt42.0k

Web3 도구

Ccxt Go

CCXT cryptocurrency exchange library for Go developers. Covers both REST API (standard) and WebSocket API (real-time). Helps install CCXT, connect to exchanges, fetch market data, place orders, stream live tickers/orderbooks, handle authentication, and manage errors in Go projects. Use when working with crypto exchanges in Go applications, microservices, or trading systems.

ccxt42.0k

Web3 도구

Ccxt Php

CCXT cryptocurrency exchange library for PHP developers. Covers both REST API (standard) and WebSocket API (real-time). Helps install CCXT, connect to exchanges, fetch market data, place orders, stream live tickers/orderbooks, handle authentication, and manage errors in PHP 8.1+. Use when working with crypto exchanges in PHP projects, trading bots, or web applications. Supports both sync and async (ReactPHP) usage.

ccxt42.0k

컴퓨터 프로그래머