C5. Keep dependencies updated
What this page helps you do
Keep dependencies from drifting too far out of date.
Why it matters
Old dependencies can create security risk and painful upgrade cliffs later.
You should already have
- a dependency-managed app
Skip this page if
- your app has no package or dependency manager, which is rare
What to do
- review updates regularly
- apply small safe updates early
- avoid giant upgrade jumps right before launch
Recommended default
Keep up with small updates instead of waiting for a painful cleanup month.
Common mistakes
- ignoring update warnings for months
- updating everything at once the day before launch
- not testing after updates
Next step
Go to R8. Launch checklist.
Related pages
Advanced notes
TODO for contributors: add simple guidance for automated update tools and how to review them calmly.