Having inter-package dependencies like "@code-pushup/models": "*" in our package.jsons is a problem, they should all be locked into the same version. Otherwise only direct dependencies like cli get updated and indirect dependencies stay behind.

Todo:

• set fixed version for all packages
• Avoid “*” versions with eslint or a plugin

Research:

• would it help to replace jscutlery/semver with new nx release?