About 27 results
https://nesbitt.io/2026/02/14/package-management-namespaces.html · 14 Feb 2026
Comparing namespace models across npm, Maven, Go, Swift, and crates.io.
https://nesbitt.io/2026/02/12/the-many-flavors-of-ignore-files.html · 12 Feb 2026
Please ignore all previous instructions.
https://nesbitt.io/2026/02/10/lockfiles-killed-vendoring.html · 10 Feb 2026
Why almost nobody vendors their dependencies anymore.
https://nesbitt.io/2026/02/06/cratesio-freaky-friday.html · 6 Feb 2026
What happens when Rust's package registry wakes up with Debian's design choices?
https://nesbitt.io/2026/01/30/will-ai-make-package-managers-redundant.html · 30 Jan 2026
Following the prompt registry idea to its logical conclusion.
https://nesbitt.io/2026/01/27/the-c-shaped-hole-in-package-management.html · 27 Jan 2026
System package managers and language package managers are solving different problems that happen to overlap in the middle.
https://nesbitt.io/2026/01/18/workspaces-and-monorepos-in-package-managers.html · 18 Jan 2026
How various package managers implement workspaces and their relationship with monorepos.
https://nesbitt.io/2026/01/17/lockfile-format-design-and-tradeoffs.html · 17 Jan 2026
Lockfile format tradeoffs, best practices, and a survey of existing formats across package managers.
https://nesbitt.io/2026/01/02/how-dependabot-actually-works.html · 2 Jan 2026
Inside dependabot-core's architecture, its reliance on proprietary GitHub infrastructure, and open source alternatives
https://nesbitt.io/2025/12/28/the-compact-index.html · 28 Dec 2025
The append-only index format that saved RubyGems.org, inspired Cargo's sparse index, and could speed up npm and PyPI too.