Standard Search
About 112 results
The Roles of Packages
https://nesbitt.io/2026/03/29/the-roles-of-packages.html · 29 Mar 2026
Applying Sajaniemi's roles of variables to packages across every kind of package manager.
package-managers taxonomy deep-dive
Package Manager Mirroring
https://nesbitt.io/2026/03/20/package-manager-mirroring.html · 20 Mar 2026
Every mirroring tool I could find, and the protocols underneath them.
package-managers reference
The Fragmented World of Dependency Policy
https://nesbitt.io/2026/03/19/the-fragmented-world-of-dependency-policy.html · 19 Mar 2026
Every tool that makes automated decisions about dependencies invented its own policy format. There are standards for describing software components but none for writing rules about them.
package-managers supply-chain git-pkgs
Guided Meditation for Developers
https://nesbitt.io/2026/03/15/guided-meditation-for-developers.html · 15 Mar 2026
A practice for finding peace in your dependency tree.
package-managers satire
What's Going On with FAIR Package Manager
https://nesbitt.io/2026/03/14/whats-going-on-with-fair-package-manager.html · 14 Mar 2026
Federated FAIR pivots from WordPress to TYPO3
package-managers deep-dive
Reviewing ENISA's Package Manager Advisory
https://nesbitt.io/2026/03/12/reviewing-enisas-package-manager-advisory.html · 12 Mar 2026
Notes on ENISA's Technical Advisory for Secure Use of Package Managers.
package-managers security supply-chain
If It Quacks Like a Package Manager
https://nesbitt.io/2026/03/08/if-it-quacks-like-a-package-manager.html · 8 Mar 2026
Some tools waddle like package managers without learning to swim.
package-managers security deep-dive
Package Manager Magic Files
https://nesbitt.io/2026/03/05/package-manager-magic-files.html · 5 Mar 2026
Package manager magic files and where to find them: .npmrc, MANIFEST.in, Directory.Packages.props, .pnpmfile.cjs, and more.
package-managers reference
Package Managers Need to Cool Down
https://nesbitt.io/2026/03/04/package-managers-need-to-cool-down.html · 4 Mar 2026
A survey of dependency cooldown support across package managers and update tools.
package-managers security ecosyste.ms deep-dive
Package Management is Naming All the Way Down
https://nesbitt.io/2026/03/03/package-management-is-naming-all-the-way-down.html · 3 Mar 2026
There are two hard problems in computer science, and package managers found at least eight of them.
package-managers deep-dive
110293 verified documents in index