About 112 results
https://nesbitt.io/2026/01/04/making-git-pkgs-feel-like-git.html · 4 Jan 2026
What it takes to make a git subcommand feel native.
https://nesbitt.io/2026/01/03/the-package-management-landscape.html · 3 Jan 2026
A directory of tools, systems, and services that relate to package management.
https://nesbitt.io/2026/01/02/how-dependabot-actually-works.html · 2 Jan 2026
Inside dependabot-core's architecture, its reliance on proprietary GitHub infrastructure, and open source alternatives
https://nesbitt.io/2026/01/01/git-pkgs-explore-your-dependency-history.html · 1 Jan 2026
A git subcommand to explore the dependency history of your repositories.
https://nesbitt.io/2025/12/30/community-tools-bring-lockfile-support-to-github-actions.html · 30 Dec 2025
Community projects gh-actions-lockfile and ghasum address GitHub's missing lockfile support with SHA pinning and integrity verification
https://nesbitt.io/2025/12/29/categorizing-package-registries.html · 29 Dec 2025
Sorting package registries by architecture, review model, namespacing, governance, and other structural differences.
https://nesbitt.io/2025/12/29/categorizing-package-manager-clients.html · 29 Dec 2025
Sorting package manager clients by resolution algorithms, lockfile strategies, build hooks, and manifest formats.
https://nesbitt.io/2025/12/28/the-compact-index.html · 28 Dec 2025
The append-only index format that saved RubyGems.org, inspired Cargo's sparse index, and could speed up npm and PyPI too.
https://nesbitt.io/2025/12/27/how-to-ruin-all-of-package-management.html · 27 Dec 2025
Attach financial incentives to open source metrics and watch the spam flood in.
https://nesbitt.io/2025/12/26/how-uv-got-so-fast.html · 26 Dec 2025
uv's speed comes from engineering decisions, not just Rust. Static metadata, dropping legacy formats, and standards that didn't exist five years ago.