About 14 results
https://nesbitt.io/2026/04/16/features-everyone-should-steal-from-npmx.html · 16 Apr 2026
What happens when users design their own package registry frontend
https://nesbitt.io/2026/03/31/npms-defaults-are-bad.html · 31 Mar 2026
The npm client's default settings are a root cause of JavaScript's recurring supply chain security problems.
https://nesbitt.io/2026/02/28/npm-data-subject-access-request.html · 28 Feb 2026
A response to a GDPR data subject access request.
https://nesbitt.io/2026/02/14/package-management-namespaces.html · 14 Feb 2026
Comparing namespace models across npm, Maven, Go, Swift, and crates.io.
https://nesbitt.io/2026/01/05/the-nine-levels-of-javascript-dependency-hell.html · 5 Jan 2026
Come, I will show you what I have seen.
https://nesbitt.io/2025/12/19/why-javascript-needed-docker.html · 19 Dec 2025
How Docker became JavaScript's real lockfile
https://blog.nove-b.dev/posts/npx-temp-install · 4 Jul 2025
npxはパッケージをインストールせずに実行できるという認識だったので、 という文言見て今さら不思議に思ったのでどういうものかと調べてみることにした。 厳密に言えば一時的にインス...
https://pdewey.com/blog/bluesky-comments-svelte · 26 Nov 2024
### Introduction Bluesky has been gaining a lot of traction and publicity recently, and there are a few aspects of the platform that have piqued my interest in a way that no other social media platform has done. What gets me most excited about Bluesky is...
https://ayc0.github.io/posts/semver-the-unknown-parts · 14 Jul 2022
The semver’s spec mentions a group called “buildMetadata”. If you’ve never heard of this before, you’re not alone
https://mikebifulco.com/posts/i-have-to-tell-you-about-dependabot · 31 May 2019
Dependabot is an automation service that will automatically create PRs to keep your projects' dependencies up to date, and it is really powerful.