pnpm
rfcs
Our great sponsors
pnpm | rfcs | |
---|---|---|
95 | 35 | |
27,687 | 716 | |
2.3% | 0.6% | |
9.8 | 5.6 | |
1 day ago | 3 days ago | |
TypeScript | JavaScript | |
MIT License | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
pnpm
-
Let’s build AI-tools with the help of AI and Typescript!
Pnpm for install Javascript/Typescript packages, like LangChain.js
- Pnpm 9
-
Understanding Dependencies in Programming
Node.js manages dependencies using package managers like npm (Node Package Manager), yarn, and pnpm. npm comes pre-installed with Node.js and allows you to install and uninstall Node.js packages. It uses a package.json file to keep track of which packages your project depends on. Yarn and Pnpm are alternative package managers that aim to improve on npm in various ways, such as improved performance and better lock file format.
-
Manage project dependencies correctly
Use pnpm - This is just one recommendation, but it's too big of a topic to discuss here.
- Bun 1.1
-
Using pnpm with the GitLab package registry in GitLab CI
In this blog post, I explain how to use pnpm in GitLab CI and how to authenticate with a private GitLab package registry.
-
Unit Testing in Node.js and TypeScript: A Comprehensive Guide with Jest Integration
A package manager such as npm, Yarn, or pnpm. A package manager is a tool that helps you manage the dependencies of your project. You can use any of these package managers to install Jest and other packages.
-
Understanding Redux: A Practical Guide to State Management
Installation: Install Redux and React-Redux using npm or yarn.(you can try pnpm too!)
-
Effective nodejs version management for the busy developer
I also recommend using pnpm as a package manager, it's faster and more efficient than npm or yarn with great capabilities concerning monorepo setup. On recent nodejs versions (v16.13+), you can install it easily with:
- [email protected] is out!
rfcs
-
Yarn 4.0
npm workspaces plus Wireit works far better than Lerna, in my experience.
https://github.com/google/wireit
Wireit's ability to specify actual script dependencies, do caching (and on Github actions), and it's long-running service script support make it much more useful and comprehensive than Lerna.
I agree that this should be built into npm. There's an RRFC for it here: https://github.com/npm/rfcs/issues/706
-
NPM vs Yarn?
It's coming https://github.com/npm/rfcs/blob/main/accepted/0042-isolated-mode.md
-
How do you know that the .exe or .apk file for an open source software on github is actually compiled from the viewable source code?
This just got accepted as a proposal in NPM: https://github.com/npm/rfcs/pull/626
-
Why aren't Node.js package managers interoperable?
npm also plans to support pnpm-style node_modules
-
Axios shipped a buggy version and it broke many productions apps. Let this be a lesson to pin your dependencies!
(I usually end up removing npm ci from CI/CD since I think it is way too slow and want to cache node_modules from previous builds; I'm waiting for https://github.com/npm/rfcs/issues/415 to land to make this fail-safe npm install --from-lockfile. Yarn does support this already)
- How to run multiple NPM commands simultaneously using concurrently
- [RRFC] Parallel script execution when value is set to an array of text. · Issue #610 · npm/rfcs
- Lerna has gone. Which Monorepo is right for a Node.js BACKEND now?
- NPM introduces a new Dependency Selector Syntax
-
How to respond to growing supply chain security risks?
I started following this problem from the discussion at npm about making install scripts opt-in. But install scripts are not the only threat, there are more ways for malicious actors:
What are some alternatives?
nx - Smart Monorepos · Fast CI
vm2 - Advanced vm/sandbox for Node.js
lerna - :dragon: Lerna is a fast, modern build system for managing and publishing multiple JavaScript/TypeScript packages from the same repository.
corepack - Zero-runtime-dependency package acting as bridge between Node projects and their package managers
berry - 📦🐈 Active development trunk for Yarn ⚒
Cargo - The Rust package manager
yarn - The 1.x line is frozen - features and bugfixes now happen on https://github.com/yarnpkg/berry
GHSA-g2q5-5433-rhrf
deno - A modern runtime for JavaScript and TypeScript.
feedback - Public feedback discussions for npm
npm
SES-shim - Endo is a distributed secure JavaScript sandbox, based on SES