The right to delete: how faker.js exposed the fragile nature of open source culture, again

This page summarizes the projects mentioned and recommended in the original post on /r/programming
Decompilation Npm Decompiler Package Management decompiler-engine

InfluxDB
Our great sponsors
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • WorkOS - The modern identity platform for B2B SaaS
  • SaaSHub - Software Alternatives and Reviews
Our great sponsors

  • mit-license

    Hosted MIT License with details controlled through this repo

  • faker.js

    What really happened with Aaron Swartz? (by martinkronstad)

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo

  • ILSpy

    .NET Decompiler with support for PDB generation, ReadyToRun, Metadata (&more) - cross-platform!

    • The Decompiler I'm thinking of is https://github.com/icsharpcode/ILSpy for C#

  • renovate

    Universal dependency automation tool.

    • I don't think so. Personally, I pin all of my dependencies. Then I use renovate to update my dependencies via Pull Request. My CI then performs a couple of security scans, e2e tests, unit tests. etc. With Renovate you also get a quick link to evaluate the diff and see the changelog. In case dependencies of the dependency have changed I frankly don't look into them, but I believe a combination of the checks I mentioned should be sufficient to trust a package update. If you still distrust a package at that point, you should improve your security checks & tests.

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts