Node.js packages don't deserve your trust

This page summarizes the projects mentioned and recommended in the original post on news.ycombinator.com
Tldr NodeJS HacktoberFest Shell Rust

SurveyJS
Our great sponsors
  • SurveyJS - Open-Source JSON Form Builder to Create Dynamic Forms Right in Your App
  • WorkOS - The modern identity platform for B2B SaaS
  • InfluxDB - Power Real-Time Data Analytics at Scale
Our great sponsors

  • LavaMoat

    tools for sandboxing your dependency graph

  • node-seccomp

    Discontinued Low level libseccomp bindings for Node.js

    • I was exploring the actual implementation[0] of a capabilities feature in Nodejs and was utilising seccomp (via libseccomp) on Linux at least to achieve a greater degree of security than might otherwise be possible by remaining in userland code. The idea is that you'd write your code, import whatever you like and define your capabilities upfront at initialisation. The problem is there's quite a big disconnect between what you are doing in JavaScript and what's happening with system calls in v8, libuv and the other native parts that it's difficult to predict what you need to block and what's actually going to happen. So I don't think my approach is really viable in a general sense, although capabilities in general I think would improve the situation if the wider community were to adopt the approach.

    [0]. https://github.com/roryrjb/node-seccomp

  • SurveyJS

    Open-Source JSON Form Builder to Create Dynamic Forms Right in Your App. With SurveyJS form UI libraries, you can build and style forms in a fully-integrated drag & drop form builder, render them in your JS app, and store form submission data in any backend, inc. PHP, ASP.NET Core, and Node.js.

    SurveyJS logo

  • toolbox

    Tool for interactive command line environments on Linux (by containers)

    • And an even more convenient and more safe option is to use rootless containers via podman or [toolbx](https://containertoolbx.org/)

  • regex

    An implementation of regular expressions for Rust. This implementation uses finite automata and guarantees linear time matching on all inputs.

  • ansi-black

    The color black, in ansi.

    • This is absolutely not true, and I'm tired of seeing this.

    is-odd, alongside a bunch of other microdependencies are almost all the work of one person, who made as many micropackages as possible and then PRd them into other more popular libraries. There are not 6 million people directly downloading `is-odd` a day. At all.

    When this person could make one library to do something (like an ANSI-Colouring package), they would fractalise it into as many dependencies as possible, because that boosts their download count on NPM. I should note that this is just one person who has managed to nestle their way into some larger projects. I apologise for the spam, but this point really needs hammering home:

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-reset

    https://github.com/jonschlinkert/ansi-bold

    https://github.com/jonschlinkert/ansi-dim

    https://github.com/jonschlinkert/ansi-italic

    https://github.com/jonschlinkert/ansi-underline

    https://github.com/jonschlinkert/ansi-inverse

    https://github.com/jonschlinkert/ansi-hidden

    https://github.com/jonschlinkert/ansi-strikethrough

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-red

    https://github.com/jonschlinkert/ansi-green

    https://github.com/jonschlinkert/ansi-yellow

    https://github.com/jonschlinkert/ansi-blue

    https://github.com/jonschlinkert/ansi-magenta

    https://github.com/jonschlinkert/ansi-cyan

    https://github.com/jonschlinkert/ansi-white

    https://github.com/jonschlinkert/ansi-gray

    https://github.com/jonschlinkert/ansi-grey

    https://github.com/jonschlinkert/ansi-bgblack

    https://github.com/jonschlinkert/ansi-bgred

    https://github.com/jonschlinkert/ansi-bggreen

    https://github.com/jonschlinkert/ansi-bgyellow

    https://github.com/jonschlinkert/ansi-bgblue

    https://github.com/jonschlinkert/ansi-bgmagenta

    https://github.com/jonschlinkert/ansi-bgcyan

    https://github.com/jonschlinkert/ansi-bgwhite

  • ansi-bold

    The color bold, in ansi.

    • This is absolutely not true, and I'm tired of seeing this.

    is-odd, alongside a bunch of other microdependencies are almost all the work of one person, who made as many micropackages as possible and then PRd them into other more popular libraries. There are not 6 million people directly downloading `is-odd` a day. At all.

    When this person could make one library to do something (like an ANSI-Colouring package), they would fractalise it into as many dependencies as possible, because that boosts their download count on NPM. I should note that this is just one person who has managed to nestle their way into some larger projects. I apologise for the spam, but this point really needs hammering home:

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-reset

    https://github.com/jonschlinkert/ansi-bold

    https://github.com/jonschlinkert/ansi-dim

    https://github.com/jonschlinkert/ansi-italic

    https://github.com/jonschlinkert/ansi-underline

    https://github.com/jonschlinkert/ansi-inverse

    https://github.com/jonschlinkert/ansi-hidden

    https://github.com/jonschlinkert/ansi-strikethrough

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-red

    https://github.com/jonschlinkert/ansi-green

    https://github.com/jonschlinkert/ansi-yellow

    https://github.com/jonschlinkert/ansi-blue

    https://github.com/jonschlinkert/ansi-magenta

    https://github.com/jonschlinkert/ansi-cyan

    https://github.com/jonschlinkert/ansi-white

    https://github.com/jonschlinkert/ansi-gray

    https://github.com/jonschlinkert/ansi-grey

    https://github.com/jonschlinkert/ansi-bgblack

    https://github.com/jonschlinkert/ansi-bgred

    https://github.com/jonschlinkert/ansi-bggreen

    https://github.com/jonschlinkert/ansi-bgyellow

    https://github.com/jonschlinkert/ansi-bgblue

    https://github.com/jonschlinkert/ansi-bgmagenta

    https://github.com/jonschlinkert/ansi-bgcyan

    https://github.com/jonschlinkert/ansi-bgwhite

  • ansi-dim

    The color dim, in ansi.

    • This is absolutely not true, and I'm tired of seeing this.

    is-odd, alongside a bunch of other microdependencies are almost all the work of one person, who made as many micropackages as possible and then PRd them into other more popular libraries. There are not 6 million people directly downloading `is-odd` a day. At all.

    When this person could make one library to do something (like an ANSI-Colouring package), they would fractalise it into as many dependencies as possible, because that boosts their download count on NPM. I should note that this is just one person who has managed to nestle their way into some larger projects. I apologise for the spam, but this point really needs hammering home:

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-reset

    https://github.com/jonschlinkert/ansi-bold

    https://github.com/jonschlinkert/ansi-dim

    https://github.com/jonschlinkert/ansi-italic

    https://github.com/jonschlinkert/ansi-underline

    https://github.com/jonschlinkert/ansi-inverse

    https://github.com/jonschlinkert/ansi-hidden

    https://github.com/jonschlinkert/ansi-strikethrough

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-red

    https://github.com/jonschlinkert/ansi-green

    https://github.com/jonschlinkert/ansi-yellow

    https://github.com/jonschlinkert/ansi-blue

    https://github.com/jonschlinkert/ansi-magenta

    https://github.com/jonschlinkert/ansi-cyan

    https://github.com/jonschlinkert/ansi-white

    https://github.com/jonschlinkert/ansi-gray

    https://github.com/jonschlinkert/ansi-grey

    https://github.com/jonschlinkert/ansi-bgblack

    https://github.com/jonschlinkert/ansi-bgred

    https://github.com/jonschlinkert/ansi-bggreen

    https://github.com/jonschlinkert/ansi-bgyellow

    https://github.com/jonschlinkert/ansi-bgblue

    https://github.com/jonschlinkert/ansi-bgmagenta

    https://github.com/jonschlinkert/ansi-bgcyan

    https://github.com/jonschlinkert/ansi-bgwhite

  • WorkOS

    The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

    WorkOS logo

  • ansi-italic

    The color italic, in ansi.

    • This is absolutely not true, and I'm tired of seeing this.

    is-odd, alongside a bunch of other microdependencies are almost all the work of one person, who made as many micropackages as possible and then PRd them into other more popular libraries. There are not 6 million people directly downloading `is-odd` a day. At all.

    When this person could make one library to do something (like an ANSI-Colouring package), they would fractalise it into as many dependencies as possible, because that boosts their download count on NPM. I should note that this is just one person who has managed to nestle their way into some larger projects. I apologise for the spam, but this point really needs hammering home:

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-reset

    https://github.com/jonschlinkert/ansi-bold

    https://github.com/jonschlinkert/ansi-dim

    https://github.com/jonschlinkert/ansi-italic

    https://github.com/jonschlinkert/ansi-underline

    https://github.com/jonschlinkert/ansi-inverse

    https://github.com/jonschlinkert/ansi-hidden

    https://github.com/jonschlinkert/ansi-strikethrough

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-red

    https://github.com/jonschlinkert/ansi-green

    https://github.com/jonschlinkert/ansi-yellow

    https://github.com/jonschlinkert/ansi-blue

    https://github.com/jonschlinkert/ansi-magenta

    https://github.com/jonschlinkert/ansi-cyan

    https://github.com/jonschlinkert/ansi-white

    https://github.com/jonschlinkert/ansi-gray

    https://github.com/jonschlinkert/ansi-grey

    https://github.com/jonschlinkert/ansi-bgblack

    https://github.com/jonschlinkert/ansi-bgred

    https://github.com/jonschlinkert/ansi-bggreen

    https://github.com/jonschlinkert/ansi-bgyellow

    https://github.com/jonschlinkert/ansi-bgblue

    https://github.com/jonschlinkert/ansi-bgmagenta

    https://github.com/jonschlinkert/ansi-bgcyan

    https://github.com/jonschlinkert/ansi-bgwhite

  • ansi-underline

    The color underline, in ansi.

    • This is absolutely not true, and I'm tired of seeing this.

    is-odd, alongside a bunch of other microdependencies are almost all the work of one person, who made as many micropackages as possible and then PRd them into other more popular libraries. There are not 6 million people directly downloading `is-odd` a day. At all.

    When this person could make one library to do something (like an ANSI-Colouring package), they would fractalise it into as many dependencies as possible, because that boosts their download count on NPM. I should note that this is just one person who has managed to nestle their way into some larger projects. I apologise for the spam, but this point really needs hammering home:

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-reset

    https://github.com/jonschlinkert/ansi-bold

    https://github.com/jonschlinkert/ansi-dim

    https://github.com/jonschlinkert/ansi-italic

    https://github.com/jonschlinkert/ansi-underline

    https://github.com/jonschlinkert/ansi-inverse

    https://github.com/jonschlinkert/ansi-hidden

    https://github.com/jonschlinkert/ansi-strikethrough

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-red

    https://github.com/jonschlinkert/ansi-green

    https://github.com/jonschlinkert/ansi-yellow

    https://github.com/jonschlinkert/ansi-blue

    https://github.com/jonschlinkert/ansi-magenta

    https://github.com/jonschlinkert/ansi-cyan

    https://github.com/jonschlinkert/ansi-white

    https://github.com/jonschlinkert/ansi-gray

    https://github.com/jonschlinkert/ansi-grey

    https://github.com/jonschlinkert/ansi-bgblack

    https://github.com/jonschlinkert/ansi-bgred

    https://github.com/jonschlinkert/ansi-bggreen

    https://github.com/jonschlinkert/ansi-bgyellow

    https://github.com/jonschlinkert/ansi-bgblue

    https://github.com/jonschlinkert/ansi-bgmagenta

    https://github.com/jonschlinkert/ansi-bgcyan

    https://github.com/jonschlinkert/ansi-bgwhite

  • ansi-inverse

    The color inverse, in ansi.

    • This is absolutely not true, and I'm tired of seeing this.

    is-odd, alongside a bunch of other microdependencies are almost all the work of one person, who made as many micropackages as possible and then PRd them into other more popular libraries. There are not 6 million people directly downloading `is-odd` a day. At all.

    When this person could make one library to do something (like an ANSI-Colouring package), they would fractalise it into as many dependencies as possible, because that boosts their download count on NPM. I should note that this is just one person who has managed to nestle their way into some larger projects. I apologise for the spam, but this point really needs hammering home:

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-reset

    https://github.com/jonschlinkert/ansi-bold

    https://github.com/jonschlinkert/ansi-dim

    https://github.com/jonschlinkert/ansi-italic

    https://github.com/jonschlinkert/ansi-underline

    https://github.com/jonschlinkert/ansi-inverse

    https://github.com/jonschlinkert/ansi-hidden

    https://github.com/jonschlinkert/ansi-strikethrough

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-red

    https://github.com/jonschlinkert/ansi-green

    https://github.com/jonschlinkert/ansi-yellow

    https://github.com/jonschlinkert/ansi-blue

    https://github.com/jonschlinkert/ansi-magenta

    https://github.com/jonschlinkert/ansi-cyan

    https://github.com/jonschlinkert/ansi-white

    https://github.com/jonschlinkert/ansi-gray

    https://github.com/jonschlinkert/ansi-grey

    https://github.com/jonschlinkert/ansi-bgblack

    https://github.com/jonschlinkert/ansi-bgred

    https://github.com/jonschlinkert/ansi-bggreen

    https://github.com/jonschlinkert/ansi-bgyellow

    https://github.com/jonschlinkert/ansi-bgblue

    https://github.com/jonschlinkert/ansi-bgmagenta

    https://github.com/jonschlinkert/ansi-bgcyan

    https://github.com/jonschlinkert/ansi-bgwhite

  • ansi-hidden

    The color hidden, in ansi.

    • This is absolutely not true, and I'm tired of seeing this.

    is-odd, alongside a bunch of other microdependencies are almost all the work of one person, who made as many micropackages as possible and then PRd them into other more popular libraries. There are not 6 million people directly downloading `is-odd` a day. At all.

    When this person could make one library to do something (like an ANSI-Colouring package), they would fractalise it into as many dependencies as possible, because that boosts their download count on NPM. I should note that this is just one person who has managed to nestle their way into some larger projects. I apologise for the spam, but this point really needs hammering home:

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-reset

    https://github.com/jonschlinkert/ansi-bold

    https://github.com/jonschlinkert/ansi-dim

    https://github.com/jonschlinkert/ansi-italic

    https://github.com/jonschlinkert/ansi-underline

    https://github.com/jonschlinkert/ansi-inverse

    https://github.com/jonschlinkert/ansi-hidden

    https://github.com/jonschlinkert/ansi-strikethrough

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-red

    https://github.com/jonschlinkert/ansi-green

    https://github.com/jonschlinkert/ansi-yellow

    https://github.com/jonschlinkert/ansi-blue

    https://github.com/jonschlinkert/ansi-magenta

    https://github.com/jonschlinkert/ansi-cyan

    https://github.com/jonschlinkert/ansi-white

    https://github.com/jonschlinkert/ansi-gray

    https://github.com/jonschlinkert/ansi-grey

    https://github.com/jonschlinkert/ansi-bgblack

    https://github.com/jonschlinkert/ansi-bgred

    https://github.com/jonschlinkert/ansi-bggreen

    https://github.com/jonschlinkert/ansi-bgyellow

    https://github.com/jonschlinkert/ansi-bgblue

    https://github.com/jonschlinkert/ansi-bgmagenta

    https://github.com/jonschlinkert/ansi-bgcyan

    https://github.com/jonschlinkert/ansi-bgwhite

  • ansi-strikethrough

    The color strikethrough, in ansi.

    • This is absolutely not true, and I'm tired of seeing this.

    is-odd, alongside a bunch of other microdependencies are almost all the work of one person, who made as many micropackages as possible and then PRd them into other more popular libraries. There are not 6 million people directly downloading `is-odd` a day. At all.

    When this person could make one library to do something (like an ANSI-Colouring package), they would fractalise it into as many dependencies as possible, because that boosts their download count on NPM. I should note that this is just one person who has managed to nestle their way into some larger projects. I apologise for the spam, but this point really needs hammering home:

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-reset

    https://github.com/jonschlinkert/ansi-bold

    https://github.com/jonschlinkert/ansi-dim

    https://github.com/jonschlinkert/ansi-italic

    https://github.com/jonschlinkert/ansi-underline

    https://github.com/jonschlinkert/ansi-inverse

    https://github.com/jonschlinkert/ansi-hidden

    https://github.com/jonschlinkert/ansi-strikethrough

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-red

    https://github.com/jonschlinkert/ansi-green

    https://github.com/jonschlinkert/ansi-yellow

    https://github.com/jonschlinkert/ansi-blue

    https://github.com/jonschlinkert/ansi-magenta

    https://github.com/jonschlinkert/ansi-cyan

    https://github.com/jonschlinkert/ansi-white

    https://github.com/jonschlinkert/ansi-gray

    https://github.com/jonschlinkert/ansi-grey

    https://github.com/jonschlinkert/ansi-bgblack

    https://github.com/jonschlinkert/ansi-bgred

    https://github.com/jonschlinkert/ansi-bggreen

    https://github.com/jonschlinkert/ansi-bgyellow

    https://github.com/jonschlinkert/ansi-bgblue

    https://github.com/jonschlinkert/ansi-bgmagenta

    https://github.com/jonschlinkert/ansi-bgcyan

    https://github.com/jonschlinkert/ansi-bgwhite

  • ansi-red

    The color red, in ansi.

    • This is absolutely not true, and I'm tired of seeing this.

    is-odd, alongside a bunch of other microdependencies are almost all the work of one person, who made as many micropackages as possible and then PRd them into other more popular libraries. There are not 6 million people directly downloading `is-odd` a day. At all.

    When this person could make one library to do something (like an ANSI-Colouring package), they would fractalise it into as many dependencies as possible, because that boosts their download count on NPM. I should note that this is just one person who has managed to nestle their way into some larger projects. I apologise for the spam, but this point really needs hammering home:

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-reset

    https://github.com/jonschlinkert/ansi-bold

    https://github.com/jonschlinkert/ansi-dim

    https://github.com/jonschlinkert/ansi-italic

    https://github.com/jonschlinkert/ansi-underline

    https://github.com/jonschlinkert/ansi-inverse

    https://github.com/jonschlinkert/ansi-hidden

    https://github.com/jonschlinkert/ansi-strikethrough

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-red

    https://github.com/jonschlinkert/ansi-green

    https://github.com/jonschlinkert/ansi-yellow

    https://github.com/jonschlinkert/ansi-blue

    https://github.com/jonschlinkert/ansi-magenta

    https://github.com/jonschlinkert/ansi-cyan

    https://github.com/jonschlinkert/ansi-white

    https://github.com/jonschlinkert/ansi-gray

    https://github.com/jonschlinkert/ansi-grey

    https://github.com/jonschlinkert/ansi-bgblack

    https://github.com/jonschlinkert/ansi-bgred

    https://github.com/jonschlinkert/ansi-bggreen

    https://github.com/jonschlinkert/ansi-bgyellow

    https://github.com/jonschlinkert/ansi-bgblue

    https://github.com/jonschlinkert/ansi-bgmagenta

    https://github.com/jonschlinkert/ansi-bgcyan

    https://github.com/jonschlinkert/ansi-bgwhite

  • ansi-green

    The color green, in ansi.

    • This is absolutely not true, and I'm tired of seeing this.

    is-odd, alongside a bunch of other microdependencies are almost all the work of one person, who made as many micropackages as possible and then PRd them into other more popular libraries. There are not 6 million people directly downloading `is-odd` a day. At all.

    When this person could make one library to do something (like an ANSI-Colouring package), they would fractalise it into as many dependencies as possible, because that boosts their download count on NPM. I should note that this is just one person who has managed to nestle their way into some larger projects. I apologise for the spam, but this point really needs hammering home:

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-reset

    https://github.com/jonschlinkert/ansi-bold

    https://github.com/jonschlinkert/ansi-dim

    https://github.com/jonschlinkert/ansi-italic

    https://github.com/jonschlinkert/ansi-underline

    https://github.com/jonschlinkert/ansi-inverse

    https://github.com/jonschlinkert/ansi-hidden

    https://github.com/jonschlinkert/ansi-strikethrough

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-red

    https://github.com/jonschlinkert/ansi-green

    https://github.com/jonschlinkert/ansi-yellow

    https://github.com/jonschlinkert/ansi-blue

    https://github.com/jonschlinkert/ansi-magenta

    https://github.com/jonschlinkert/ansi-cyan

    https://github.com/jonschlinkert/ansi-white

    https://github.com/jonschlinkert/ansi-gray

    https://github.com/jonschlinkert/ansi-grey

    https://github.com/jonschlinkert/ansi-bgblack

    https://github.com/jonschlinkert/ansi-bgred

    https://github.com/jonschlinkert/ansi-bggreen

    https://github.com/jonschlinkert/ansi-bgyellow

    https://github.com/jonschlinkert/ansi-bgblue

    https://github.com/jonschlinkert/ansi-bgmagenta

    https://github.com/jonschlinkert/ansi-bgcyan

    https://github.com/jonschlinkert/ansi-bgwhite

  • ansi-yellow

    The color yellow, in ansi.

    • This is absolutely not true, and I'm tired of seeing this.

    is-odd, alongside a bunch of other microdependencies are almost all the work of one person, who made as many micropackages as possible and then PRd them into other more popular libraries. There are not 6 million people directly downloading `is-odd` a day. At all.

    When this person could make one library to do something (like an ANSI-Colouring package), they would fractalise it into as many dependencies as possible, because that boosts their download count on NPM. I should note that this is just one person who has managed to nestle their way into some larger projects. I apologise for the spam, but this point really needs hammering home:

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-reset

    https://github.com/jonschlinkert/ansi-bold

    https://github.com/jonschlinkert/ansi-dim

    https://github.com/jonschlinkert/ansi-italic

    https://github.com/jonschlinkert/ansi-underline

    https://github.com/jonschlinkert/ansi-inverse

    https://github.com/jonschlinkert/ansi-hidden

    https://github.com/jonschlinkert/ansi-strikethrough

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-red

    https://github.com/jonschlinkert/ansi-green

    https://github.com/jonschlinkert/ansi-yellow

    https://github.com/jonschlinkert/ansi-blue

    https://github.com/jonschlinkert/ansi-magenta

    https://github.com/jonschlinkert/ansi-cyan

    https://github.com/jonschlinkert/ansi-white

    https://github.com/jonschlinkert/ansi-gray

    https://github.com/jonschlinkert/ansi-grey

    https://github.com/jonschlinkert/ansi-bgblack

    https://github.com/jonschlinkert/ansi-bgred

    https://github.com/jonschlinkert/ansi-bggreen

    https://github.com/jonschlinkert/ansi-bgyellow

    https://github.com/jonschlinkert/ansi-bgblue

    https://github.com/jonschlinkert/ansi-bgmagenta

    https://github.com/jonschlinkert/ansi-bgcyan

    https://github.com/jonschlinkert/ansi-bgwhite

  • ansi-blue

    The color blue, in ansi.

    • This is absolutely not true, and I'm tired of seeing this.

    is-odd, alongside a bunch of other microdependencies are almost all the work of one person, who made as many micropackages as possible and then PRd them into other more popular libraries. There are not 6 million people directly downloading `is-odd` a day. At all.

    When this person could make one library to do something (like an ANSI-Colouring package), they would fractalise it into as many dependencies as possible, because that boosts their download count on NPM. I should note that this is just one person who has managed to nestle their way into some larger projects. I apologise for the spam, but this point really needs hammering home:

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-reset

    https://github.com/jonschlinkert/ansi-bold

    https://github.com/jonschlinkert/ansi-dim

    https://github.com/jonschlinkert/ansi-italic

    https://github.com/jonschlinkert/ansi-underline

    https://github.com/jonschlinkert/ansi-inverse

    https://github.com/jonschlinkert/ansi-hidden

    https://github.com/jonschlinkert/ansi-strikethrough

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-red

    https://github.com/jonschlinkert/ansi-green

    https://github.com/jonschlinkert/ansi-yellow

    https://github.com/jonschlinkert/ansi-blue

    https://github.com/jonschlinkert/ansi-magenta

    https://github.com/jonschlinkert/ansi-cyan

    https://github.com/jonschlinkert/ansi-white

    https://github.com/jonschlinkert/ansi-gray

    https://github.com/jonschlinkert/ansi-grey

    https://github.com/jonschlinkert/ansi-bgblack

    https://github.com/jonschlinkert/ansi-bgred

    https://github.com/jonschlinkert/ansi-bggreen

    https://github.com/jonschlinkert/ansi-bgyellow

    https://github.com/jonschlinkert/ansi-bgblue

    https://github.com/jonschlinkert/ansi-bgmagenta

    https://github.com/jonschlinkert/ansi-bgcyan

    https://github.com/jonschlinkert/ansi-bgwhite

  • ansi-magenta

    The color magenta, in ansi.

    • This is absolutely not true, and I'm tired of seeing this.

    is-odd, alongside a bunch of other microdependencies are almost all the work of one person, who made as many micropackages as possible and then PRd them into other more popular libraries. There are not 6 million people directly downloading `is-odd` a day. At all.

    When this person could make one library to do something (like an ANSI-Colouring package), they would fractalise it into as many dependencies as possible, because that boosts their download count on NPM. I should note that this is just one person who has managed to nestle their way into some larger projects. I apologise for the spam, but this point really needs hammering home:

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-reset

    https://github.com/jonschlinkert/ansi-bold

    https://github.com/jonschlinkert/ansi-dim

    https://github.com/jonschlinkert/ansi-italic

    https://github.com/jonschlinkert/ansi-underline

    https://github.com/jonschlinkert/ansi-inverse

    https://github.com/jonschlinkert/ansi-hidden

    https://github.com/jonschlinkert/ansi-strikethrough

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-red

    https://github.com/jonschlinkert/ansi-green

    https://github.com/jonschlinkert/ansi-yellow

    https://github.com/jonschlinkert/ansi-blue

    https://github.com/jonschlinkert/ansi-magenta

    https://github.com/jonschlinkert/ansi-cyan

    https://github.com/jonschlinkert/ansi-white

    https://github.com/jonschlinkert/ansi-gray

    https://github.com/jonschlinkert/ansi-grey

    https://github.com/jonschlinkert/ansi-bgblack

    https://github.com/jonschlinkert/ansi-bgred

    https://github.com/jonschlinkert/ansi-bggreen

    https://github.com/jonschlinkert/ansi-bgyellow

    https://github.com/jonschlinkert/ansi-bgblue

    https://github.com/jonschlinkert/ansi-bgmagenta

    https://github.com/jonschlinkert/ansi-bgcyan

    https://github.com/jonschlinkert/ansi-bgwhite

  • ansi-cyan

    The color cyan, in ansi.

    • This is absolutely not true, and I'm tired of seeing this.

    is-odd, alongside a bunch of other microdependencies are almost all the work of one person, who made as many micropackages as possible and then PRd them into other more popular libraries. There are not 6 million people directly downloading `is-odd` a day. At all.

    When this person could make one library to do something (like an ANSI-Colouring package), they would fractalise it into as many dependencies as possible, because that boosts their download count on NPM. I should note that this is just one person who has managed to nestle their way into some larger projects. I apologise for the spam, but this point really needs hammering home:

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-reset

    https://github.com/jonschlinkert/ansi-bold

    https://github.com/jonschlinkert/ansi-dim

    https://github.com/jonschlinkert/ansi-italic

    https://github.com/jonschlinkert/ansi-underline

    https://github.com/jonschlinkert/ansi-inverse

    https://github.com/jonschlinkert/ansi-hidden

    https://github.com/jonschlinkert/ansi-strikethrough

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-red

    https://github.com/jonschlinkert/ansi-green

    https://github.com/jonschlinkert/ansi-yellow

    https://github.com/jonschlinkert/ansi-blue

    https://github.com/jonschlinkert/ansi-magenta

    https://github.com/jonschlinkert/ansi-cyan

    https://github.com/jonschlinkert/ansi-white

    https://github.com/jonschlinkert/ansi-gray

    https://github.com/jonschlinkert/ansi-grey

    https://github.com/jonschlinkert/ansi-bgblack

    https://github.com/jonschlinkert/ansi-bgred

    https://github.com/jonschlinkert/ansi-bggreen

    https://github.com/jonschlinkert/ansi-bgyellow

    https://github.com/jonschlinkert/ansi-bgblue

    https://github.com/jonschlinkert/ansi-bgmagenta

    https://github.com/jonschlinkert/ansi-bgcyan

    https://github.com/jonschlinkert/ansi-bgwhite

  • ansi-white

    The color white, in ansi.

    • This is absolutely not true, and I'm tired of seeing this.

    is-odd, alongside a bunch of other microdependencies are almost all the work of one person, who made as many micropackages as possible and then PRd them into other more popular libraries. There are not 6 million people directly downloading `is-odd` a day. At all.

    When this person could make one library to do something (like an ANSI-Colouring package), they would fractalise it into as many dependencies as possible, because that boosts their download count on NPM. I should note that this is just one person who has managed to nestle their way into some larger projects. I apologise for the spam, but this point really needs hammering home:

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-reset

    https://github.com/jonschlinkert/ansi-bold

    https://github.com/jonschlinkert/ansi-dim

    https://github.com/jonschlinkert/ansi-italic

    https://github.com/jonschlinkert/ansi-underline

    https://github.com/jonschlinkert/ansi-inverse

    https://github.com/jonschlinkert/ansi-hidden

    https://github.com/jonschlinkert/ansi-strikethrough

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-red

    https://github.com/jonschlinkert/ansi-green

    https://github.com/jonschlinkert/ansi-yellow

    https://github.com/jonschlinkert/ansi-blue

    https://github.com/jonschlinkert/ansi-magenta

    https://github.com/jonschlinkert/ansi-cyan

    https://github.com/jonschlinkert/ansi-white

    https://github.com/jonschlinkert/ansi-gray

    https://github.com/jonschlinkert/ansi-grey

    https://github.com/jonschlinkert/ansi-bgblack

    https://github.com/jonschlinkert/ansi-bgred

    https://github.com/jonschlinkert/ansi-bggreen

    https://github.com/jonschlinkert/ansi-bgyellow

    https://github.com/jonschlinkert/ansi-bgblue

    https://github.com/jonschlinkert/ansi-bgmagenta

    https://github.com/jonschlinkert/ansi-bgcyan

    https://github.com/jonschlinkert/ansi-bgwhite

  • ansi-gray

    The color gray, in ansi.

    • This is absolutely not true, and I'm tired of seeing this.

    is-odd, alongside a bunch of other microdependencies are almost all the work of one person, who made as many micropackages as possible and then PRd them into other more popular libraries. There are not 6 million people directly downloading `is-odd` a day. At all.

    When this person could make one library to do something (like an ANSI-Colouring package), they would fractalise it into as many dependencies as possible, because that boosts their download count on NPM. I should note that this is just one person who has managed to nestle their way into some larger projects. I apologise for the spam, but this point really needs hammering home:

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-reset

    https://github.com/jonschlinkert/ansi-bold

    https://github.com/jonschlinkert/ansi-dim

    https://github.com/jonschlinkert/ansi-italic

    https://github.com/jonschlinkert/ansi-underline

    https://github.com/jonschlinkert/ansi-inverse

    https://github.com/jonschlinkert/ansi-hidden

    https://github.com/jonschlinkert/ansi-strikethrough

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-red

    https://github.com/jonschlinkert/ansi-green

    https://github.com/jonschlinkert/ansi-yellow

    https://github.com/jonschlinkert/ansi-blue

    https://github.com/jonschlinkert/ansi-magenta

    https://github.com/jonschlinkert/ansi-cyan

    https://github.com/jonschlinkert/ansi-white

    https://github.com/jonschlinkert/ansi-gray

    https://github.com/jonschlinkert/ansi-grey

    https://github.com/jonschlinkert/ansi-bgblack

    https://github.com/jonschlinkert/ansi-bgred

    https://github.com/jonschlinkert/ansi-bggreen

    https://github.com/jonschlinkert/ansi-bgyellow

    https://github.com/jonschlinkert/ansi-bgblue

    https://github.com/jonschlinkert/ansi-bgmagenta

    https://github.com/jonschlinkert/ansi-bgcyan

    https://github.com/jonschlinkert/ansi-bgwhite

  • ansi-grey

    The color grey, in ansi.

    • This is absolutely not true, and I'm tired of seeing this.

    is-odd, alongside a bunch of other microdependencies are almost all the work of one person, who made as many micropackages as possible and then PRd them into other more popular libraries. There are not 6 million people directly downloading `is-odd` a day. At all.

    When this person could make one library to do something (like an ANSI-Colouring package), they would fractalise it into as many dependencies as possible, because that boosts their download count on NPM. I should note that this is just one person who has managed to nestle their way into some larger projects. I apologise for the spam, but this point really needs hammering home:

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-reset

    https://github.com/jonschlinkert/ansi-bold

    https://github.com/jonschlinkert/ansi-dim

    https://github.com/jonschlinkert/ansi-italic

    https://github.com/jonschlinkert/ansi-underline

    https://github.com/jonschlinkert/ansi-inverse

    https://github.com/jonschlinkert/ansi-hidden

    https://github.com/jonschlinkert/ansi-strikethrough

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-red

    https://github.com/jonschlinkert/ansi-green

    https://github.com/jonschlinkert/ansi-yellow

    https://github.com/jonschlinkert/ansi-blue

    https://github.com/jonschlinkert/ansi-magenta

    https://github.com/jonschlinkert/ansi-cyan

    https://github.com/jonschlinkert/ansi-white

    https://github.com/jonschlinkert/ansi-gray

    https://github.com/jonschlinkert/ansi-grey

    https://github.com/jonschlinkert/ansi-bgblack

    https://github.com/jonschlinkert/ansi-bgred

    https://github.com/jonschlinkert/ansi-bggreen

    https://github.com/jonschlinkert/ansi-bgyellow

    https://github.com/jonschlinkert/ansi-bgblue

    https://github.com/jonschlinkert/ansi-bgmagenta

    https://github.com/jonschlinkert/ansi-bgcyan

    https://github.com/jonschlinkert/ansi-bgwhite

  • ansi-bgblack

    The color bgblack, in ansi.

    • This is absolutely not true, and I'm tired of seeing this.

    is-odd, alongside a bunch of other microdependencies are almost all the work of one person, who made as many micropackages as possible and then PRd them into other more popular libraries. There are not 6 million people directly downloading `is-odd` a day. At all.

    When this person could make one library to do something (like an ANSI-Colouring package), they would fractalise it into as many dependencies as possible, because that boosts their download count on NPM. I should note that this is just one person who has managed to nestle their way into some larger projects. I apologise for the spam, but this point really needs hammering home:

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-reset

    https://github.com/jonschlinkert/ansi-bold

    https://github.com/jonschlinkert/ansi-dim

    https://github.com/jonschlinkert/ansi-italic

    https://github.com/jonschlinkert/ansi-underline

    https://github.com/jonschlinkert/ansi-inverse

    https://github.com/jonschlinkert/ansi-hidden

    https://github.com/jonschlinkert/ansi-strikethrough

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-red

    https://github.com/jonschlinkert/ansi-green

    https://github.com/jonschlinkert/ansi-yellow

    https://github.com/jonschlinkert/ansi-blue

    https://github.com/jonschlinkert/ansi-magenta

    https://github.com/jonschlinkert/ansi-cyan

    https://github.com/jonschlinkert/ansi-white

    https://github.com/jonschlinkert/ansi-gray

    https://github.com/jonschlinkert/ansi-grey

    https://github.com/jonschlinkert/ansi-bgblack

    https://github.com/jonschlinkert/ansi-bgred

    https://github.com/jonschlinkert/ansi-bggreen

    https://github.com/jonschlinkert/ansi-bgyellow

    https://github.com/jonschlinkert/ansi-bgblue

    https://github.com/jonschlinkert/ansi-bgmagenta

    https://github.com/jonschlinkert/ansi-bgcyan

    https://github.com/jonschlinkert/ansi-bgwhite

  • ansi-bgred

    The color bgred, in ansi.

    • This is absolutely not true, and I'm tired of seeing this.

    is-odd, alongside a bunch of other microdependencies are almost all the work of one person, who made as many micropackages as possible and then PRd them into other more popular libraries. There are not 6 million people directly downloading `is-odd` a day. At all.

    When this person could make one library to do something (like an ANSI-Colouring package), they would fractalise it into as many dependencies as possible, because that boosts their download count on NPM. I should note that this is just one person who has managed to nestle their way into some larger projects. I apologise for the spam, but this point really needs hammering home:

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-reset

    https://github.com/jonschlinkert/ansi-bold

    https://github.com/jonschlinkert/ansi-dim

    https://github.com/jonschlinkert/ansi-italic

    https://github.com/jonschlinkert/ansi-underline

    https://github.com/jonschlinkert/ansi-inverse

    https://github.com/jonschlinkert/ansi-hidden

    https://github.com/jonschlinkert/ansi-strikethrough

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-red

    https://github.com/jonschlinkert/ansi-green

    https://github.com/jonschlinkert/ansi-yellow

    https://github.com/jonschlinkert/ansi-blue

    https://github.com/jonschlinkert/ansi-magenta

    https://github.com/jonschlinkert/ansi-cyan

    https://github.com/jonschlinkert/ansi-white

    https://github.com/jonschlinkert/ansi-gray

    https://github.com/jonschlinkert/ansi-grey

    https://github.com/jonschlinkert/ansi-bgblack

    https://github.com/jonschlinkert/ansi-bgred

    https://github.com/jonschlinkert/ansi-bggreen

    https://github.com/jonschlinkert/ansi-bgyellow

    https://github.com/jonschlinkert/ansi-bgblue

    https://github.com/jonschlinkert/ansi-bgmagenta

    https://github.com/jonschlinkert/ansi-bgcyan

    https://github.com/jonschlinkert/ansi-bgwhite

  • ansi-bggreen

    The color bggreen, in ansi.

    • This is absolutely not true, and I'm tired of seeing this.

    is-odd, alongside a bunch of other microdependencies are almost all the work of one person, who made as many micropackages as possible and then PRd them into other more popular libraries. There are not 6 million people directly downloading `is-odd` a day. At all.

    When this person could make one library to do something (like an ANSI-Colouring package), they would fractalise it into as many dependencies as possible, because that boosts their download count on NPM. I should note that this is just one person who has managed to nestle their way into some larger projects. I apologise for the spam, but this point really needs hammering home:

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-reset

    https://github.com/jonschlinkert/ansi-bold

    https://github.com/jonschlinkert/ansi-dim

    https://github.com/jonschlinkert/ansi-italic

    https://github.com/jonschlinkert/ansi-underline

    https://github.com/jonschlinkert/ansi-inverse

    https://github.com/jonschlinkert/ansi-hidden

    https://github.com/jonschlinkert/ansi-strikethrough

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-red

    https://github.com/jonschlinkert/ansi-green

    https://github.com/jonschlinkert/ansi-yellow

    https://github.com/jonschlinkert/ansi-blue

    https://github.com/jonschlinkert/ansi-magenta

    https://github.com/jonschlinkert/ansi-cyan

    https://github.com/jonschlinkert/ansi-white

    https://github.com/jonschlinkert/ansi-gray

    https://github.com/jonschlinkert/ansi-grey

    https://github.com/jonschlinkert/ansi-bgblack

    https://github.com/jonschlinkert/ansi-bgred

    https://github.com/jonschlinkert/ansi-bggreen

    https://github.com/jonschlinkert/ansi-bgyellow

    https://github.com/jonschlinkert/ansi-bgblue

    https://github.com/jonschlinkert/ansi-bgmagenta

    https://github.com/jonschlinkert/ansi-bgcyan

    https://github.com/jonschlinkert/ansi-bgwhite

  • ansi-bgyellow

    The color bgyellow, in ansi.

    • This is absolutely not true, and I'm tired of seeing this.

    is-odd, alongside a bunch of other microdependencies are almost all the work of one person, who made as many micropackages as possible and then PRd them into other more popular libraries. There are not 6 million people directly downloading `is-odd` a day. At all.

    When this person could make one library to do something (like an ANSI-Colouring package), they would fractalise it into as many dependencies as possible, because that boosts their download count on NPM. I should note that this is just one person who has managed to nestle their way into some larger projects. I apologise for the spam, but this point really needs hammering home:

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-reset

    https://github.com/jonschlinkert/ansi-bold

    https://github.com/jonschlinkert/ansi-dim

    https://github.com/jonschlinkert/ansi-italic

    https://github.com/jonschlinkert/ansi-underline

    https://github.com/jonschlinkert/ansi-inverse

    https://github.com/jonschlinkert/ansi-hidden

    https://github.com/jonschlinkert/ansi-strikethrough

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-red

    https://github.com/jonschlinkert/ansi-green

    https://github.com/jonschlinkert/ansi-yellow

    https://github.com/jonschlinkert/ansi-blue

    https://github.com/jonschlinkert/ansi-magenta

    https://github.com/jonschlinkert/ansi-cyan

    https://github.com/jonschlinkert/ansi-white

    https://github.com/jonschlinkert/ansi-gray

    https://github.com/jonschlinkert/ansi-grey

    https://github.com/jonschlinkert/ansi-bgblack

    https://github.com/jonschlinkert/ansi-bgred

    https://github.com/jonschlinkert/ansi-bggreen

    https://github.com/jonschlinkert/ansi-bgyellow

    https://github.com/jonschlinkert/ansi-bgblue

    https://github.com/jonschlinkert/ansi-bgmagenta

    https://github.com/jonschlinkert/ansi-bgcyan

    https://github.com/jonschlinkert/ansi-bgwhite

  • ansi-bgblue

    The color bgblue, in ansi.

    • This is absolutely not true, and I'm tired of seeing this.

    is-odd, alongside a bunch of other microdependencies are almost all the work of one person, who made as many micropackages as possible and then PRd them into other more popular libraries. There are not 6 million people directly downloading `is-odd` a day. At all.

    When this person could make one library to do something (like an ANSI-Colouring package), they would fractalise it into as many dependencies as possible, because that boosts their download count on NPM. I should note that this is just one person who has managed to nestle their way into some larger projects. I apologise for the spam, but this point really needs hammering home:

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-reset

    https://github.com/jonschlinkert/ansi-bold

    https://github.com/jonschlinkert/ansi-dim

    https://github.com/jonschlinkert/ansi-italic

    https://github.com/jonschlinkert/ansi-underline

    https://github.com/jonschlinkert/ansi-inverse

    https://github.com/jonschlinkert/ansi-hidden

    https://github.com/jonschlinkert/ansi-strikethrough

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-red

    https://github.com/jonschlinkert/ansi-green

    https://github.com/jonschlinkert/ansi-yellow

    https://github.com/jonschlinkert/ansi-blue

    https://github.com/jonschlinkert/ansi-magenta

    https://github.com/jonschlinkert/ansi-cyan

    https://github.com/jonschlinkert/ansi-white

    https://github.com/jonschlinkert/ansi-gray

    https://github.com/jonschlinkert/ansi-grey

    https://github.com/jonschlinkert/ansi-bgblack

    https://github.com/jonschlinkert/ansi-bgred

    https://github.com/jonschlinkert/ansi-bggreen

    https://github.com/jonschlinkert/ansi-bgyellow

    https://github.com/jonschlinkert/ansi-bgblue

    https://github.com/jonschlinkert/ansi-bgmagenta

    https://github.com/jonschlinkert/ansi-bgcyan

    https://github.com/jonschlinkert/ansi-bgwhite

  • ansi-bgmagenta

    The color bgmagenta, in ansi.

    • This is absolutely not true, and I'm tired of seeing this.

    is-odd, alongside a bunch of other microdependencies are almost all the work of one person, who made as many micropackages as possible and then PRd them into other more popular libraries. There are not 6 million people directly downloading `is-odd` a day. At all.

    When this person could make one library to do something (like an ANSI-Colouring package), they would fractalise it into as many dependencies as possible, because that boosts their download count on NPM. I should note that this is just one person who has managed to nestle their way into some larger projects. I apologise for the spam, but this point really needs hammering home:

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-reset

    https://github.com/jonschlinkert/ansi-bold

    https://github.com/jonschlinkert/ansi-dim

    https://github.com/jonschlinkert/ansi-italic

    https://github.com/jonschlinkert/ansi-underline

    https://github.com/jonschlinkert/ansi-inverse

    https://github.com/jonschlinkert/ansi-hidden

    https://github.com/jonschlinkert/ansi-strikethrough

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-red

    https://github.com/jonschlinkert/ansi-green

    https://github.com/jonschlinkert/ansi-yellow

    https://github.com/jonschlinkert/ansi-blue

    https://github.com/jonschlinkert/ansi-magenta

    https://github.com/jonschlinkert/ansi-cyan

    https://github.com/jonschlinkert/ansi-white

    https://github.com/jonschlinkert/ansi-gray

    https://github.com/jonschlinkert/ansi-grey

    https://github.com/jonschlinkert/ansi-bgblack

    https://github.com/jonschlinkert/ansi-bgred

    https://github.com/jonschlinkert/ansi-bggreen

    https://github.com/jonschlinkert/ansi-bgyellow

    https://github.com/jonschlinkert/ansi-bgblue

    https://github.com/jonschlinkert/ansi-bgmagenta

    https://github.com/jonschlinkert/ansi-bgcyan

    https://github.com/jonschlinkert/ansi-bgwhite

  • ansi-bgcyan

    The color bgcyan, in ansi.

    • This is absolutely not true, and I'm tired of seeing this.

    is-odd, alongside a bunch of other microdependencies are almost all the work of one person, who made as many micropackages as possible and then PRd them into other more popular libraries. There are not 6 million people directly downloading `is-odd` a day. At all.

    When this person could make one library to do something (like an ANSI-Colouring package), they would fractalise it into as many dependencies as possible, because that boosts their download count on NPM. I should note that this is just one person who has managed to nestle their way into some larger projects. I apologise for the spam, but this point really needs hammering home:

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-reset

    https://github.com/jonschlinkert/ansi-bold

    https://github.com/jonschlinkert/ansi-dim

    https://github.com/jonschlinkert/ansi-italic

    https://github.com/jonschlinkert/ansi-underline

    https://github.com/jonschlinkert/ansi-inverse

    https://github.com/jonschlinkert/ansi-hidden

    https://github.com/jonschlinkert/ansi-strikethrough

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-red

    https://github.com/jonschlinkert/ansi-green

    https://github.com/jonschlinkert/ansi-yellow

    https://github.com/jonschlinkert/ansi-blue

    https://github.com/jonschlinkert/ansi-magenta

    https://github.com/jonschlinkert/ansi-cyan

    https://github.com/jonschlinkert/ansi-white

    https://github.com/jonschlinkert/ansi-gray

    https://github.com/jonschlinkert/ansi-grey

    https://github.com/jonschlinkert/ansi-bgblack

    https://github.com/jonschlinkert/ansi-bgred

    https://github.com/jonschlinkert/ansi-bggreen

    https://github.com/jonschlinkert/ansi-bgyellow

    https://github.com/jonschlinkert/ansi-bgblue

    https://github.com/jonschlinkert/ansi-bgmagenta

    https://github.com/jonschlinkert/ansi-bgcyan

    https://github.com/jonschlinkert/ansi-bgwhite

  • ansi-bgwhite

    The color bgwhite, in ansi.

    • This is absolutely not true, and I'm tired of seeing this.

    is-odd, alongside a bunch of other microdependencies are almost all the work of one person, who made as many micropackages as possible and then PRd them into other more popular libraries. There are not 6 million people directly downloading `is-odd` a day. At all.

    When this person could make one library to do something (like an ANSI-Colouring package), they would fractalise it into as many dependencies as possible, because that boosts their download count on NPM. I should note that this is just one person who has managed to nestle their way into some larger projects. I apologise for the spam, but this point really needs hammering home:

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-reset

    https://github.com/jonschlinkert/ansi-bold

    https://github.com/jonschlinkert/ansi-dim

    https://github.com/jonschlinkert/ansi-italic

    https://github.com/jonschlinkert/ansi-underline

    https://github.com/jonschlinkert/ansi-inverse

    https://github.com/jonschlinkert/ansi-hidden

    https://github.com/jonschlinkert/ansi-strikethrough

    https://github.com/jonschlinkert/ansi-black

    https://github.com/jonschlinkert/ansi-red

    https://github.com/jonschlinkert/ansi-green

    https://github.com/jonschlinkert/ansi-yellow

    https://github.com/jonschlinkert/ansi-blue

    https://github.com/jonschlinkert/ansi-magenta

    https://github.com/jonschlinkert/ansi-cyan

    https://github.com/jonschlinkert/ansi-white

    https://github.com/jonschlinkert/ansi-gray

    https://github.com/jonschlinkert/ansi-grey

    https://github.com/jonschlinkert/ansi-bgblack

    https://github.com/jonschlinkert/ansi-bgred

    https://github.com/jonschlinkert/ansi-bggreen

    https://github.com/jonschlinkert/ansi-bgyellow

    https://github.com/jonschlinkert/ansi-bgblue

    https://github.com/jonschlinkert/ansi-bgmagenta

    https://github.com/jonschlinkert/ansi-bgcyan

    https://github.com/jonschlinkert/ansi-bgwhite

  • EventSource

    a polyfill for http://www.w3.org/TR/eventsource/

    • It makes me deeply sad to see these sort of interactions in open source [1].

    > Hmm, I think it's a worthwhile fix. Where did you see malware here?

    > I think the author of this repo is free to decide what code he publishes. Say thanks to that it's for free

    An incredible amount of people have dedicated sweat and tears and foreheads (from banging against the desk in frustration) to open source across the entire stack, from the contributers to OSs such as Linux to those working their arses off to create better frameworks, languages and runtimes, that we can all benefit from and use with a reasonable expectation of security, respect and privacy.

    As a university student, I feel privileged to have been able to grow up in a world where so much work and knowledge is provided for free with no strings attached, regardless of demographic/location, I would not be where I am without it. A century ago this would not have been possible. To all of you who have tirelessly and selflessly worked on OSS for others, without expecting anything in return or imposing politics, ideologies, infringing on privacy, causing damage, collecting vast quantities of marketable personal information or monopolisation, I give you my heartfelt thanks for your efforts, you know who you are. You have created something that will have forever helped to improve our soceity and empower those that want to learn and create their own designs.

    From my own personal experience, I want to give a shout-out to the smaller projects of Rust, Svelte and Elixir. I think it's incredible that the work and ideas of (often) a single person (Rich Harris, José Valim) can grow into larger extremely welcoming and helpful communities with many more motivated contributors that are proud of being parts of those projets and put in an extrodinary effort to try and do things _better_ than before. I'm sure there are plently of other worthy names I'm too young/ignorant to know.

    Love it or hate it, Node.js has been very empowering for a large number of people to learn and publish their own full-stack applications, the JavaScript ecosystem has improved enormously since its beginnings, but has a tendancy to change slowly due to its size, unless a disruptive technology comes along such as TypeScript. Websites are a great way to introduce people to the joy of programming with its visual feedback, you can make a small penguin move across the screen, then move on to play tic tac toe. Even as a younger developer, I admit that the days of FTP, no-build-step pages with a sprinkle of JQuery were easier to understand and actually _safer_ for newcomers than introducing someone to a SPA stack (which can easily have thousands of transient dependencies) nowadays.

    [1]: https://github.com/Yaffle/EventSource/issues/202

  • proposal-ses

    Draft proposal for SES (Secure EcmaScript)

  • npmrank

    npm dependencies graph metrics

    • This is not the exact thing you're looking for but it's a place to start:

    https://gist.github.com/anvaka/8e8fa57c7ee1350e3491

    That code in that gist is generated by this: https://github.com/anvaka/npmrank

    Just found that from a quick google search. It would be nice if it had a way to search by max package size, or by max files in the package (if that's even possible)

  • handlebars-helpers

    188 handlebars helpers in ~20 categories. Can be used with Assemble, Ghost, YUI, express.js etc.

  • tldr

    📚 Collaborative cheatsheets for console commands

    • > While I find projects in those other languages to also have too many dependencies, it's no where near what happens in JS apps. I'm thinking of projects I've recently worked on in Rust, PHP, and Java.

    My experience with these new languages is such that this feels a bit unfair. It's like insisting that a disaster with 1000 fatalities is "much worse" than one with "only". It's ... true ... I guess, but there's something uncomfortable about making the comparison. Something has gone badly wrong if the comparison even needs to happen in the first place.

    What I'm getting at is that e.g. Rust has an enormous problem in this area. It's not uncommon for me to see Node projects with over a thousand transitive dependencies, but on the other hand, I very frequently see Rust projects with over a hundred. And the Node projects tend to be more complicated than the Rust ones; they do more.

    Take the last Rust program I tried to use, tealdeer. [1] If you don't know, tldr is a project that provides alternative simplified man pages for commonly used programs that consist entirely of easy to understand examples for the program. [2] What a tldr client needs to do is simply to check a local cache for each lookup, and if necessary update the cache online. It's a trivial problem that can be, and has been! [3], solved in a few hundred lines of shell (if you're being extremely verbose). How many recursive dependencies would you guess tealdeer uses? Depends on how you count, of course, but as of today the answer is ~133 deduplicated dependencies! For a program that's a glorified wrapper around curl!

    Or another Rust program I looked at recently, rua [4]. In Arch Linux, the AUR is a repository of user maintained scripts for building and installing software as native Arch packages. Official tools for the building and installing software already exist for Arch, but it is common for users to use a wrapper around these tools that makes fetching and updating the software from the AUR easier. It's a relatively simple task that (once again) can be done with shell scripts. rua is such a wrapper. As of today it uses 137 deduplicated dependencies!

    These Rust programs are simple terminal tools to do tasks that are almost trivial in nature. And yet they require hundreds of constantly updating dependencies! The situation may well be better than what you'll find for Node, but it's undeniably disastrous compared to either simpler languages without a built in package manager (like C) or more complicated batteries-included languages where best practices continue to prevail (like Python).

    [1] https://github.com/dbrgn/tealdeer

    [2] https://tldr.sh/

    [3] https://github.com/raylee/tldr-sh-client/blob/main/tldr

    [4] https://github.com/vn971/rua

  • tealdeer

    A very fast implementation of tldr in Rust.

    • > While I find projects in those other languages to also have too many dependencies, it's no where near what happens in JS apps. I'm thinking of projects I've recently worked on in Rust, PHP, and Java.

    My experience with these new languages is such that this feels a bit unfair. It's like insisting that a disaster with 1000 fatalities is "much worse" than one with "only". It's ... true ... I guess, but there's something uncomfortable about making the comparison. Something has gone badly wrong if the comparison even needs to happen in the first place.

    What I'm getting at is that e.g. Rust has an enormous problem in this area. It's not uncommon for me to see Node projects with over a thousand transitive dependencies, but on the other hand, I very frequently see Rust projects with over a hundred. And the Node projects tend to be more complicated than the Rust ones; they do more.

    Take the last Rust program I tried to use, tealdeer. [1] If you don't know, tldr is a project that provides alternative simplified man pages for commonly used programs that consist entirely of easy to understand examples for the program. [2] What a tldr client needs to do is simply to check a local cache for each lookup, and if necessary update the cache online. It's a trivial problem that can be, and has been! [3], solved in a few hundred lines of shell (if you're being extremely verbose). How many recursive dependencies would you guess tealdeer uses? Depends on how you count, of course, but as of today the answer is ~133 deduplicated dependencies! For a program that's a glorified wrapper around curl!

    Or another Rust program I looked at recently, rua [4]. In Arch Linux, the AUR is a repository of user maintained scripts for building and installing software as native Arch packages. Official tools for the building and installing software already exist for Arch, but it is common for users to use a wrapper around these tools that makes fetching and updating the software from the AUR easier. It's a relatively simple task that (once again) can be done with shell scripts. rua is such a wrapper. As of today it uses 137 deduplicated dependencies!

    These Rust programs are simple terminal tools to do tasks that are almost trivial in nature. And yet they require hundreds of constantly updating dependencies! The situation may well be better than what you'll find for Node, but it's undeniably disastrous compared to either simpler languages without a built in package manager (like C) or more complicated batteries-included languages where best practices continue to prevail (like Python).

    [1] https://github.com/dbrgn/tealdeer

    [2] https://tldr.sh/

    [3] https://github.com/raylee/tldr-sh-client/blob/main/tldr

    [4] https://github.com/vn971/rua

  • tldr-sh-client

    Simplified and community-driven man pages

    • > While I find projects in those other languages to also have too many dependencies, it's no where near what happens in JS apps. I'm thinking of projects I've recently worked on in Rust, PHP, and Java.

    My experience with these new languages is such that this feels a bit unfair. It's like insisting that a disaster with 1000 fatalities is "much worse" than one with "only". It's ... true ... I guess, but there's something uncomfortable about making the comparison. Something has gone badly wrong if the comparison even needs to happen in the first place.

    What I'm getting at is that e.g. Rust has an enormous problem in this area. It's not uncommon for me to see Node projects with over a thousand transitive dependencies, but on the other hand, I very frequently see Rust projects with over a hundred. And the Node projects tend to be more complicated than the Rust ones; they do more.

    Take the last Rust program I tried to use, tealdeer. [1] If you don't know, tldr is a project that provides alternative simplified man pages for commonly used programs that consist entirely of easy to understand examples for the program. [2] What a tldr client needs to do is simply to check a local cache for each lookup, and if necessary update the cache online. It's a trivial problem that can be, and has been! [3], solved in a few hundred lines of shell (if you're being extremely verbose). How many recursive dependencies would you guess tealdeer uses? Depends on how you count, of course, but as of today the answer is ~133 deduplicated dependencies! For a program that's a glorified wrapper around curl!

    Or another Rust program I looked at recently, rua [4]. In Arch Linux, the AUR is a repository of user maintained scripts for building and installing software as native Arch packages. Official tools for the building and installing software already exist for Arch, but it is common for users to use a wrapper around these tools that makes fetching and updating the software from the AUR easier. It's a relatively simple task that (once again) can be done with shell scripts. rua is such a wrapper. As of today it uses 137 deduplicated dependencies!

    These Rust programs are simple terminal tools to do tasks that are almost trivial in nature. And yet they require hundreds of constantly updating dependencies! The situation may well be better than what you'll find for Node, but it's undeniably disastrous compared to either simpler languages without a built in package manager (like C) or more complicated batteries-included languages where best practices continue to prevail (like Python).

    [1] https://github.com/dbrgn/tealdeer

    [2] https://tldr.sh/

    [3] https://github.com/raylee/tldr-sh-client/blob/main/tldr

    [4] https://github.com/vn971/rua

  • rua

    Build tool for Arch Linux providing control, review and jailed build options

    • > While I find projects in those other languages to also have too many dependencies, it's no where near what happens in JS apps. I'm thinking of projects I've recently worked on in Rust, PHP, and Java.

    My experience with these new languages is such that this feels a bit unfair. It's like insisting that a disaster with 1000 fatalities is "much worse" than one with "only". It's ... true ... I guess, but there's something uncomfortable about making the comparison. Something has gone badly wrong if the comparison even needs to happen in the first place.

    What I'm getting at is that e.g. Rust has an enormous problem in this area. It's not uncommon for me to see Node projects with over a thousand transitive dependencies, but on the other hand, I very frequently see Rust projects with over a hundred. And the Node projects tend to be more complicated than the Rust ones; they do more.

    Take the last Rust program I tried to use, tealdeer. [1] If you don't know, tldr is a project that provides alternative simplified man pages for commonly used programs that consist entirely of easy to understand examples for the program. [2] What a tldr client needs to do is simply to check a local cache for each lookup, and if necessary update the cache online. It's a trivial problem that can be, and has been! [3], solved in a few hundred lines of shell (if you're being extremely verbose). How many recursive dependencies would you guess tealdeer uses? Depends on how you count, of course, but as of today the answer is ~133 deduplicated dependencies! For a program that's a glorified wrapper around curl!

    Or another Rust program I looked at recently, rua [4]. In Arch Linux, the AUR is a repository of user maintained scripts for building and installing software as native Arch packages. Official tools for the building and installing software already exist for Arch, but it is common for users to use a wrapper around these tools that makes fetching and updating the software from the AUR easier. It's a relatively simple task that (once again) can be done with shell scripts. rua is such a wrapper. As of today it uses 137 deduplicated dependencies!

    These Rust programs are simple terminal tools to do tasks that are almost trivial in nature. And yet they require hundreds of constantly updating dependencies! The situation may well be better than what you'll find for Node, but it's undeniably disastrous compared to either simpler languages without a built in package manager (like C) or more complicated batteries-included languages where best practices continue to prevail (like Python).

    [1] https://github.com/dbrgn/tealdeer

    [2] https://tldr.sh/

    [3] https://github.com/raylee/tldr-sh-client/blob/main/tldr

    [4] https://github.com/vn971/rua

  • cli

    the package manager for JavaScript (by npm)

    • That's not an accurate history; npm started around 2010 and didn't become a company until 2014. Perhaps it was all part of a master plan to build the perfect trojan unicorn, but I invite you to look at some of the 2010-era code and blog posts to judge for yourself:

    https://github.com/npm/cli/tree/e790c85a

    https://blog.izs.me/2010/11/10-cool-things-you-probably-didn...

    You can read and/or listen to the issacs talk about the actual history here: https://changelog.com/founderstalk/61

    In the early days of node, the ability to have tiny nested modules without opening the gates to dependency hell was such a profoundly new and exciting capability that the community didn't need any convincing to (over-)embrace it. As with microservices today or CORBA in the 90s, moving your design's complexity from its nodes to its edges is a powerful way to convince yourself that you've made it simpler.

  • proposal-shadowrealm

    ECMAScript Proposal, specs, and reference implementation for Realms

    • https://github.com/tc39/proposal-shadowrealm

    ShadowRealm is possibly a reference to the Shadow Realm from the card game Yu-Gi-Oh

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo
NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts