Not entirely the usual fare, but i figured some here would appreciate it

I often rag on the js/node/npm ecosystem for being utter garbage, and this post is a quite a full demonstration of many of the shortcomings and outright total design failures present in that space

  • Deborah@hachyderm.io
    link
    fedilink
    arrow-up
    0
    ·
    9 months ago

    I mean, do any other package managers work this way? Pypi disallows complete removal from the index to prevent malware namesquatting, but nothing in pypi as a tool requires dependencies exist or be functional.

      • froztbyte@awful.systemsOP
        link
        fedilink
        English
        arrow-up
        0
        ·
        9 months ago

        I know pypi is a bit more responsive to issues (having seen it happen, and seen on irc how the people think about things). on the rest I haven’t really been close to things for a little while because reasons

        android/dart seems to give me “google or someone will intervene” vibes. not sure about the wider maven ecosystem. the mental image of trying to deal with this particular problem in their usual suggested flows (which is extremely “click here and here in these 5 menus. we’ll only mention the places by name, fuck you getting circles or screenshots.”) strikes me as though it may cause a hundred million wails crying out at once