I’m following the odin project to learn web development. I had read about malicious packages in npm multiple times, so I avoided it until now. I’m on the webpack lesson now, and to use webpack, I need to install it using npm. I also see that it has many dependencies, and those dependencies will have other depenedencies and so on.

Why is it like this? Is there any other tool like webpack that doesn’t require npm? Or rather, can someone clarify how to properly use npm or link a guide that explains it? I have this kind of fear and reluctance about using npm after all the things I read.

  • madnificent@lemmy.world
    link
    fedilink
    arrow-up
    0
    ·
    2 months ago

    You could find out about the way we do it at https://github.com/madnificent/docker-ember but I would not if I were you.

    The real risk, today at least, does not seem utterly huge. Jumping in this rabbit hole of containers is another topic in itself. I suggest continuing your learning as you do now and maybe revisit this later. You will learn faster that way.

    Feel free to check what we did on the link above and ask questions later or whenever you feel ready for this topic.

    • cherrycode@lemmy.mlOP
      link
      fedilink
      arrow-up
      0
      ·
      6 days ago

      I don’t really understand a lot of things in the repo
      I’ll have a look at it sometime later thanks

      For now I have made a container image with node installed in it after following some guides
      I enter the project directory and then run this
      podman run -it --rm -p 8080:8080 -v $(pwd):/app/$(basename "$PWD"):z my-node-image:latest