undefined | Better HN

0 pointsanonymous9082137mo ago0 comments

Node doesn't have any particular relation to NPM? You don't have to download 1000 other people's code. Writing your own code is a thing that you are legally allowed to do, even if you're writing in Javascript.

0 comments

3 comments · 3 top-level

jacquesm7mo ago

Yes, and you can code in assembly as well if you want it. But: that's not how 99% of the people using node is using it so that it is theoretically possible to code up every last bit yourself is true but it does not contribute to the discussion at all.

An eco-system, if it insists on slapping on a package manager (see also: Rust, Go) should always properly evaluate the resulting risks and put proper safeguards in place or you're going to end up with a massive supply chain headache.

1 more reply

AIorNot7mo ago

So your supposed to write your own posthog? be serious

3 more replies

paradite7mo ago

npm has been the official package manager for node since forever (0.8 or earlier iirc). I think even before the io.js fork and merge.

j / k navigate · click thread line to collapse