Comment on When "Everything" Becomes Too Much: The npm Package Chaos of 2024 - Socket

<- View Parent
azertyfun@sh.itjust.works ⁨9⁩ ⁨months⁩ ago

npm downloads every dependency recursively. If a depends on d (= 1.2.3) and b depends on d (= 1.2.4), then both versions of d get downloaded into a and b’s respective node_modules.

All other package managers I’m aware of resolve dependencies into a flat list then download, and you can only have one version of the same package on your system.

source
Sort:hotnewtop