科技回声

8 条评论

drinchev超过 7 年前

No idea why this list is on the first page of HN, but it looks like ( at least the 10 that I clicked around ) are very spammy, not at all popular, packages that I doubt have any use.Probably the attention to this article is the good old debate about npm and the huge dependencies that a package can have. Which is not always a bad thing. Actually I wrote an article [1] about it.1 : <a href="http://www.drinchev.com/blog/increase-your-dependencies/" rel="nofollow">http://www.drinchev.com/blog/increase-your-dependencies/</a>

schneidmaster超过 7 年前

I don't think there's much meaningful information to glean from this list. The package at the top is literally just a package.json that installs all the packages published by one particularly prolific npm author, it doesn't have any serious purpose. Many of the other high-ranking packages simply have put their devDependencies in their dependencies, resulting in a bunch of babel plugins and the like (a mistake to be sure, but not indicative of anything in particular about the state of npm package usage).

评论 #16326029 未加载

评论 #16326134 未加载

评论 #16325832 未加载

tw1010超过 7 年前

Are we going to go around dependency-shaming packages now?

评论 #16325622 未加载

评论 #16325629 未加载

lev99超过 7 年前

Having smaller packages each with many dependencies is a common node design pattern. I think this started because it doesn't have a lot of framework code to relay on, so simpler functions became packages.It has advantages and disadvantages. People concerned about production uptime/deployment should keep copies of all dependencies on their network, and run npm against their network repo.

partycoder超过 7 年前

What I've learned from this is that npm itself has a lot of dependencies, and that is bad. It means any of those 500+ packages can take over npm itself for malicious purposes.Other than that, there's not much to see. I would like this list being filtered by usage (e.g: installs/downloads). Some packages seem to be there for personal use.

andreyf超过 7 年前

There are immediate dependencies? Seems "depended on" should include sub-deps, as well.

imtringued超过 7 年前

The top 50 all had less than 100 downloads this month. Not very interesting.

alsadi超过 7 年前

Hall of fame and hall of shame.Don't force it. Use larger hammer.Don't panic just throw more dependencies

评论 #16327074 未加载

8 条评论

drinchev超过 7 年前

schneidmaster超过 7 年前

评论 #16326029 未加载

评论 #16326134 未加载

评论 #16325832 未加载

tw1010超过 7 年前

Are we going to go around dependency-shaming packages now?

评论 #16325622 未加载

评论 #16325629 未加载

lev99超过 7 年前

partycoder超过 7 年前

andreyf超过 7 年前

There are immediate dependencies? Seems "depended on" should include sub-deps, as well.

imtringued超过 7 年前

The top 50 all had less than 100 downloads this month. Not very interesting.

alsadi超过 7 年前

Hall of fame and hall of shame.Don't force it. Use larger hammer.Don't panic just throw more dependencies

评论 #16327074 未加载

NPM packages with most dependencies

8 条评论

NPM packages with most dependencies

8 条评论