Builds Today, Breaks Tomorrow: The Mystery of the Disappearing NPM Dependency
Offered By: Linux Foundation via YouTube
Course Description
Overview
Explore a real-world case study of a mysteriously disappearing NPM dependency in this 23-minute conference talk. Trace the investigation from an internal repository issue to an unexpected change in a popular open-source library. Learn valuable best practices for development teams and open-source maintainers to ensure stable, successful, and policy-compliant JavaScript build pipelines. Discover the importance of lock files, proper NPM versioning, and using 'npm ci' in builds. Gain insights into package maintenance best practices and understand how seemingly unrelated changes can impact your project's dependency tree. Equip yourself with knowledge to prevent similar scenarios and maintain robust JavaScript development workflows.
Syllabus
Hi! I'm Bella Wiseman
How Goldman Sachs Uses GatsbyJS
Open Source Licenses
Dependency Tree
What Changed? Nothing!
NPM Versioning
Mystery solved!
Don't be taken by surprise
Lock files!
Use npm ci in your builds
A Comparison
Fix the underlying issue
Package Maintenance Best Practices
About Goldman Sachs Engineering
Questions?
Taught by
Linux Foundation
Tags
Related Courses
Front-End Web UI Frameworks and ToolsThe Hong Kong University of Science and Technology via Coursera Using Open Source Web Tooling to Improve Development Proficiency
Microsoft via edX Front-End Web UI Frameworks and Tools: Bootstrap 4
The Hong Kong University of Science and Technology via Coursera Diseñando páginas web con Bootstrap 4
Universidad Austral via Coursera React 101 - basics complete & latest. Forms, routing, async
Udemy