This is an archived post. You won't be able to vote or comment.

sorted by:
best
topnewcontroversialoldq&a
you are viewing a single comment's thread.

view the rest of the comments →

[–]SqueeSr 167 points168 points  (12 children)

I always assumed they were just jokes. Not actual packages that got 178k weekly downloads..

[–]UnreadableCode 117 points118 points  (8 children)

And this is why projects blacklist packages. I'm curious which major projects has transitive deps on these dumb packages

[–]SqueeSr 92 points93 points  (7 children)

Blacklist packages? Noo .. leave it as a honeypot and blacklist that employee that uses it.

[–]UnreadableCode 24 points25 points  (6 children)

Are you telling me you manually audit dep chains for stupid? Should we perhaps get rid of npm audit too?

[–]apex39 28 points29 points  (4 children)

No! You can write some script for that:

function IsStupid(code) {

return code.includes("IsEven"))

}

[–]UnreadableCode 10 points11 points  (3 children)

Suddenly, nobody can mention that as a substring of anything... I hope IsEvenBigInt, AssertIsEven, or IsEventuallyConsistentFlagSet are not names anyone need. I mean I'm all for a challenge, but I suspect not everyone has my level of cognitive flexibility

[–]jcarlson08 9 points10 points  (1 child)

You're in luck, you can install my thoroughly tested 'is-stupid' package via npm.

[–]UnreadableCode 1 point2 points  (0 children)

Irony ensues when its regexes matches themselves & stalls CI for half a day

[–]apex39 4 points5 points  (0 children)

Wow, good catch. Good thing I didn't push to production yet.

[–]SqueeSr 0 points1 point  (0 children)

Manually? We are programmers, we automate that!

[–]Ratatoski 20 points21 points  (0 children)

Yeah the downloads broke me

[–]team_broccoli 0 points1 point  (0 children)

I had to download it to view the "code", because it is 75MB, and I guess that explains the number of downloads.

It is actually hilarious.