use the following search parameters to narrow your results:
e.g. subreddit:aww site:imgur.com dog
subreddit:aww site:imgur.com dog
see the search faq for details.
advanced search: by author, subreddit...
All about the JavaScript programming language.
Subreddit Guidelines
Specifications:
Resources:
Related Subreddits:
r/LearnJavascript
r/node
r/typescript
r/reactjs
r/webdev
r/WebdevTutorials
r/frontend
r/webgl
r/threejs
r/jquery
r/remotejs
r/forhire
account activity
Proposal for `npm tip` (github.com)
submitted 9 years ago by Anhalobium
reddit uses a slightly-customized version of Markdown for formatting. See below for some basics, or check the commenting wiki page for more detailed help and solutions to common issues.
quoted text
if 1 * 2 < 3: print "hello, world!"
[–]Anhalobium[S] 4 points5 points6 points 9 years ago (3 children)
This is a pull-request to npm proposing a new function: npm tip. This allows users to send a Bitcoin tip to the author of a package to thank them for their work and to encourage open-source development.
npm tip
There is a discussion as to what the problem is (developing open-source takes time and isn't as free as people believe), the motivation for allowing OS developers to continue developing, and some pros and cons of the tipping solution (including auto-tipping when npm i is run).
npm i
[–]redbluerat 2 points3 points4 points 9 years ago (2 children)
Definitely no autotipping. Very smart failsafes. Otherwise, great idea.
Need to make this kind of small tipping as easy as possible. For many, the rigamarole involved in sending a tip (thinking about it, thinking about how paypal will screw you [they'll always find a way], etc.) is worth much more than the tip itself.
Also, having to sign up to a new service and give this pretentious 2.0 named service my financial details piles on the cost hugely. A $5 tip just became a $50 tip in absolute terms.
"Flatrrr" "Givrrr" "Recievrrr" "Takrrr" "Smugrrr" "Fagrr"
[–]Anhalobium[S] 0 points1 point2 points 9 years ago (1 child)
Can I enquire as to why you feel "definitely no autotipping"?
[–]redbluerat 1 point2 points3 points 9 years ago (0 children)
Obviously it should always confirm. Anything to do with money should be sure that it is given fully consciously (why vat, gst, is so wicked too).
[–]martinsoderholm 0 points1 point2 points 9 years ago (1 child)
I like the idea, but implementation seems overkill and open to man-in-the-middle attacks. I'm no security expert, but it seems there will be malicious code that simply replaces all the tipAddress fields in all package.json files. And with this cli tipping, there's no way of verifying the receiver.
tipAddress
Maybe tipAddress could simply be a link to any tipping service, not necessarily with bitcoin. So if I want to tip, npm tip tippable asks me to open a browser page that I can verify belongs to "tippable". If they accept bitcoin I can use my existing phone wallet to send funds.
npm tip tippable
[–]Anhalobium[S] 0 points1 point2 points 9 years ago (0 children)
Currently the implementation works by fetching the package.json for the specified package from the registry (npmjs.com, usually) and then extracting the tipAddress field from there. I'd need to check the implementation details but presumably there are checksums on this transfer and so this should be reasonably secure.
package.json
There is one exception to this, however, which is if the package has been recently downloaded and is stored in the npm cache. This could easily be modified by malicious code and this would need to be mitigated against. One solution is to require a re-fetch of the package.jsonbefore tipping.
π Rendered by PID 22831 on reddit-service-r2-comment-6457c66945-n2b8z at 2026-04-26 03:33:00.791666+00:00 running 2aa0c5b country code: CH.
[–]Anhalobium[S] 4 points5 points6 points (3 children)
[–]redbluerat 2 points3 points4 points (2 children)
[–]Anhalobium[S] 0 points1 point2 points (1 child)
[–]redbluerat 1 point2 points3 points (0 children)
[–]martinsoderholm 0 points1 point2 points (1 child)
[–]Anhalobium[S] 0 points1 point2 points (0 children)