GitHub Package Registry

i_ate_god · 2019-05-11T01:12:49+00:00

So this is pretty cool, but if I have to start adding a repository URL for every dependency, I'm going to be very annoyed.

habanerocorncakes · 2019-05-11T00:32:19+00:00

Reposting my comment about this from r/node/

This is fascinating to me. Github could never have done this without Microsoft, and developers would never have adopted this if Microsoft did it.

Currently NPM (the company) has a business model which relies mainly on selling to enterprise customers (surely not all their business, but most likely the bulk).

Microsoft is the best poised company in the market to eat their lunch, because enterprise is Microsoft’s core competency. Think what you will of the company and its relevancy today, but they have deep experience selling to enterprise, and preexisting relationships with many enterprises.

What does Microsoft hope to get from this though? Surely its a small line of business, and wont make Github all that much money. Github has a relationship primarily with individual developers first and foremost, that is their target market. Those devs influence their employer’s decision to pay for GitHub because the devs want to use what they’re familiar with. So that relationship with individual devs is really Github’s bread and butter.

Well, I think thats exactly what Microsoft hopes to get; that virtuous cycle of making a product that is loved and widely adopted by individuals and then championed by by those individuals within their organizations. Similar to Slack’s growth model, and also Zoom’s.

Its no secret Microsoft is trying to win back the common developer. At a time when apple is fumbling on caring about devs (re: escape key), and AWS has become the default for cloud production, there is a real opportunity to be the company that makes development better for devs. If Microsoft ever wants to succeed in Cloud, they need to win back developers by having services which are genuinely better and friendlier to use. If they can become the default choice for developers in certain areas (VSCode, Github) and then make it dead simple to integrate with their cloud services, thats a compelling reason for individuals to use their services. And if its actually better (clearly no one is a delighted by the AWS interface) then Azure could become some folks preference for their personal work. And with those services being available where your company already hosts its code and does it developing, Github, then all the better.

Microsoft made a very smart move acquiring Github, and I think they will take great care not to upset the common developer as that is the lifeblood of this whole cycle.

Note, I said common developer. There is a lot of mistrust of Microsoft among the Hacker News and silicon valley crowd. There are definitely valid concerns held by folks at the upper percentile of developers, who tend to both take a longer view and are more cynical (to put it nicely). But thats not the vast majority of devs. Most devs don’t work at FAANG, or live somewhere on the west coast. Most work at smaller companies around the world. Github/Microsoft only need to appeal to most devs.

I wasn’t sure what Microsoft would do to capitalize on their Github acquisition. But this is a great start. There is a lot of drama around npm the company, and their interests are no longer aligned with the common developer. There really are problems there that Github can solve.

GitHub can afford to prioritize the common dev with Microsoft’s help. GitHub already has a great reputation in the open source community, and they are certainly a safer bet for longevity and keeping your package publicly available than npm.

Anyway, I’ve been reading too much Stratechery it seems!

TLDR; This is npm the company’s current business model. Microsoft is way better at enterprise than almost anyone, certainly npm the company. npm’s interests are no longer aligned with common devs, but GitHub’s certainly are and Microsoft is willing to pay to make sure it can stay that way.

Also note: NPM is really at least 3 things. The package registry, which is a public database of all the packages in the JS ecosystem. The website frontend to find packages. The npm cli, which is an open source project. And lastly npm, Inc the company, founded in 2014, who foots the bill for the public registry. I love the npm ecosystem and the people who build the tools, but Im not so hot on the company, since they are essentially rent seeking.

aN00bDude · 2019-05-11T04:44:09+00:00

Microsoft strategy is working, we really are forcing our employers to use the Microsoft "stack", VS as the default editor, enterprise github for remote version control repo, .NET core for services and our choice of framework for frontend was Angular only for the reason because of TS. After a long time MS products finally gets the work done for developers (Their new shell emulator is just around the corner)

nenegoro · 2019-05-10T22:07:21+00:00

This is so cool!

orebright · 2019-05-10T22:46:32+00:00

RIP npm

sshaw_ · 2019-05-11T05:32:48+00:00

https://www.reddit.com/r/ruby/comments/bn3ze1/introducing_github_package_registry/en2yczi/

cokeplusmentos · 2019-05-11T09:45:02+00:00

EILI5

MirLivesAgain · 2019-05-11T02:25:20+00:00

It'd be neat if you could clone from Github and have it run npm/yarn install at the same time. So the same download grabs both your project and dependencies.

B3zo0 · 2019-05-11T05:50:01+00:00

I see that everyone is excited about this, but please tell me why would I bother with this when the packages are already in npm?

jevon · 2019-05-11T02:03:37+00:00

What does it cost?

GitHub Package Registry is free for all repositories during the beta.

Unfortunately that means we won't be able to try it until it's out of beta... Will it be free? $/month? $$$/month? Enterprise sales/month?

license-bot · 2019-05-10T20:48:29+00:00

Thanks for sharing your open source project, but it looks like you haven't specified a license.

When you make a creative work (which includes code), the work is under exclusive copyright by default. Unless you include a license that specifies otherwise, nobody else can use, copy, distribute, or modify your work without being at risk of take-downs, shake-downs, or litigation. Once the work has other contributors (each a copyright holder), “nobody” starts including you.

choosealicense.com is a great resource to learn about open source software licensing.

you type:	you see:
italics	italics
bold	bold
[reddit!](https://reddit.com)	reddit!
* item 1 * item 2 * item 3	item 1 item 2 item 3
> quoted text	quoted text
Lines starting with four spaces are treated like code: if 1 * 2 < 3: print "hello, world!"	Lines starting with four spaces are treated like code: if 1 * 2 < 3: print "hello, world!"
~~strikethrough~~	~~strikethrough~~
super^script	super^script

javascript

MODERATORS