Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bundle ALL dependencies... even for Node package #74

Open
RayBenefield opened this issue Dec 2, 2017 · 1 comment
Open

Bundle ALL dependencies... even for Node package #74

RayBenefield opened this issue Dec 2, 2017 · 1 comment
Assignees
@RayBenefield

Comments

@RayBenefield
Copy link
Owner

After the left pad debacle, there was a great idea for avoiding ever having a dependency problem that also has a lot of other benefits. Roll all of your dependencies into your package... even a node package. This improves download times, and prevents bugs from ever accidentally showing up. Also prevents security issues that enterprises may be worried about.

https://medium.com/@Rich_Harris/how-to-not-break-the-internet-with-this-one-weird-trick-e3e2d57fee28

Also make sure that the dependencies wrapped up into the package get a copyright mention for their MIT license as well as ensure that the package.json removes the dependency section on build for publishing so it shows up as a package with no dependencies in NPM.
@RayBenefield RayBenefield self-assigned this Dec 2, 2017
@RayBenefield
Copy link
Owner Author

This will handle the license bundling for me: https://www.npmjs.com/package/rollup-plugin-license

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@RayBenefield RayBenefield

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@RayBenefield