Programmer Humor

27477 readers

1605 users here now

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

Keep content in english
No advertisements
Posts must be related to programming or programmer topics

founded 2 years ago

MODERATORS

Feyter@programming.dev

anzo@programming.dev

BurningTurtle@programming.dev

pylapp@programming.dev

370

npm install (europe.pub)

submitted 2 weeks ago by cm0002@europe.pub to c/programmer_humor@programming.dev

14 comments fedilink hide all child comments

top 14 comments

sorted by: hot top controversial new old

[–] GottaHaveFaith@fedia.io 63 points 2 weeks ago (1 children)

Installed 4239 packages 8000 severe vulnerabilities 200 packages looking for funding

[–] jaybone@lemmy.zip 16 points 2 weeks ago (1 children)

But how else will I figure out if a value is true?

[–] marius@feddit.org 14 points 2 weeks ago (1 children)

I bet there's an online service for that

[–] jaybone@lemmy.zip 22 points 2 weeks ago (2 children)

Oh right, I can avoid the full isTrue library implementation with its 8000 dependencies, and instead install the isTrue client, which uses the isTrue cloud service and its REST APIs. Soon it will be AI powered. Then I’ll really be able to tell for sure if my variable value is actually true or not.

[–] Nomecks@lemmy.ca 4 points 2 weeks ago

You just call GPT and ask if it's true. Get with the times!

[–] vrek@programming.dev 3 points 2 weeks ago

Look, can I ask a favor? Can you take that, package it, and put it on npm so I can use it in my project?

[–] StopSpazzing@lemmy.world 19 points 2 weeks ago

Jayden animations?

[–] dbx12@programming.dev 12 points 2 weeks ago (1 children)

I only do npm install in a docker container where the project and npm cache is mounted. Gives me a bit of security regarding attacks through post install scripts. (--no-scripts is not an option since I need some of them)

[–] victorz@lemmy.world 2 points 2 weeks ago (1 children)

When do people ever do npm install if you don't trust the project or know what install scripts will run? I'm a web developer of 10 years and I've never run npm install to install a piece of software. The only time I ever run npm is when I'm doing development for work.

[–] dbx12@programming.dev 1 points 2 weeks ago (1 children)

Usually in the "lets see how this random project I cloned from GitHub works for my use case" scenario. I want to see how it works and if it would cover my use case before spending time on checking code and dependencies for security issues.

[–] victorz@lemmy.world 1 points 2 weeks ago* (last edited 2 weeks ago)

So it doesn't have any other means of installing I take it.

Usually I take that as a red flag, that it isn't popular or mature enough. But to each their own.

[–] oopsallnaps@piefed.ca 6 points 2 weeks ago

always close your toilet lid before npm installing!

[–] Thedogdrinkscoffee@lemmy.ca 3 points 2 weeks ago

Forgot to make a salt circle to contain the evil.

[–] hacktheegg@programming.dev 3 points 2 weeks ago

Run the commands and ignore all of the outputs

Nothing could go wrong :)