| HN Mirror

Y	Hacker News new \| ask \| show \| jobs


	by Grieving 1679 days ago
	2̶7̶ 2 dependencies, travis ci configured, fully tested and documented, even the readme depends on some external tool. github username is i-voted-for-trump. Looks like a joke that people actually started using. edit: Confused dependents with dependencies

5 comments

rnestler 1679 days ago

In the GitHub organization i-voted-for-trump it even states:

> This is a joke. You'll only see this org if you are attempting to troll me about repositories I created when I was learning to program

link

omnicognate 1679 days ago

27 dependents, i.e. things depending on it. Only one dependency: is-odd, hilariously.

I'd like to think it's a joke, but maybe not. Anyway, what's with the massive download spike, 20 million downloads between 22nd and 28th December 2020.

link

toomanybeersies 1679 days ago

It actually has 2 dependencies, `is-odd` depends on `is-number`

link

ainar-g 1679 days ago

And the latest version of is-number is 7.0.0, interestingly enough.

link

pdpi 1679 days ago

You have to wonder what the six backwards incompatible changes were.

link

rezonant 1679 days ago

I assume they got it into a popular package around then, and it was promptly removed for being ridiculous.

link

dgrin91 1679 days ago

In the about for the project it says

> I created this in 2014, when I was learning how to program.

link

uxp 1679 days ago

It would be one thing if it was _just_ a little demo utility used to showcase packaging and distribution of a trivial use case, however the creator of this has also created a number of packages which pull in these "demo" packages, like `handlebar-helpers`, which is again just these trivial function packages wrapped in handlebar decorators.

Several of these utility and helper packages are then pulled into other packages and build tools and marketed as legitimate packages, effectively hiding and masking the "just a demo" labels of the root is-even, is-odd, is-number packages. When people like myself complain about the absurdity of NPM supply chain verification, this is what we're arguing against.

link

pledg 1679 days ago

27 dependants, not dependencies. It has one dependency.

link

1_player 1679 days ago

I'm not sure where are you seeing that username, but no, sadly it's not a joke.

link

Nicksil 1679 days ago

https://github.com/jonschlinkert/is-even

redirects to

https://github.com/i-voted-for-trump/is-even

link

Grieving 1679 days ago

If you click on the github link, it redirects to an archived repo under that username.

link