Juan Picado gave a presentation on sharing modules in modern web applications. He discussed how JavaScript projects are highly modularized and rely on package managers like npm, yarn, and pnpm to distribute code. He explained that linking a package is not the same as publishing it and recommended following semantic versioning. Juan then demonstrated Verdaccio, an open source private npm proxy registry that allows hosting private packages. Verdaccio is lightweight, compatible with major package managers, and can scale to support many users and packages.
28. Verdaccio is a lightweight proxy and private
registry with an entirely optional configuration that
allows you to host private Node.js packages and is
compatible with all client package managers such
npm, Yarn or pnpm.
33. Case Study
“We ran the math, npm charges
$7/customer/mo and every user has to have a
paid account; verdaccio can effortlessly scale to
hundreds of users and tens of packages a month”
“We use it in production on a single
DigitalOcean droplet, $5/mo”
https://sheetjs.com/
36. Verdaccio 4
• New User Interface (React)
• Change Password
• New permission: unpublish
• JWT support
• New npm commands (star, profile)
• Drop Node.js 6