A tool that attempts install 3rd party dependencies so you don't have to!
There is a lot of duplicated work/code going into native node modules. This work could be entirely mitigated if node modules used OS packaging systems which have, for the most part, already built these dependencies.
The primary entrypoint for depie is intended to be the
package.json file. This lets you install dependencies prior to
needing them. For example:
{
"name": "example",
"version": "1.0.0",
"description": "a test module for depie",
"main": "index.js",
"scripts": {
"test": "echo \"Error: no test specified\" && exit 1",
"install": "echo 'var d = require(\"depie\"); d.install([\"libsodium\"])' | node"
},
"author": "",
"license": "MIT",
"dependencies": {
"depie": "0.0.1"
}
}
The above would install depie using npm then libsodium using the operating systems native package manager.
Now you can build your native module without needing to repackage and rebuild all the source code for libsodium!
Packages are aliased to allow for a single entrypoint across all systems. This requires work, but ultimately, it will be less work/time than is spent downloading/compiling the dependent code for every install of your native module!
Here is an example of the alias for libsodium on Ubuntu:
"libsodium": "libsodium-dev"
FAQs
Package for managing external dependencies on various systems
The npm package depie receives a total of 0 weekly downloads. As such, depie popularity was classified as not popular.
We found that depie demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
Security News
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.
Security News
A Stanford study reveals 9.5% of engineers contribute almost nothing, costing tech $90B annually, with remote work fueling the rise of "ghost engineers."