# you don't know `everything` about the npm situation You might've heard about the [fireworks that took place in the last week of 2023 for the JavaScript ecosystem](https://uncenter.dev/posts/npm-install-everything/). Chris Bautista (aka. [`@trash_dev`]()) & Patrick Stapleton (aka. [`@PatrickJS`]()) - this is the best unpublish policy npm has ever had ## dependency math - ~70 transitive dependencies for each direct dependency - ~2.6M packages in the registry - ~183M potential "edges" ## examples... ``` publish @lukekarrys/11127-core-package 1.0.0 2.0.0 3.0.0 publish @lukekarrys/11127-depends-on-old-range with "dependencies": {"@lukekarrys/11127-core-package": "2.0.0"} unpublish @lukekarrys/11127-core-package -- FAILS unpublish @lukekarrys/11127-core-package@1.0.0 -- FAILS npm view @lukekarrys/11127-depends-on-old-range --json npm view @lukekarrys/11127-depends-on-old-range@1.0.0 --json ``` ## Next Steps - Artem's wishes for a registry: https://twitter.com/kettanaito/status/1743937909718241613 - ## References & Links - PatrickJS__'s misunderstanding: - https://twitter.com/PatrickJS__/status/1743764252140441797 - - Theo's: - Video: https://www.youtube.com/watch?v=IzqtWTMFv9Y - Vitreol: https://twitter.com/t3dotgg/status/1743732421080776845 - Unreasonable: https://twitter.com/erginii/status/1743574359724204346 - Anthony's nuanced approach: https://twitter.com/anthonysheww/status/1743695481753211270 - Uncentered's Blog: https://uncenter.dev/posts/npm-install-everything/ - Dom's misunderstanding: https://twitter.com/TkDodo/status/1743924434753208436 - Trash tweets: - https://twitter.com/trashh_dev/status/1743750031193354591 - https://twitter.com/trashh_dev/status/1743610366171431015 - Shadcn predicted: https://twitter.com/shadcn/status/1743652739542851757 - Feross' Tweet: https://twitter.com/feross/status/1743073667817652428 - Socket's Blog: https://socket.dev/blog/when-everything-becomes-too-much