npm weekly #104: email verification for publishing, we talk to Civey, we’re looking for a writer

Published in

npm, Inc.

4 min readJul 20, 2017

Coming soon: email verification for new packages

Starting Tuesday, July 25, if you want to publish a new package, you will first have to verify your email address. This is a minor inconvenience that will help us address the major annoyance of spammers publishing large volumes of packages to the Registry, sometimes thousands of packages at once.

You will only notice this change if you publish a new package — i.e., not an update to an existing package. If you have questions please read the full post on verified emails on the blog.

Net Neutrality and you

The head of the FCC and seemingly everyone above him is rooting against Net Neutrality. If you enjoy using the internet, and, oh, I don’t know, building things for it, this matters to you.

A healthy industry and a healthy democracy depend on everyone’s ability to build and share on the web without asking permission or cutting special deals. Pay attention to where this is heading and learn how to get involved.

What we’re reading: Introducing sphinx-js, a better way to document large JavaScript projects

Last week, Mozilla announced the release of sphinx-js, their solution for large scale JavaScript documentation. Sphinx is already a fan favorite in the Python realm, but the creation of sphinx-js allows JavaScript developers to reap the rewards of the popular tool, including “support for many languages and output formats… top-notch indexing, glossary generation, search, and cross-referencing.”

Watch Ashley speak at EnterJS

Almost exactly a month ago, Ashley Williams was in Darmstadt, Germany, to speak at EnterJS 2017. The event was livestreamed at the time but now you can see her keynote on open source and sustainability, featuring one of the best marquee signs of all time.

We recommend: happy-birthday

Created by Daijiro Wachi, the happy-birthday module is just pure birthday fun. Enjoy!

Meet Civey

Last week, we continued our series of conversations with npm Enterprise and Orgs users by chatting with Clemens Stolle of Civey.

Civey is a Germany-based online polling service that highly values encryption. Learn how using private packages has helped them keep their dependencies fresh and secure!

Interested in telling your story? Get in touch!

Are you the write one for the job?

You probably don’t need to be convinced of the value of good documentation, but we’re hiring a full-time technical writer to make our docs great! If you have a few technical writing jobs already on your résumé and want to help us expand and improve our docs, this might be the job for you!

Check out the full details on the job listing and please get in touch ASAP.

A quick CLI update in v5.3.0

In an effort to continually address npm@5 issues and bugfixing endeavors, late last week, the npm CLI team released version 5.3.0. The majority of the release was made up of bug fixes and updates to documentation, but new features for this latest release include the addition of some new languages in npx (14 and counting!) and the ability to filter for ls only linked packages.

Check out the full release notes here.

Request For Explanation featuring npm

Recently, the Rust community podcast Request For Explanation had Ashley Williams as a panelist for their episode “Aaron’s Favorite Topic”, a.k.a., the RFC process. The “Aaron” here was Aaron Turon, and the panel was rounded out by Carol Nichols.

Make time to hear about all of the different ways open source projects, orgs, and teams approach the RFC process.