alt Hacker NewsOne thing I've never understood is why NPM allows packages to run code immediately after they are installed. What's the use case for that? A package should just be some code you can call on at runtime
Replies
mark_l_watson • today at 2:46 PM
I turn off running scripts on installation. So far, no inconveniences.
Some packages need to build native dependencies. sharp for example needs to build libvips on the system [0] to work
0: https://github.com/lovell/sharp/blob/main/install/build.js