Programmer Humor

32410 readers

998 users here now

Post funny things about programming here! (Or just rant about your favourite programming language.)

Rules:

Posts must be relevant to programming, programmers, or computer science.
No NSFW content.
Jokes must be in good taste. No hate speech, bigotry, etc.

founded 5 years ago

MODERATORS

[email protected]

700

Programming Languages (lemmy.ml)

submitted 1 year ago by [email protected] to c/[email protected]

163 comments fedilink hide all child comments

No offence

you are viewing a single comment's thread
view the rest of the comments

[–] [email protected] 3 points 1 year ago (1 children)

100 developers to safely add libraries to projects with no fear of falling out of corporate compliance regulations.

Depending on the regulations, python virtual envs could make it possible too.

[–] [email protected] 1 points 1 year ago (1 children)

How so? The companies I worked for were using venv's but nothing that could help with standards.

Using a private npm repo, I can actually do aninstall of a library I want to use and it'll refuse to install if that library isn't already approved for use by the organization, and if it is/does, it will install only the approved version. Further, I still don't have any of the libraries installed I don't want (even secure-seeming unnecessary code is a potential risk and unnecessary). The last 2 places I worked that used python used venv's, but the pip requirements.txt file was still fairly hard to keep regulated.

[–] [email protected] 2 points 1 year ago* (last edited 1 year ago) (1 children)

From approved environments: pip freeze > requirements.txt ?

[–] [email protected] 1 points 1 year ago

So let's say I want to add a library not currently being used in this project, but that might have been approved for another project in another repo? How does pip freeze solve that problem? Do python users endorse a "every single python app in the entire org should use the same requirements.txt" mindset? Or what am I missing?