[PPT] - and the future and the future of JavaScript of JavaScript Read PowerPoint Presentation

SLIDE 1

and the future and the future

f JavaScript
f JavaScript

QCon SF, 20181105

https://slides.com/seldo/npmfutureofjavascriptqcon

Read these slides on your device:

SLIDE 2

Who is this guy? Who is this guy?

Laurie Voss Laurie Voss

COO & cofounder, npm Inc. @seldo

SLIDE 3

This talk is about you This talk is about you

SLIDE 4

Three parts:

1. What you should know about npm

What you should know about npm

2. What npm knows about you

What npm knows about you

3. The future of JavaScript

The future of JavaScript

SLIDE 5

npm is popular npm is popular

Part 1: what you should know about npm

SLIDE 6

JavaScript is JavaScript is enormously popular enormously popular

Language popularity on GitHub, 20142018

SLIDE 7

Who's using npm? Who's using npm?

All 50 of the Fortune 50 All 50 of the 50 biggest banks All 50 of the 50 biggest tech companies All 500 of the Fortune 500

(we checked!)

SLIDE 8

JavaScript JavaScript is the most important is the most important programming language programming language in the world in the world

SLIDE 9

npm is the package npm is the package manager for all JavaScript manager for all JavaScript

SLIDE 10

But npm is especially But npm is especially for web developers for web developers

SLIDE 11

97% 97%

f the code in a
f the code in a

modern web app modern web app comes from npm comes from npm

SLIDE 12

npm is super fast now npm is super fast now

npm install npm g

Why not destroy the conference wifi by upgrading right now?

SLIDE 13

Is npm faster than Is npm faster than Yarn? Yarn?

SLIDE 14

npm 6 npm 6 locks by default locks by default

SLIDE 15

npm ci will double npm ci will double the speed of your the speed of your builds builds

npm ci You can use anywhere you used to use npm install and it will be twice as fast

SLIDE 16

npm Security npm Security

A bunch of new features

SLIDE 17

npm 6 has 2FA: npm 6 has 2FA: two-factor auth two-factor auth

http://go.npm.me/2fa Secure your npm account in 30 seconds:

SLIDE 18

npm Quick Audits npm Quick Audits

Just run npm install!

SLIDE 19

npm Quick Audit stats npm Quick Audit stats

4 million scans per week

Yikes!

SLIDE 20

npm audit npm audit

Just run in your current project: npm audit Learn more: http://go.npm.me/audits

SLIDE 21

npm audit fix npm audit fix

Just run in your current project:

r

for the adventurous npm audit fix npm audit fix force

SLIDE 22

Security has become Security has become central to npm Inc. central to npm Inc.

SLIDE 23

Use npm because Use npm because npm is safer than Yarn npm is safer than Yarn

https://mixmax.com/blog/toyarnandbackagainnpm

https://npm.im/deyarn

Yarn to npm migration tool: A user journey from Yarn back to npm:

BREAKING NEWS: Company recommends own product.

SLIDE 24

npm.community npm.community

SLIDE 25

npm is a company npm is a company that sells good and that sells good and services that you will services that you will find useful find useful

SLIDE 26

npm Organizations npm Organizations

Private packages and security for teams

SLIDE 27

npm Enterprise npm Enterprise

A fullfeatured private registry for your company.

SLIDE 28

npm Security npm Security

is worth paying for

SLIDE 29

Part 2: Part 2: What npm knows What npm knows about you about you

1.5 billion log events per day 16,000+ survey responses

SLIDE 30

Part 2A: Part 2A: demographics demographics

Please stand up! (If you can't stand up, raise a hand) Sit down if you don't match the description.

SLIDE 31

Stay standing if you

use npm use npm

SLIDE 32

Stay standing if you

write JavaScript that write JavaScript that runs in browsers runs in browsers

SLIDE 33

Stay standing if you

write JavaScript write JavaScript at work at work

SLIDE 34

Stay standing if you

are concerned about are concerned about security of open security of open source code source code

SLIDE 35

Stay standing if you

mostly taught mostly taught yourself JavaScript yourself JavaScript

SLIDE 36

Stay standing if you

also write PHP or also write PHP or Java sometimes Java sometimes

SLIDE 37

Stay standing if you

work at a company work at a company that isn't considered that isn't considered a "tech company" a "tech company"

SLIDE 38

Stay standing if you

started using npm started using npm less than 2 years ago less than 2 years ago

SLIDE 39

Stay standing if you

use webpack use webpack

SLIDE 40

Stay standing if you

use babel use babel

SLIDE 41

Stay standing if you

work on a React app work on a React app

SLIDE 42

Stay standing if you

use TypeScript use TypeScript

SLIDE 43

So we know some So we know some stuff about you stuff about you

SLIDE 44

npm users don't always npm users don't always write JavaScript write JavaScript

SLIDE 45

The programming The programming language you pick is language you pick is determined by the determined by the libraries available libraries available

http://sns.cs.princeton.edu/docs/asroopsla13.pdf

SLIDE 46

Devs pick JavaScript Devs pick JavaScript because of npm because of npm

SLIDE 47

npm users are npm users are concerned about concerned about security security

77% are concerned 52% said current tools aren't adequate

SLIDE 48

Part 2B: Part 2B: the tools we use the tools we use

SLIDE 49

I am about to make I am about to make you angry you angry

with graphs

SLIDE 50

Growth in context Growth in context

SLIDE 51

Everything in npm grows Everything in npm grows

SLIDE 52

Share of registry Share of registry

SLIDE 53

Front end frameworks Front end frameworks

SLIDE 54

Frameworks never die; Frameworks never die; they only fade away they only fade away

SLIDE 55

React React

60% of npm users say they use React

SLIDE 56

Angular Angular

SLIDE 57

Angryler Angryler

Angular is seeing fewer downloads, please don't yell at me about it.

SLIDE 58

Ember Ember

The comeback kid

SLIDE 59

Vue Vue

The next big thing?

SLIDE 60

The React ecosystem The React ecosystem

SLIDE 61

React Router React Router

SLIDE 62

React is a triumph of React is a triumph of modular design modular design

SLIDE 63

Flux Flux

SLIDE 64

Redux Redux

SLIDE 65

React Hooks React Hooks

Coming soon to a repo near you

SLIDE 66

GraphQL GraphQL

SLIDE 67

RxJS RxJS

Get Hannah to explain!

SLIDE 68

Back-end frameworks Back-end frameworks

SLIDE 69

Koa Koa

SLIDE 70

Sails Sails

SLIDE 71

Hapi Hapi

SLIDE 72

Next.js Next.js

This looks weird

SLIDE 73

Team B / Team A Team B / Team A

SLIDE 74

Tooling Tooling

SLIDE 75

What tools do we use? What tools do we use?

SLIDE 76

Transpilers Transpilers

SLIDE 77

46% 46% of npm users are

f npm users are

using TypeScript using TypeScript

Say what?!

Source: npm user survey, 2017/2018

SLIDE 78

Linters Linters

SLIDE 79

So about ESLint... So about ESLint...

SLIDE 80

The ESLint The ESLint Credentials Credentials Harvester Harvester

SLIDE 81

npm Security npm Security in action in action

SLIDE 82

Take JavaScript Take JavaScript security seriously security seriously

SLIDE 83

Testing Testing

SLIDE 84

Splitting developers Splitting developers by experience by experience

SLIDE 85

Best practices come Best practices come with experience with experience

SLIDE 86

Security is associated Security is associated with experience with experience

SLIDE 87

Part 3: Part 3: the future of JavaScript the future of JavaScript

SLIDE 88

Learning from history: Learning from history: nothing last forever nothing last forever

jQuery, we hardly knew ye.

SLIDE 89

Learn GraphQL Learn GraphQL

Illadvised prediction

SLIDE 90

Use TypeScript Use TypeScript

Illadvised prediction

SLIDE 91

What happens to What happens to npm in the future? npm in the future?

SLIDE 92

npm is not only npm is not only JavaScript JavaScript

and it hasn't been for some time

SLIDE 93

WASM is coming WASM is coming

SLIDE 94

WASM is already here WASM is already here

https://hacks.mozilla.org/2018/04/hellowasmpack/

SLIDE 95

Bundling and transpiling Bundling and transpiling are hard to get rid of are hard to get rid of

Illadvised prediction

SLIDE 96

Transpilation Transpilation is bad news is bad news for JavaScript for JavaScript

SLIDE 97

Node + JavaScript: Node + JavaScript: merge or die merge or die

SLIDE 98

The best framework The best framework is always the one is always the one with the most users. with the most users.

SLIDE 99

Use React Use React

Illadvised prediction

SLIDE 100

Libraries either die Libraries either die

r transcend
r transcend

Backbone died jQuery is part of every browser

SLIDE 101

Standards bodies are Standards bodies are bad at inventing things bad at inventing things

SLIDE 102

Make JSX Make JSX part of JavaScript part of JavaScript

SLIDE 103

We already did and it We already did and it was called E4X was called E4X

SLIDE 104

Can React Can React transcend? transcend?

npm install reactcolor

SLIDE 105

What about that What about that slowdown in React? slowdown in React?

SLIDE 106

Can React Can React components hit components hit critical mass? critical mass?

SLIDE 107

Frameworks Frameworks adopting React adopting React would force would force browsers to act browsers to act

SLIDE 108

What about web What about web components? components?

Web components would be great if they worked but they don't, yet. Don't @ me.

SLIDE 109

We can raise the web We can raise the web to a new level to a new level

SLIDE 110

Don't be afraid Don't be afraid

Web developers will always have a job

SLIDE 111

A bigger web A bigger web is a better web is a better web

SLIDE 112

npm is for the web npm is for the web

SLIDE 113

The future looks fun The future looks fun

SLIDE 114

The web will remain The web will remain under construction under construction

SLIDE 115

We can do this We can do this

SLIDE 116

https://slides.com/seldo/npmfutureofjavascriptqcon

@seldo

These slides are available right now Now would be a good time to follow me on Twitter

and the future and the future of JavaScript of JavaScript Read - - PowerPoint PPT Presentation

97% 97%

npm ❤ you npm ❤ you