April 2026

All posts

Package Registries and Pagination

Apr 10, 2026

100MB of metadata for 10,451 versions.

Package Security Defenses for AI Agents

Apr 9, 2026

Lockfiles, sandboxes, and cooldown timers.

Package Security Problems for AI Agents

Apr 8, 2026

Packages all the way down, agents all the way up.

Who Built This?

Apr 7, 2026

Tracing a dependency back to its source commit.

The Cathedral and the Catacombs

Apr 6, 2026

Stretching a metaphor deep into the floor.

What does Open Source mean?

Apr 4, 2026

A stack of incompatible expectations.

Package Manager Easter Eggs

Apr 3, 2026

A tour of the easter eggs hiding inside package managers.