In this keynote, Ashley Williams, Developer Community and Content Manager, discusses how npm works as a service and shares some of the remarkable numbers associated with the registry.
This Week in Open Source News: Linux Forces Improved Windows Gaming, Blockchain’s Importance Surges in 2017 & More
This week in Linux and OSS news, Steven J. Vaughn-Nichols explains why Linux is forcing Windows to up its gaming game, blockchain is especially important in the current sociopolitical climate, and more! Read on to keep on top of the most important tech stories.
1) Linux can take some credit for improving Windows gaming, writes Steven J. Vaughan-Nichols
Developer Claims Linux Forced Microsoft to Up Its Windows Game Support– ZDNet
2) The Depository Trust and Clearing Corporation to begin using The Linux Foundation’s Hyperledger Project.
Blockchain Will Secure Global Derivatives Trading– CyberScoop
3) It’s the “impact of blockchain on […] finance and business that’s fostering innovation and opportunities for her company and clients.”
Why IBM CEO Ginni Rometty Believes in Blockchain– brandchannel
4) A hacker has published an open source tool for helping admins strengthen their network security.
Hacker Publishes Open Source Tool For Finding Secret Keys On GitHub– FOSSbytes
5) “Microsoft’s Windows Subsystem for Linux is evolving into a credible alternative to running Linux inside Windows on VMs.”
Bash On Windows is Becoming Linux For Windows Users– InfoWorld
State of the Union: npm
Ashley Williams kicked off her colorful “paint by number” keynote at Node.js Interactive by explaining that npm is actually a for-profit company. Npm makes money by selling its enterprise services and, apart from the amounts required to run the everyday operations of a regular company, its revenue is invested in running the npm registry.
Williams, as the Developer Community and Content Manager, described her job as the person in charge of “explaining how npm works.” Because her audience was probably already familiar with npm as a tool, Williams focused on how it works as a service and some of the staggering figures associated with the registry.
For example, in the 28 days prior to the talk, users had installed 18 billion (“billion” with a “b”) packages from the registry, although this translated to “only” about 6 billion downloads. The downloads are substantially lower than the installs because approximately 66 percent of the installs are now being served from the cache.
The figures regarding downloads are not the only ones that have seen exponential growth. The number of packages is also growing at an accelerated rate. At the beginning of 2015, the registry contained about 12,500 packages. But at the time of Williams’ talk, the number was already up to nearly 400,000. In the week before, 4,685 packages were published in the registry.
Interestingly, the npm repository is also used as a first step to getting into programming for Node. About 160 people publish their first package every week in the registry and, at the current rate of growth, Williams predicts that will increase to an average of 200 people a week through 2017.
Currently, 102,460 active unique publishers are already working within the system, and there are 314,582 registered users. Williams remarks on how amazing this figure is considering the sole advantage of registering on the site is the ability to publish in the registry.
11 lines of code that broke the Internet
Williams also addressed the elephant in the room by tackling the topic of unpublishes. In March 2016, a disgruntled developer unpublished all his modules from the registry. Among them was a seemingly harmless chunk of code 11 lines long — left-pad. left-pad padded out the left hand-side of strings with zeroes or spaces and did nothing else. However, a huge amount of other modules relied on left-pad and broke when the module was removed from the registry, causing no small amount of chaos.
Williams admitted that the left-pad debacle happened because of naive policies at npm. Since, the npm team have devised new policies, the main one being that you are only allowed to unpublish a package within 24 hours of publishing it.
They also hosted a forum on GitHub to get feedback from the community and discovered that most people unpublishing packages were doing so because they didn’t want that package listed on their user page anymore. This led to the new dissociate and deprecate policy. The new policy avoids packages from being erased from the registry, but developers can re-assign the package to npm user. This dissociates the package from the original developer and deprecates it, marking it as unmaintained.
Although Williams admitted that having dissociated and deprecated packages hanging around in the registry is not ideal, it does guarantee there won’t be another random unpublish that will break other people’s setups.
Reliability
So another left-pad won’t happen, but, what would happen if all the registry went down? Williams said this highly unlikely. ping.npmjs.com shows in real time stats the availability of public services npm runs. The site consistently shows that the registry’s services offer a 99.999 uptime.
Williams also pointed out that the registry is also very fast. That’s because the vast majority of the data they need to serve is now served statically. Data is only updated when the registry receives something from the “changes fee.” According to Williams’ benchmarks, downloading from the registry, as opposed to downloading directly from a module’s Git repository, is 75 percent faster.
The registry is also huge. At over 350,000 packages, the npm registry contains more than double the next most populated package registry (which is the Apache Maven repository). In fact, it is currently the largest package registry in the world.
The downside is that 80 percent of npm users are doing front-end development and 20 percent are using npm ONLY for front-end code. Npm was designed for people writing modules in Node and not for developers writing applications or client-side JavaScript. This means that npm’s set of tools are sometimes inadequate for what users want to do.
Fortunately, the community has started writing their own tools to compensate. Williams gave the example of Greenkeeper.io, a service that keeps dependencies updated in front-end applications. Npms, another external service, offers an advanced search of the registry, including metrics. Yarn is especially designed for people who require speedy package installs. It also prevents malicious code from being executed in applications by checksumming the integrity of all installed packages.
Williams pointed out that npm actively supports developers building cool stuff on top of the core services, and she encouraged her audience to check out the registry API documentation and resources like the Replicate service. The latter allows you to see in real time the changes happening within the registry.
Finally, Williams recommends that everybody regularly update their npm package with
npm i npm@latest -g
because the npm provided with the standard Node.js installation tends to be several versions old.
Watch the complete video below:
If you are interested in speaking or attending Node.js Interactive North America 2017 – happening in Vancouver, Canada next fall, please subscribe to the Node.js community newsletter to keep abreast with dates and time.
10 Open Source Point of Sale Systems for Linux
As Linux became more stable and popular business are looking for saving every bucks and Open source Point of Sale applications are getting first choice especially for small businesses for managing work, sales and inventory. We have seen some of the Open source POS have grown such an extend that exceed known close source POS brands. Here is a short list of POS that you can at try free of cost.
1. PHP Point of Sale
Platform: LAMP
Type: Retail
Reviewer’s Rating 3/5
PHP Point of Sale System is in the market for last few years. It’s a Lamp based Point of sale suitable for small and medium stores. The site also provide active support and has predefined list of hardware. It has master database for customer, sales, supply, employee and provides flexible reporting. Being a web based POS it has limited support for POS printer and cashdrawer.
Download: https://sourceforge.net/projects/phppointofsale/
2. Floreant POS
Platform: Java, MySQL/Derby/PostgreSQL
Type: Restaurant & Retail
Reviewer’s Rating 4.5/5
Floreant POS was originally designed for Dennys restaurant chain and then released as open source in 2009. Being a Java based application it has advantage of support for different type of hardware including customer display pole, digital scale and barcode scanner. Some features we find are
- Kitchen & Receipt printer routing & KDS
- Pizza Builder
- Support for Dine In, Take out and Home delivery order type
- Discounts, Coupons and Shift wise pricing
- Back office reports
Compared to other POS Floreant has simple User Interface that fits for tablet and large monitors. It has customizable order types. If a restaurant has dine in as well as small restail outlet this could fit it well. Floreant handling back office features like Tax, Customer, Payroll, Server tips, Drawer pull etc. It also produce sales analysis, hourly sales and server productivity. Its founder company OROCUBE LLC maintains this open source system and also offers commercial support for them. 
Download: http://floreant.org/#download
3. Unicenta
Platform: Java
Type: Retail
Reviewer’s Rating 4/5
Unicenta is award winning POS used in huge number of retail stores. This one is fork of another open source POS named Open bravo. Unicenta features touch screen based POS, inventory, table layout and web based report plugin. Being a Java based system it supports wide range of hardware, barcode, scanner, cash drawer. It has both free and paid supported releases.
Download: http://unicenta.com
4. Wallace POS
Platform: Web
Type: Retail
Reviewer’s Rating 3.5/5
Wallace seems to be very promising Web based Point of sale system for reports. It has very nice design and rich set of reports. It has role based user permission, multiple terminal and support for return, discount and cancellation. Being a web based system it has limitation of terminal wise sales report generation and supports limited hardware.
Download: https://wallacepos.com/
5. Chromis POS
Platform: LAMP
Type: Restaurant and Retail
Reviewer’s Rating 3/5
Chromis POS was part of Unicenta Project and this fork added extensive improvement in last a year. They have variable pricing system that is needed for fish market. Their Kittchen display is simple and supports bump bar. Chromis is better solution for Quick server stores than Fine Dine-ins. Reason is it has limited features for Table service and server cash out.
Download http://chromis.co.uk/
6. OODO
Platform: Web
Type: Restaurant and Retail
Reviewer’s Rating 3.5/5
Odoo is a popularl ERP that has POS system inside. Odoo’s open source edition is released under an LGPL version 3, and the source is available on GitHub. Odoo is primarily written in Python.
Download : oodo
7. OS POS
Platform: Web
Type: Retail
Reviewer’s Rating 3/5
Open Source Point of Sale (OSPOS) is a Retail Management Solution for Independent Retailers. OSPOS includes several modules.
- Point of Sale
- Inventory Control
- Customer Management
- Employee Management
- Reports
8. Wanda POS
Platform: Java
Type: Retail
Reviewer’s Rating 3/5
Its another fork of Open bravo and has become popular these days.
Download http://wandaapos.com/
9. POSNIC
Download http://posnic.com
10. Core POS
Type: Retail
Reviewer’s Rating 3/5
Core POS is new and it has presence in Github.
Download: http://site.core-pos.com/
The Linux Foundation Welcomes JanusGraph
We’re pleased to kick off 2017 by announcing that JanusGraph, a scalable graph database project, is joining The Linux Foundation. The project is starting with an initial codebase based on the Titan graph database project. Today we see strong interest in the project among developers who are looking to bring the graph database together, as well as support from organizations such as Expero, Google, GRAKN.AI, Hortonworks, IBM and others. We look forward to working with them to help create a path forward for this exciting project.
Several members of the JanusGraph community, including developers from Expero, GRAKN.AI and IBM, will be at Graph Day Texas this weekend and invite discussion about the project.
JanusGraph is able to support thousands of concurrent users in real time. Its features include elastic and linear scalability, data distribution and replication for performance and fault tolerance, high availability and hot backups, integration with big data platforms such as Apache Spark, Apache Giraph and Apache Hadoop, and more.
To get learn more and get involved, visit https://github.com/JanusGraph/janusgraph.