61: Phani Raju on the Github Package Registry

This week we sit down with Phani Raju.

He's a Staff Engineer at GitHub and lead on the GitHub Package Registry. He tells us what package registries are and why GitHub is uniquely suited to take them to the next step in security, trust, and user experience.

This is an awesome chat if you'd like to learn more about where your packages may be coming from in the future. It's also a fantastic lens into the great engineering and design thinking that is alive and well at GitHub — and how the Dear GitHub letter sparked a new wave of innovation.

Featuring

• Phani Raju — Twitter, Website, GitHub
• Michael Chan — Twitter, Website, GitHub

Links

• Introducing GitHub Package Registry
• Github Releases on the Github blog
• Announcing Git Large File Storage (LFS on The Github Blog
• Supply chain attack on Wikipedia
• The Problem of Package Manager Trust by Phil Haack
• Dear Github — 📨 An open letter to GitHub from the maintainers of open source projects
• Maintainer security advisories on The GitHub Blog
• Fixed vs. Growth: The Two Basic Mindsets That Shape Our Lives on brainpickings
• The Github Blog

Sponser

G2i is a hiring platform for remote developers devoted exclusively to React and React Native.

Check out G2i today and get matched with React & React Native roles that are fully remote at companies who are serious about quality engineering.

Visit G2i today and click the "for developers" link to find opportunities.

G2i: We Vet, You Hire, It's that Simple.

Episode source