Sick of "many dependencies" framing
Sick of "many dependencies" framing
Posted Feb 11, 2026 11:55 UTC (Wed) by pizza (subscriber, #46)In reply to: Sick of "many dependencies" framing by Karellen
Parent article: FOSS in times of war, scarcity, and AI
>With 5 dependencies, you can look at all of them. You can tell if they're 95% untested cruft that no-one dares touch. It's possible to find answers to all these questions.
>If you have 100 dependencies of 5kLOC each, I don't see how you can answer those questions in any meaningful way.
>If you have 100 dependencies of 5kLOC each, I don't see how you can answer those questions in any meaningful way.
I think it's important to re-iterate that "number of dependencies" matters far more than "kLOC of code" -- eg the paperwork (not to mention the _actual_ work) that you need for CRA compliance scales linearly based on the former, but not the latter.