Ask HN: Why does React need 1484 dependencies by default?
Run
npx create-react-app my-app
and watch how it says added 1484 packages in 1m
How in the world can this number of dependencies be considered sane and normal, and most of all, necessary?What's more is that this barebone source code already takes up 235 MB (!)
What the ...? Is this what it takes to display some rectangles and glyphs in a browser?
52 comments
[ 5.4 ms ] story [ 104 ms ] threadTake a bicycle instead, and watch in awe how simple it is designed, yet how far it gets you ...
Because my point was about what's necessary, not fancy add-ons.
Whereas any other developer in any other language will just use a modulus and call it a day.
Comparing that to the complexity inherent to an internal combustion engine or a house or a bridge is an insult to engineering.
LOL, perfect summary of the SOTA npm ecosystem.
Challenge accepted: https://github.com/coreutils/coreutils/blob/master/src/true.... [1]
> one could easily argue the excessive granularity of packages in JS causes it to do a lot of things badly
Yes, easily. The same argument can be extended, and even by the same virtue, to Bash programs and the Unix stack.
[1] See also: http://trillian.mit.edu/~jc/humor/ATT_Copyright_true.html
There is no technical reason why Javascript packages need to be as small as they are. The strongest argument for it would be that smaller packages travel faster over the wire, and save bandwidth, but that doesn't apply when hundreds or thousands of dependencies are involved. Which is why everyone just uses webpack. And yet the web is still bloated to the point of morbidity. So what even is the point?
I'll remind you that you are the one who mentioned C. I just mentioned the Unix philosophy, which really should be language-agnostic.
> So what even is the point?
There actually is a reason, which is bundle size. There is no standard library in JavaScript, or at least any standard library present may not match the version you expect, due to different browser versions. The target platform also has no pre-downloaded dynamically linkable libraries, so everything must be bundled statically. If many of your dependencies can use some common logic, that reduces the bundle size. The fact that they aren't is too bad, but reflects mismanagement more than nature of the system, since the system enables sharing.
But regardless, what's the point of having small dependencies at all? I think there is a pretty strong reason to do that and it's to make the dependencies easy to think about, their scope limited, the chances for bugs small. In Python, it is quite trivial to end up with two incompatible dependencies, since you cannot reconcile versions easily. Recently this has gotten better with Poetry, but NPM has had a long head start on it in this aspect.
Much like a function in a C source for doesn't output two files, the bundled and monitored output is only one file much of the time. The browser doesn't download 1400 separate files or even all the code in those dependencies.
For React in particular there are development and production versions of the library.
Not that bundles can't or don't get huge. Not that they aren't often excessive. Only in that they aren't nearly as bad at first glance.
Check out Vite: https://vitejs.dev/
`npm create vite@latest`
run through the process
--> `added 217 packages`
I mean I would usually go with NextJS since it just works so well with Vercel, providing a really convincing, complete solution.
But I will check out Vite nonetheless, curious how it fares against it...
It is 100x better. :)
Yea guess I'll stick with NextJS
They've removed a ton of pain from full stack React/JS/TS
My new project requirements for well with NextJS. I was mainly pointing out that there are a number of benefits for the drawbacks.
If you're just building a SPA, using Next is overkill (and will often get in the way, actually). But for some other websites, having all of that included and supported by a single source/vendor is very valuable and beats trying to Frankenstein a project out of 30 other libs like the bad old initial days of React.
For simpler or client-only sites, Vite is actually wonderful. But it's not automatically the best choice for every project.
Really interesting guy. Good podcast here: https://corecursive.com/vue-with-evan-you/ and very, very much worth a listen.
His background isn't even software engineering but he has come to spearhead (at least?) two very major projects that have shaped modern web development: Vue and Vite. Both Vue and Vite are notably "simple" and fast relative to their contemporaries.
Vue really stands out as one of the few, pure community driven front-end frameworks that has achieved major uptake (both React and Angular came from the commercial space).
That’s not true. https://react.dev/learn/start-a-new-react-project
Vite fans recommend Vite, but that doesn’t change the official documentation.
Also, what's Vite? The React docs mention Next.js, Remix, or Gatsby. At what point would any of these become deprecated?
To be clear, I'm just complaining, but you could change the OP's question to read as "How in the world can this number of <dependencies/frameworks/paradigms/languages> be considered sane and normal, and most of all, necessary?" and it would still make sense
Yes, those frameworks themselves still have hundreds of sub-dependencies, but usually they're managed by the upstream framework maintainers and upgraded at once. Like you upgrade your Next/Remix/Vite version and then rest of it should take care of itself, with (usually) the framework vendor providing detailed changelogs and code migration tools if necessary. It's not a perfect system but it's a heck of a lot easier than it used to be.
And once you build for production, those hundreds of libs just get tree-shaken and bundled into a few much smaller minified and compressed JS files, and often rehydrated only after the important HTML loads. Done right, it can be better UX than the old SPA days -- at a cost of increased slightly increased mental complexity for developers, but not much more than having to work full-stack in different languages.
The ecosystem is very slowly maturing. IMHO we're probably post-peak now. The last 5-7 years had a huge explosion of JS frameworks because, well, that's the language of the web, and we saw a ton of startup activity. But now that the industry is moving towards AI instead, the web is no longer cool, and probably we'll see a lot less competition/innovation and more consolidation/stagnation. I doubt many of these frameworks will survive long term. My personal guess (only) is that we'll probably only be left with Next and Vite(*) after a few years, with the others fading into history the way Ember, Backbone, Angular, etc. did.
> At what point would any of these become deprecated?
Probably 2-4 years, if history is any indication. They just get less popular and less maintained over time, but there'll always be a long tail of older unmaintained projects running on life support with vulnerable versions, etc. But most projects will move on. In my career as a web dev, I've never seen production frontend code last more than a couple years without drastic changes anyway, so I doubt it really matters. Good excuse for the next generation to rewrite everything from scratch for the nth time, lol. Management's visions and priorities rarely last that long to begin with, so it all just kinda works out... shrug.
I wouldn't build a time capsule in JS, but for websites that by their nature are ephemeral... sure, why not?
--------
* Vite is just a simple frontend processor and bundler: https://vitejs.dev/guide/features.html
It includes things like TypeScript, JSX, hot module replacement... etc., that used to be a bunch of separate libs. It's heavier than vanilla JS, but much lighter than Next.js. Great for simple SPAs, but if you need more batteries included, Next can get you (much) further before you start having to add in more third-party packages again.
Think of these like a Venn diagram. Vite is a small circle that has a lot of overlap with Next's much bigger circle.
Surely half of the stuff is not required for the basic react dev tooling to work?
That and npm has gamified the package registry so one is incentive to funnel as much shit as possible if one cares about these things.
This makes CRA a good choice for someone trying to be particularly flexible, for example building an MVP or prototype where new features are going to be thrown in fairly randomly. But the cost is maintainability, particularly in terms of tending dependencies and keeping them up to date.
A more lightweight version might be Vite. Vite does a similar job of bundling different tools together into a single toolkit, but takes a simpler approach using more modern technology.
In my experience, you can get a long way just by installing Vite as a development dependency and React as a runtime dependency and going from there. This won't give you anything fancy like server-side rendering or routing, but it works for a simple application, and allows you to add in the extra tools when you need them.
Production React, on the other hand, appears to only have 2 deps: js-tokens and loose-envify
Those 1484 packages are simply for the build step. And having a lot of dependencies in a build tool isn't necessary "insane".
Otherwise,. Just use HTMX if you want to minimize your JS footprint.
Also I don’t know what you’re on, but React is not slow.
It doesn't answer to your question, but it does answer to mine on these flexes in HN around niche frameworks and the difficulty of putting them into context.
I'm glad people are working on alternative solutions, and maybe ten years from now everyone will be using something else. But right now, 235 MB is an awfully small price to pay for something that just works, especially as a lot of it doesn't actually show up in deployment.
Rather than hastily installing the latest shiny package, we should refactor and build reusable minimal utilities tailored to our domain.