Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Stabilizing the npm registry

Avatar for C J Silverio C J Silverio
February 11, 2015
Programming
400
2

Stabilizing the npm registry

How npm went from a car fire to a very boring service with a very boring uptime.

Avatar for C J Silverio

C J Silverio

February 11, 2015

More Decks by C J Silverio

See All by C J Silverio
The economics of package management
Avatar for C J Silverio ceejbot
4
1.6k
The future of (javascript) modules (in node)
Avatar for C J Silverio ceejbot
1
310
Keeping JavaScript safe
Avatar for C J Silverio ceejbot
3
480
ceej's how to solve it
Avatar for C J Silverio ceejbot
6
780
work-life balance at npm
Avatar for C J Silverio ceejbot
5
800
hash functions and you!
Avatar for C J Silverio ceejbot
2
370
The accidental noder
Avatar for C J Silverio ceejbot
2
170
Design Patterns & Modularity in the npm Registry
Avatar for C J Silverio ceejbot
3
200
Monitoring on a budget
Avatar for C J Silverio ceejbot
2
300

Other Decks in Programming

See All in Programming
AlarmKitで明後日起きれるアラームアプリを作る
Avatar for Trickart trickart
0
140
Kubernetesを使わない環境にもCloud Nativeなデプロイを実現する / Enabling Cloud Native deployments without the complexity of Kubernetes
Avatar for linyows linyows
3
400
リセットCSSを1行消したらアクセシビリティが向上した話
Avatar for pvcresin pvcresin
4
520
HTML-Aware ERB: The Path to Reactive Rendering @ RubyKaigi 2026, Hakodate, Japan
Avatar for Marco Roth marcoroth
0
710
20年以上続くプロダクトでも使い続けられる静的解析ツールを求めて
Avatar for Atsushi Matsuo matsuo_atsushi
0
150
When benchmarks go bad - what I learned from measuring performance wrong
Avatar for Holly Cummins hollycummins
0
390
Making the RBS Parser Faster
Avatar for Soutaro Matsumoto soutaro
0
720
Import assertionsが消えた日~ECMAScriptの仕様はどう決まり、なぜ覆るのか~
Avatar for おおいし bicstone
2
180
実践ハーネスエンジニアリング:ステアリングループを実例から読み解く / Practical Harness Engineering: Understanding Steering Loops Through Real-World Examples
Avatar for nrs nrslib
5
5.5k
ソフトウェア設計の結合バランス #phperkaigi
Avatar for Takuma Kajikawa kajitack
0
510
Symfony AI in Action - SymfonyLive Berlin 2026
Avatar for Christopher Hertel chr_hertel
1
150
「なんか〇〇ライブラリで脆弱性あるみたいなんだけど。。。」から始める脆弱性対応 / First Steps in Vulnerability Response
Avatar for mackey0225 mackey0225
2
120

Featured

See All Featured
Intergalactic Javascript Robots from Outer Space
Avatar for Vicent Martí tanoku
273
27k
A Modern Web Designer's Workflow
Avatar for Chris Coyier chriscoyier
698
190k
From Legacy to Launchpad: Building Startup-Ready Communities
Avatar for Dug Song dugsong
0
210
The B2B funnel & how to create a winning content strategy
Avatar for Katarina Dahlin katarinadahlin
PRO
1
360
The Invisible Side of Design
Avatar for Vitaly Friedman smashingmag
302
52k
The World Runs on Bad Software
Avatar for Brandon Keepers bkeepers
PRO
72
12k
Leveraging LLMs for student feedback in introductory data science courses - posit::conf(2025)
Avatar for Mine Cetinkaya-Rundel minecr
1
250
Darren the Foodie - Storyboard
Avatar for Kevinho.art khoart
PRO
3
3.3k
Six Lessons from altMBA
Avatar for Skipper Chong Warson skipperchong
29
4.2k
Building Adaptive Systems
Avatar for Chris Keathley keathley
44
3k
Fireside Chat
Avatar for paigeccino paigeccino
42
3.9k
HU Berlin: Industrial-Strength Natural Language Processing with spaCy and Prodigy
Avatar for Ines Montani inesmontani
PRO
0
380

Transcript

  1. stabilizing the registry

  2. C J Silverio director of engineering, npm @ceejbot

  3. This is the story of a plucky package registry named

    npm

  4. scaling problem manifesting itself as a stability problem

  5. "scaling" capacity to meet growing demands

  6. "At scale" huge demand & lots of data

  7. "stability" not falling over under normal demand

  8. What's normal demand?

  9. 129K packages 239 GB package tarballs 40 million pkg dls/day

    1500 req/sec, peak 3200

  10. "Legacy" Anything you've put into production

  11. this is the story of a legacy system becoming more

    flexible
  12. None

  13. January 2013 20K packages .5 million dls/day

  14. Oct 2013 44K packages 108 million dls/month 3.6 million dls/day

  15. None

  16. our plucky little registry had to change

  17. step 1: CDN Put Fastly.com in front of the registry

  18. cache rules everything around me

  19. step 2: tarballs get them out of couchdb

  20. tarballs are huge! couch runs better without them base64 decoding

    is work.
  21. None

  22. January 2014 60K packages 6+ million dls/day

  23. step 3: visibility are things going wrong? what's going wrong?

  24. reactive monitoring monitor deeply fix things quickly

  25. proactive monitoring self-healing (also things don't break)

  26. monitoring is unit testing Add monitoring after every outage

  27. visibility is a prerequisite but not a solution

  28. act on what monitoring and metrics reveal

  29. step 4: redundancy several CouchDBs! reads, writes, & replication

  30. fewer responsibilities for each piece isolates errors

  31. step 5: automation ansible no server is special

  32. June 2014 Superficially similar.

  33. June 2014 80K packages 10 million dls/day

  34. step 6: simplification now that it's not on fire we

    can modify at leisure
  35. None

  36. Nov 2014 105K packages 28 million dls/day peak

  37. 50/50 AWS region split no AWS-specific magic Ubuntu 14.04 Trusty

  38. Fastly: geoloc + varnish haproxy + CouchDB nginx + a

    filesystem

  39. where's the node?

  40. registry 2 electric boogaloo with 500% more node

  41. None

  42. haproxy + node services couchdb ➜ postgres redis for caching

    nginx + filesystem

  43. more complicated more flexible & redundant more scaling dials to

    turn

  44. excited about postgres ad-hoc queries are fun

  45. scaling node is exactly like scaling everything else

  46. Understand system get visibility cool down hot spots add redundancy

  47. npm client <3 npm install -g npm@latest

  48. npm loves you