- Microsoft pesters people to use even more of its services with Windows 10 nag screen
- As coronavirus forces millions to work from home, Microsoft Teams suffers major outages
- Microsoft says Windows Subsystem for Linux kernel updates will be delivered via Windows Update
News of any acquisition brings with it concerns about changes, but Microsoft says it is looking to invest in and develop what exists rather than just swallowing it up. The company says it will make the necessary investments to ensure the npm is a fast, reliable and scalable registry. Microsoft also says that it will embrace the Workspaces functionality, as well as improvements to the publishing and multi-factor authentication experience.
Isaac Schlueter, founder and CEO of npm, is upbeat about the future. He writes:
There are not many companies that can claim to have the kind of fanatical commitment to open source that GitHub does. In the track record of Nat and the team he's assembled, there’s really something special here that I’m thrilled to be a part of.
I've said countless times before that I wouldn't let the registry go someplace that won't take care of it.
In a blog post about the acquisition, Microsoft's Nat Friedman says:
Looking further ahead, we'll integrate GitHub and npm to improve the security of the open source software supply chain, and enable you to trace a change from a GitHub pull request to the npm package version that fixed it. Open source security is an important global issue, and with the recent launch of the GitHub Security Lab and GitHub’s built-in security advisories, we are well-positioned to make a difference. In addition, GitHub Sponsors has already paid out millions of dollars to open source contributors, and we’re excited to explore tasteful ways to extend it to the npm ecosystem.