NPM website was down

16 comments

• iLemming 34 minutes ago
  First GitHub, now NPM? Oh no... That is happening, guys. Rise of the machines. I hope Jira is next and Slack follows.
  [-]
  • turtleyacht 6 minutes ago
    No code, no dependencies, no services, and no platforms. Just one-shot vibed internal tools.
• corvad 1 hour ago
  I wonder if this is an underlying infra issue with Azure being that Github was also having issues.
  [-]
  • nulltrace 1 hour ago
    We added a preflight curl against registry.npmjs.org before the install step in CI. Not surprising they went down together.
  • 2ndorderthought 1 hour ago
    I bet 10 dollars it's DNS.
    [-]
    • thanatos_dem 1 hour ago
      Nah, can't be, Azure DNS has a 100% SLA after all: https://learn.microsoft.com/en-us/azure/dns/dns-faq#what-is-...
      [-]
      • parliament32 6 minutes ago
        To be fair, it feels like the DNS service has been the most reliable part of our Azure infra. Never really had issues with it, whether with traffic or API calls.
      • shakna 28 minutes ago
        "Always" up, but maybe not going where you expect. [0]

        [0] https://arstechnica.com/information-technology/2026/01/odd-a...
    • yomismoaqui 1 hour ago

        It's not DNS
        There's no way it's DNS
        It was DNS
      

      - SSBroski
    • corvad 1 hour ago
      Just wait and it will be something like "Github's internal DNS was down and caused widespread service communication issues."
    • xaxfixho 1 hour ago
      it might just be *AZURE*
    • Imustaskforhelp 1 hour ago
      I am waiting for jeff geerling's "its always dns" t-shirt reference/video about it if that's the case.
    • Scipio_Afri 1 hour ago
      Easy there buddy, not everything needs to be a polymarket bet :-)
  • munk-a 1 hour ago
    It's likely someone just ran npm ls -all
• airstrike 1 hour ago
  https://www.ebay.com/ is also down
  [-]
  • Raed667 1 hour ago
    lots of amazon pages & search seem to be degraded as well
• cozzyd 1 hour ago
  That's one way to fix supply chain vulnerabilities.
  [-]
  • tantalor 1 hour ago
    Can't have any vulnerabilities if you don't have a supply chain
  • nine_k 1 hour ago
    More seriously, keeping a local cache of external npm packages, and a local artifact storage for internal npm packages looks like a wise thing to have done long ago. Might be cheaper in the long run.

    Ironically, both Nandu and Verdaccio are implemented in Tyepscript and install via npm.

    (Same logic obviously applies to Python packages, Docker images, etc.)

    [-]
    • hmokiguess 36 minutes ago
      At my former job we had a private registry that was a mirror of npm’s with an approval gate for packages devs would request and it would always pin versions

      I took that for granted back then and just assumed it was standard enterprise policy
    • miohtama 52 minutes ago
      Only if we had a turn key distributed cache, like IPFS
      [-]
      • ibejoeb 41 minutes ago
        Does IPFS support content eviction now? If not, that could go wrong really fast. You get a compromised package out there and then, I think, literally every node needs to unpin it or it remains.
      • cluckindan 51 minutes ago
        Waiting for the BitTorrent package manager
    • XorNot 55 minutes ago
      Caching NPM was easier when you could pull the Couchbase replicate API. Afaik that's gone and now you just have to send a bazillion http requests instead.
• hexasquid 49 minutes ago
  Hold the jokes until we're sure this isn't an `.unwrap()`
• squarefoot 51 minutes ago
  Ebay is also down. https://www.isitdownrightnow.com/ebay.com.html
• normie3000 1 hour ago
  Well it is owned by github.
  [-]
  • cute_boi 1 hour ago
    which is owned by microslop
    [-]
    • rvz 1 hour ago
      ...and proudly maintained by Microsoft's AI agents: Tay.ai, Zo, and Copilot.

      They seem to be doing a pretty good job at wrecking both GitHub and npm at the same time.
• corvad 1 hour ago
  Fixed as of 22:30 UTC. Hope there's a postmortem.
• dabinat 50 minutes ago
  Tailscale too: https://status.tailscale.com/
• idoxer 1 hour ago
  Works for me, could be region related
• saadn92 1 hour ago
  ha, github is down too
• simjnd 1 hour ago
  https://npmx.dev is not
• xmprt 1 hour ago
  With all the github instability, I wonder if Cloudflare or some other provider is going to look into providing a similar service.
  [-]
  • dllrr 38 minutes ago
    Cloudflare artifacts??

    https://developers.cloudflare.com/artifacts/
  • sofixa 1 hour ago
    GitLab is right there. And overall provides a better product than GitHub, if nothing else on these two points:

    * You can actually have an organisational structure (folders/namespaces), and projects can be moved around with automatic redirects. Also, inheritance of access controls, variables between the namespaces

    * GitLabCI is organised in a way that makes supply chain attacks less of a risk. GitHub Actions takes the NPM/JS approach, where every step is an action, one you usually need to get off someone, with shoddy versioning, tons of transient dependencies, etc. In GitLabCI you can have templates, but you don't have to use an external template for every bit. It's shell scripting on top of containers, so you can have custom container images with your stuff, or custom scripts, or templates that bundle it all.

    [-]
    • justinclift 47 minutes ago
      GitLab also limits the size of PRs/MRs, which makes it Unfit for Purpose. :( :( :(

      Its a problem they know about, but have no plan to fix before 2027.

      [-]
      • irishcoffee 41 minutes ago
        I mean, the PR limit is like a million characters. I would also reject a PR of a million characters. That’s bananas.
        [-]
        • justinclift 11 minutes ago
          Not sure about that "million characters", but we've been bitten by it in our production systems. :(

          Thus, we're moving off GitLab.
    • fontain 1 hour ago
      All of those features are supported by GitHub in some form, e.g: Organizations can now belong to Enterprises.
• cute_boi 1 hour ago
  microslop slops are down.
  [-]
  • 12345hn6789 1 hour ago
    Azure is completely dead across multiple resources. Confirming....
    [-]
    • DaiPlusPlus 1 hour ago
      https://azure.status.microsoft/en-US/status says "There are currently no active events." - and everything's fine with my day-job's Azure sub right now.
• naikrovek 1 hour ago
  Oh no. At least nothing of value is affected.

  :)
• TesterVetter 1 hour ago
  [dead]