@happyborg Setting GitHub aside, I just can't understand why npm still isn't a non-profit foundation. And why the JavaScript community just lets it happen.

@hongminhee unless someone makes it happen it can't happen, and it's not an easy task.

I'm so pleased that there are people who can and do do these things though. So I support Codeberg for example and had a good go at moving my (rather minimal) CI over. I was nearly there but didn't have time to complete it, so everything except release builds (Rust, Svelte + Rust, CLI and Tauri) happens on #Codeberg.

I think it was just builds for Mac I didn't complete.

@hongminhee
> I just can't understand why npm still isn't a non-profit foundation

I can't understand why anyone keeps using npm despite their ongoing inability to avoid delivering malicious software from their repos;

https://thehackernews.com/2025/12/27-malicious-npm-packages-used-as.html

They have one job; reviewing the code they host, and the maintainers of that code, for quality control. They fail constantly.

@happyborg