With the profusion of software supply chain attacks, and the tendency for simple libraries to become bloated and buggy, I now always start a Claude Code project with instructions to avoid using frameworks or packages whenever possible. The one major exception is for authentication or security tools. Those are wheels I don’t want to reinvent.
I just added this as a global prompt in the Claude settings. What do you think? Is the cost of having to write more code offset by eliminating dependencies and supply chain vulnerabilities? Because honestly, Claude is just drawing on these libraries anyway when it generates code.
Here’s my global Claude prompt:
Avoid JavaScript frameworks whenever possible. Use vanilla, modern HTML, CSS and JS as the first choice for web apps. Consider care…
With the profusion of software supply chain attacks, and the tendency for simple libraries to become bloated and buggy, I now always start a Claude Code project with instructions to avoid using frameworks or packages whenever possible. The one major exception is for authentication or security tools. Those are wheels I don’t want to reinvent.
I just added this as a global prompt in the Claude settings. What do you think? Is the cost of having to write more code offset by eliminating dependencies and supply chain vulnerabilities? Because honestly, Claude is just drawing on these libraries anyway when it generates code.
Here’s my global Claude prompt:
Avoid JavaScript frameworks whenever possible. Use vanilla, modern HTML, CSS and JS as the first choice for web apps. Consider carefully the necessity of adding Python packages to a project. In all cases, favor our code instead of dependencies on external libraries, except for security and authentication tools.