THESIS: npm Packages vs shadcn Registry: A Comparative Study of Component Sharing Approaches in Organizations
6 days ago
High level description
Component reusability is essential for maintaining consistency and efficiency in modern software development organizations. Traditional npm packages (either public or private) have long been the standard approach for sharing code across projects, while shadcn's registry system represents a newer paradigm that focuses on code ownership and customization over dependency management.
This thesis aims to investigate the practical differences, strengths, and weaknesses of npm packages versus shadcn registry for sharing and maintaining reusable components within an organization, with particular focus on security, maintainability, and developer experience.
Who are we looking for?
Bachelor/Master of Science in Computer Science/Engineering
Project description
This thesis will involve a literature review of component sharing strategies, dependency management, and modern frontend architecture patterns, followed by a practical case study where a component library is implemented and distributed using both approaches. The project will analyze measurable factors such as setup time, update propagation speed, and maintenance overhead, as well as qualitative aspects like developer autonomy, security implications, versioning complexity, and long-term maintainability.
Purpose and Scope
In this thesis investigate these questions:
- What are the fundamental architectural differences between npm packages and shadcn registry for component distribution?
- How do security considerations differ between the two approaches, including supply chain risks, access control, and vulnerability management?
- What is the impact on maintainability when using versioned dependencies versus source copied components?
- In which organizational contexts is each approach more suitable?
- How do the tools affect developer experience, onboarding time, and productivity?
- What are the trade-offs between centralized control (packages) and distributed ownership (registry)?
- How do the approaches handle breaking changes, updates, and customization requirements?
- What are the restrictions on what kind of code you could/should share via the registry? (UI components? Backend logic? Full stack templates? etc..)
References:
- shadcn Registry Documentation:
- npm About page:
An Exciting Journey with Knightec Group
Semcon and Knightec have joined forces as Knightec Group. Together, we are Northern Europe's leading strategic partner in product and digital service development. With a unique combination of cross-functional expertise and a holistic business understanding, we help our clients realize their strategies – from idea to complete solution.
Practical Information
This is a thesis position, located at our office in Sundsvall. Start date January or March 2026.
Please submit your application as soon as possible, but no later than If you have any questions, you are welcome to contact Johanna Edström. Note that due to GDPR, we only accept applications through our careers page.
-
THESIS: Terraform vs
6 days ago
Sundsvall, Sweden Knightec Group Full time 450,000 - 600,000 per yearHigh level descriptionInfrastructure as Code (IaC) is a cornerstone of modern software development and cloud operations. Terraform is one of the most widely adopted tools for provisioning and managing infrastructure across cloud providers, while is a newer framework with a developer-centric focus, combining infrastructure and application logic in a single...
-
Sundsvall, Sweden Knightec Group Sweden Full time 400,000 - 600,000 per yearHigh level descriptionThis thesis focuses on evaluating different predictive maintenance models using provided industrial datasets. The goal is to determine which models are most effective in predicting failures and enabling proactive maintenance. The study will compare approaches such as anomaly detection, time-series forecasting, and classification-based...
-
Sundsvall, Västernorrland, Sweden Knightec Group Full time 40,000 - 80,000 per yearHigh level descriptionThis thesis focuses on evaluating different predictive maintenance models using provided industrial datasets. The goal is to determine which models are most effective in predicting failures and enabling proactive maintenance. The study will compare approaches such as anomaly detection, time-series forecasting, and classification-based...
-
Sundsvall, Sweden Knightec Group Full time 250,000 - 450,000 per yearHigh level descriptionToday, the most common way to develop cross-platform mobile apps is through frameworks like React Native, Flutter, or Kotlin Multiplatform. Each of these frameworks employs different strategies to build applications for both Android and iOS. However, they share a common limitation: any change— whether it's a minor text update or a new...
-
Sundsvall, Sweden Knightec Group Full time 550,000 - 850,000 per yearHigh level descriptionData engineering is the process of refining raw data into a usable state. For example, transforming raw CSV or JSON files into structured formats ready for analysis. There are many platforms and tools available to support this process, each with different trade-offs in terms of performance, scalability, and usability. This thesis will...
-
Sundsvall, Sweden Knightec Group Full time 140,000 - 420,000 per yearHigh level descriptionIn distributed systems, effective synchronization across multiple nodes is essential for resource access control. However, traditional locking mechanisms often face challenges related to scalability and latency. This thesis will focus on developing a sharding-based approach to low-latency distributed locking, optimizing concurrency...
-
THESIS: Enriching APIs with AI
6 days ago
Sundsvall, Sweden Knightec Group Full time 450,000 - 600,000 per yearBackgroundIn today's digital landscape, services and offerings are increasingly composed of multiple interconnected applications and systems. This complexity makes it difficult to trace which services are tied to a specific customer identifier and to detect issues such as failed orders or recurring system errors.Traditionally, support and operations teams...
-
Sundsvall, Sweden Knightec Group Full time 360,000 - 420,000 per yearHigh level descriptionCross-platform frameworks like React-Native and Flutter has enabled developers to use a single language and code base to develop apps for both iOS and Android. With the growing popularity for machine-learning based applications, cross-platform options for machine-learning runtimes has emerged. An example of this is the ONNX runtime...
-
Sundsvall, Sweden Knightec Group Full time 650,000 - 850,000 per yearHigh Level DescriptionA common problem in high traffic systems is scaling. When applications take a long time to initialize, scaling in the middle of a traffic spike can cause a noticeable latency impact and even causing downtime. Predictive scaling together with machine learning involves gathering and utilizing data to accurately forecast incoming spikes...
-
Sundsvall, Sweden Knightec Group Full time 350,000 - 550,000 per yearHigh level descriptionGenerative AI is increasingly used in software development to write code, tests and suggest solutions. This increases productivity but at the cost of several risks, one being security. The AI tools being used may generate code that contains vulnerabilities, reproduce insecure patterns from training data, or create a false sense of...
