hop.js

Product Introduction

1. Hop.js is a privacy-first CDN service powered by bunny.net, designed to provide free, high-performance content delivery for open-source projects with zero logging or user tracking.
2. The core value of hop.js lies in its ability to deliver open-source assets globally with enhanced security, speed, and compliance, ensuring developers can trust the integrity and privacy of their distributed resources.

Main Features

1. Hop.js automatically scans all hosted assets for malware and vulnerabilities, providing real-time browser alerts to protect downstream users from compromised dependencies.
2. The service ensures instant global availability by permanently replicating assets across bunny.net’s worldwide edge network, eliminating cold-start delays even for first-time requests.
3. Developers can switch to hop.js without code changes by simply replacing their existing CDN hostname, maintaining full compatibility with npm, GitHub, and other package managers.

Problems Solved

1. Hop.js addresses the lack of privacy-focused CDNs for open-source projects by enforcing a strict zero-logging policy and blocking all tracking scripts embedded in third-party assets.
2. The service specifically targets open-source maintainers and enterprises that require compliant, auditable content delivery without sacrificing performance or security.
3. Typical use cases include distributing npm packages with built-in vulnerability scanning, hosting documentation sites with GDPR-compliant analytics, and serving static assets for frameworks like React or Vue.js.

Unique Advantages

1. Unlike traditional CDNs, hop.js combines enterprise-grade malware scanning with real-time dependency vulnerability detection directly in the browser during asset loading.
2. The permanent replication system guarantees sub-20ms TTFB globally through bunny.net’s 110+ edge locations, a feature absent in most open-source-focused CDNs.
3. Competitive advantages include native integration with npm versioning systems, automatic HTTPS/3 support, and granular cache-control headers optimized for library distributions.

Frequently Asked Questions (FAQ)

1. How does hop.js handle versioned package updates? Hop.js automatically syncs with npm registry updates while maintaining immutable URLs for previous versions, ensuring compatibility with lockfile-based installations.
2. What security measures protect against supply chain attacks? All assets undergo real-time static analysis using signature-based malware detection and behavioral heuristics before being served through the CDN edge network.
3. Is there bandwidth throttling for high-traffic projects? No, hop.js provides unmetered bandwidth with QoS prioritization for verified open-source projects, leveraging bunny.net’s 80 Tbps global network capacity.