testeronious@lemmy.world to Programming@programming.devEnglish · edit-29 months agoWhen "Everything" Becomes Too Much: The npm Package Chaos of 2024socket.devexternal-linkmessage-square38fedilinkarrow-up1133arrow-down16cross-posted to: hackernews@lemmy.smeargle.fanshackernews@derp.foo
arrow-up1127arrow-down1external-linkWhen "Everything" Becomes Too Much: The npm Package Chaos of 2024socket.devtesteronious@lemmy.world to Programming@programming.devEnglish · edit-29 months agomessage-square38fedilinkcross-posted to: hackernews@lemmy.smeargle.fanshackernews@derp.foo
minus-squarelocuester@lemmy.ziplinkfedilinkEnglisharrow-up7·9 months agoYeah then you’ve got security problems. If a maintainer pulls a package, you wouldn’t want some rando able to push a new one in its place.
Yeah then you’ve got security problems. If a maintainer pulls a package, you wouldn’t want some rando able to push a new one in its place.