NPM increased their efforts with regards to auditing. They realized it was a pro... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

cmorgan31 on Nov 26, 2018 | parent | context | favorite | on: Backdoor in event-stream library dependency

NPM increased their efforts with regards to auditing. They realized it was a prominent attack vector and without them taking responsibility for some level of the problem they would be throwing their reputation down the drain. It isn't perfect, but it's a step to improving the situation.

mattdeboard on Nov 26, 2018 [–]

Sweet! There are so many brilliant & creative people in the Node community. I'm positive there are some innovative ways to approach this problem.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact