I've been a professional C, Perl, PHP and Python developer.
I'm an ex-sysadmin from the late 20th century.
These days I do more Javascript and CSS and whatnot, and promote UX and accessibility.
That's not what the post is getting at (to my reading). The equivalent would be, I think:
There happens to be wild fluctuations in the number of exploits accidentally appearing in npm packages due to cosmic rays -> I can demonstrate getting an exploit into an hyperbolic number of npm packages to prove a point -> npm is fundamentally unsafe.
It's talking about how the metric is useless even in telling you how many unique users downloaded a package, or how often something caches it or runs a build job.
For further actions, you may consider blocking this person and/or reporting abuse
We're a place where coders share, stay up-to-date and grow their careers.
That's not what the post is getting at (to my reading). The equivalent would be, I think:
There happens to be wild fluctuations in the number of exploits accidentally appearing in npm packages due to cosmic rays -> I can demonstrate getting an exploit into an hyperbolic number of npm packages to prove a point -> npm is fundamentally unsafe.
It's talking about how the metric is useless even in telling you how many unique users downloaded a package, or how often something caches it or runs a build job.