DEV Community

Discussion on: Another Npm Package Is Highjacked and It's Your Fault That This Happened

Collapse
vonheikemen profile image
Heiker • Edited on

Can I blame society or capitalism?

What if behind every npm package there is a team of well payed developers working really hard to mantain the code? That would be nice.


Also, everyone should add ignore-scripts=true to their .npmrc. It will stop npm from running pre-install or post-install scripts.

Collapse
sharpninja profile image
The Sharp Ninja

Can I blame society or capitalism?

Or more precisely, communism.

Collapse
vonheikemen profile image
Heiker

Okay. Society, capitalism and communism. Is that better?

Thread Thread
sharpninja profile image
The Sharp Ninja

Probably closest to the truth.