Y
Hacker News
new
|
ask
|
show
|
jobs
by
bodas
2899 days ago
I don't think sandboxing install scripts will help much, as any code in the package will be executed when that package is require()'d. You really need to sandbox the whole of `node`.