Hacker News new | ask | show | jobs
by gkbrk 1553 days ago
> How are regular developers going to vet the literally 1000s of Node.js dependencies they rely on?

Perhaps they shouldn't be relying on thousands of NPM packages. It's not difficult to write JS code that doesn't `npm install` the entire package ecosystem.
1 comments
gtirloni 1553 days ago
If you use React, Vue and others, that decision has been made for you.
link